🏴‍☠️ Lynx has just published a new victim: Plowman Craven
Integrated measurement and consultancy services to the property and infrastructure markets worldwide…we’re not just a Survey Company

by Ransomware live - https://r.zerozone.it/post/R5YSk8BANYrNrY4uc

🏴‍☠️ Killsec has just published a new victim: National Institute of Administration
N/A

by Ransomware live - https://r.zerozone.it/post/qBUxPGJRCKzC3Y8rK

🏴‍☠️ Lynx has just published a new victim: DSZ
DZS is a global leader of Network Edge, Connected Home/Enterprise and AI Cloud Software solutions that enable gigabit broadband everywhere.

by Ransomware live - https://r.zerozone.it/post/eeUd90z9VEQh4Xs7G

🏴‍☠️ Lynx has just published a new victim: TaxPros of Clermont
For over 25 years, Tax Preparation/Consulting firm owned by CPA's and Attorney's specializing in ALL types of tax return preparation/consulting/IRS Tax Defense.

by Ransomware live - https://r.zerozone.it/post/k0gQZmqKfKrhBHt46

🏴‍☠️ Lynx has just published a new victim: Banco de Fomento Internacional
Finance Organization.

by Ransomware live - https://r.zerozone.it/post/6H0PhNApZDwBKTKzk

SAP Security Patch Day
(AL02/241112/CSIRT-ITA)
SAP rilascia il Security Patch Day di novembre che risolve diverse vulnerabilità, di cui una con gravità “alta” che interessa il prodotto SAP Web Dispatcher, componente chiave per la gestione del traffico HTTP(S) verso i sistemi SAP. Tale vulnerabilità potrebbe permettere ad un utente malevolo la creazione di link opportunamente [...]

by CSIRT - https://r.zerozone.it/post/Yn0ZJJpYpDPuWYn49

Falsa notifica DocuSign: credenziali trasmesse a bot Telegram
Il CERT-AGID ha recentemente rilevato una campagna di phishing che si presenta come proveniente da DocuSign, una nota piattaforma per la firma elettronica e la gestione dei documenti. Queste email ingannevoli contengono allegati HTML progettati per rubare le credenziali degli utenti, consentendo ai malintenzionati di accedere ai loro account e [...]

by CERT-AgID - https://r.zerozone.it/post/BK1NsBWB1hH3EH9dF

Schneider Electric: sanate vulnerabilità in vari prodotti
(AL01/241112/CSIRT-ITA)
Sanate nuove vulnerabilità presenti in alcuni prodotti – integrabili anche in soluzioni SCADA - di Schneider Electric, di cui una con gravità “critica” e 5 con gravità “alta”.

by CSIRT - https://r.zerozone.it/post/H5Up2jkvTxmW0cG0G

Rilevate vulnerabilità nel prodotto DLink DSL6740C
(AL03/241112/CSIRT-ITA)
Rilevate 7 vulnerabilità di sicurezza, di cui una con gravità “critica” e 6 con gravità “alta”, nel prodotto D-Link DSL6740C. Tali vulnerabilità, qualora sfruttate, potrebbero permettere ad un utente malintenzionato remoto il bypass dei meccanismi di autenticazione e l’esecuzione di comandi arbitrari sui sistemi interessati.

by CSIRT - https://r.zerozone.it/post/TPCNt1actGeBUtdSf

🏴‍☠️ Ransomhub has just published a new victim: www.guymontigers.com
[AI generated] Guymon Tigers refers to the sports teams of Guymon High School, located in Guymon, Oklahoma. The school's athletic program includes a variety of sports such as football, basketball, soccer, and more, fostering school spirit and community involvement. The website likely offers information on game schedules, team rosters, and [...]

by Ransomware live - https://r.zerozone.it/post/m2QBKzHEkdjaxmJks

Studio di una nuova campagna Formbook attiva in Italia
È attualmente in corso una campagna di malspam, scritta in italiano corretto, diffusa su tutto il territorio nazionale, con l'intento di compromettere le vittime con il malware Formbook, noto per le sue capacità di Infostealer. L'e-mail si presenta come una comunicazione urgente riguardante fatture non pagate e induce le [...]

by CERT-AgID - https://r.zerozone.it/post/VXUkgbAFKN0NECsJD

🏴‍☠️ Blacksuit has just published a new victim: jarrellimc.com
[AI generated] Jarrell Industrial Management Corp. (jarrellimc.com) specializes in industrial management and construction services. They offer solutions in project management, maintenance, and facility operations, focusing on sectors like manufacturing and infrastructure. The company emphasizes efficiency, safety, and quality in delivering tailored services to meet the specific needs of their clients.

by Ransomware live - https://r.zerozone.it/post/kJY22QHXz7cqXS9rt

🏴‍☠️ Blacksuit has just published a new victim: jst.es
J.S.T. España, S.A., founded in 1981, belongs to the Japanese multinational based in Osaka, J.S.T. MFG CO.,LTD. One of the world's leading manufacturers of connectors and terminals for the electrical and electronics industry.

by Ransomware live - https://r.zerozone.it/post/gzc4bxj4k83AaSt4b

Aggiornamenti per prodotti Siemens
(AL04/241112/CSIRT-ITA)
Siemens ha rilasciato aggiornamenti di sicurezza per correggere molteplici vulnerabilità nei propri prodotti – anche SCADA, di cui una con gravità “critica” in TeleControl, sistema di telecontrollo progettato per monitorare e controllare impianti industriali.

by CSIRT - https://r.zerozone.it/post/Qj99bBzxwH284Mcmp

🏴‍☠️ Blacksuit has just published a new victim: steppingstonesd.org
[AI generated] Stepping Stones is a non-profit organization focused on providing educational and therapeutic services to individuals with developmental disabilities. It offers a range of programs aimed at enhancing the quality of life and fostering independence for children and adults. The organization emphasizes personalized care, community integration, and skill development [...]

by Ransomware live - https://r.zerozone.it/post/NRcKBhX2ZbARg17FH

🏴‍☠️ Akira has just published a new victim: Hillandale Farms
Today, Hillandale Farms raises over 20 million chickens for eggs and is one of the top 5 egg producers in the country. A lot of inside corporate information with customers contacts, in surance information, personal employees data with credit cards de tails and many others data will be [...]

by Ransomware live - https://r.zerozone.it/post/rFG4cX7q6EcWjFYB0

🏴‍☠️ Ransomhub has just published a new victim: Medigroup.ca
[AI generated] Medigroup.ca is a Canadian healthcare company focused on delivering comprehensive medical services and solutions. The company specializes in healthcare management, offering a range of services including medical consultations, healthcare technology integration, and patient care coordination. Medigroup.ca aims to enhance healthcare accessibility and efficiency across communities, prioritizing patient-centered care [...]

by Ransomware live - https://r.zerozone.it/post/JYTCCZrzchSMJKGus

🏴‍☠️ Raworld has just published a new victim: SK Gas
[AI generated] SK Gas is a South Korean company primarily involved in the liquefied petroleum gas (LPG) industry. It is a subsidiary of the SK Group, one of South Korea's largest conglomerates. SK Gas operates in the import, storage, and distribution of LPG, serving both domestic and international markets. The [...]

by Ransomware live - https://r.zerozone.it/post/KC5zrA0sTjZFBEpBF

🏴‍☠️ Raworld has just published a new victim: Orange County Pathology Medical Group
[AI generated] Orange County Pathology Medical Group is a healthcare organization specializing in pathology services. Located in Orange County, California, the group provides diagnostic services and laboratory testing to support patient care. Their team of skilled pathologists works closely with healthcare providers to deliver accurate and timely results, contributing to [...]

by Ransomware live - https://r.zerozone.it/post/QmnyuSKrqemxqyYd8

🏴‍☠️ Killsec has just published a new victim: Giggle Finance
N/A

by Ransomware live - https://r.zerozone.it/post/vXN2TaSkQtMjs182w

🏴‍☠️ Embargo has just published a new victim: American Associated Pharmacies
American Associated Pharmacies (AAP) is a member-owned cooperative of over 2,000 independent pharmacies working together as a cohesive network. AAP in partnership with its subsidiaries, Associated Pharmacies, Inc. (API), Arete Pharmacy Network, and AllyScripts, provides the tools and resources needed for members to improve their bottom line and differentiate themselves [...]

by Ransomware live - https://r.zerozone.it/post/p5x5Wv2cNngKHhpCN