La Settimana Cibernetica del 8 dicembre 2024
Scarica il riepilogo delle notizie pubblicate dal CSIRT Italia dal 1 al 8 dicembre 2024.

by CSIRT - https://r.zerozone.it/post/AKRGqRrEhkukaMpQs

Windows辅助功能的WinSock特权提升漏洞(CVE-2024-38193)
Windows辅助功能的WinSock特权提升漏洞(CVE-2024-38193)

by SeeBug - https://r.zerozone.it/post/PBXsUQq0rJBzS0eVD

Sanate vulnerabilità in Qlik Sense Enterprise
(AL01/241209/CSIRT-ITA)
Sanate due vulnerabilità con gravità “alta” in Qlik Sense Enterprise, piattaforma di business intelligence e data integration. Tali vulnerabilità, qualora sfruttate, potrebbero consentire a un utente malintenzionato l'esecuzione da remoto di codice arbitrario sui sistemi target.

by CSIRT - https://r.zerozone.it/post/q1XEZQ2bez0jGZmTc

🏴‍☠️ Akira has just published a new victim: Davis Immigration Law Office
DAVIS IMMIGRATION LAW OFFICE focuses primarily on the area of Can adian immigration law with a diverse practice that covers immigra tion litigation as well as business applications, family class sp onsorships, and work permits and study permit applications. We are ready to upload some internal corporate documents includin [...]

by Ransomware live - https://r.zerozone.it/post/1vg087bzmngFZXh52

🏴‍☠️ Akira has just published a new victim: Consumers Builders Supply
Consumers Builders Supply has supplied leading builders and contr actors with ready mix concrete, aggregate and masonry material fo r commercial, industrial, residential, and road and bridge projec ts. We are ready to upload some internal corporate documents includin g: customer contacts, inside financial information, employees con tacts [...]

by Ransomware live - https://r.zerozone.it/post/P6crnWTcSEDMQ8Ee0

🏴‍☠️ Akira has just published a new victim: Jamaica Bearings Group
JBG provides production and spares supply chain management progr ams into many global Tier I aerospace OEMs, system integrators, a irlines, and MROs. We are ready to upload more than 50 GB of internal corporate docu ments including: NDAs, SSNs, employee contacts with phones and em ails, HR [...]

by Ransomware live - https://r.zerozone.it/post/N16TKc9Mrn9TScxVN

🏴‍☠️ Funksec has just published a new victim: sincorpe.org.br
[AI generated] Sincorpe.org.br represents SINCOR-PE, the Insurance Brokers' Union of Pernambuco in Brazil. It is dedicated to supporting and advocating for insurance brokers in the region. The organization provides resources, training, and guidance to its members, aiming to enhance professional standards and promote the interests of insurance brokers within the [...]

by Ransomware live - https://r.zerozone.it/post/XNH4DfkBJBzbMRCHA

🏴‍☠️ Apt73 has just published a new victim: melhorcompraclube.com.br
The Best Purchase Club is a cashback platform that was born as a product of Telepequisa, a potiquis company with almost 30 years of experience in t...

by Ransomware live - https://r.zerozone.it/post/6uW9jUAVkpZs62v2u

🏴‍☠️ Akira has just published a new victim: C Pathe
C Pathe offer a complete range of end-to-end services, including creative concept development enhanced by 3D rendering, design rea lization, impeccable management, and effective execution. We are ready to upload o lot of internal corporate documents incl uding: inside financial information, employee phones and emails, insurance info [...]

by Ransomware live - https://r.zerozone.it/post/0CCCY6U2UBSsUQJfw

🏴‍☠️ Ransomhub has just published a new victim: www.lasalleinc.com
[AI generated] LaSalle Inc. is a company that specializes in providing comprehensive real estate and investment management services. It focuses on delivering strategic solutions and insights to clients in the real estate sector. With a commitment to excellence and innovation, LaSalle Inc. aims to enhance value for its clients through [...]

by Ransomware live - https://r.zerozone.it/post/dNUYfxDcHF1NfA1df

🏴‍☠️ Akira has just published a new victim: Pb Loader
PB Loader offers a complete line of Truck Mounted loaders, Asphal t Patchers, Emulsion Sprayers, Truck Equipment and Bodies. We are ready to upload more than 200 GB of internal corporate doc uments including: NDAs, inside financial information, customer an d employee contacts, SSNs etc.

by Ransomware live - https://r.zerozone.it/post/7BcpCcSFVjmjYRrYd

🏴‍☠️ Ransomhub has just published a new victim: inia.es
[AI generated] INIA, or the Instituto Nacional de Investigación y Tecnología Agraria y Alimentaria, is a Spanish governmental research organization focused on agricultural and food technology. It operates under the Ministry of Science, Innovation, and Universities. INIA conducts scientific research, promotes innovation, and provides technical support to enhance agricultural productivity [...]

by Ransomware live - https://r.zerozone.it/post/JJ3j731suNHQt8REd

🏴‍☠️ Akira has just published a new victim: Milwaukee Cylinder
Milwaukee Cylinder is a leader and innovator in the hydraulic and pneumatic actuation field. We are ready to upload more than 10 GB of internal corporate docu ments including: NDAs, HR documents with personal data, driver li censes, inside financial documents etc.

by Ransomware live - https://r.zerozone.it/post/KweqtB2utbuSq4QyP

🏴‍☠️ Lynx has just published a new victim: Hosting.co.uk
Although The Hosting.co.uk is a small company, the stolen data mainly relates to a large number of their partners. All attempts to contact the management were ignored.

by Ransomware live - https://r.zerozone.it/post/CzgYEkzGxRtC8W9m7

🏴‍☠️ Apt73 has just published a new victim: www.bms.com
Pharmaceutical company. personal data - 302 lines

by Ransomware live - https://r.zerozone.it/post/dVKn4T3dW3dkCu0cA

🏴‍☠️ Akira has just published a new victim: ECBM
ECBM is a family-owned, independent insurance broker and consulti ng firm located in the Philadelphia area. We are ready to upload more than 30 GB of internal corporate docu ments including: NDAs and NSAs, driver licenses, employee contact s, drug testing results, SSNs and many other documents.

by Ransomware live - https://r.zerozone.it/post/ajcFDQPv6ebEHaEqY

🏴‍☠️ Akira has just published a new victim: Séguin Haché SENCRL
Séguin Haché SENCRL specialize in different fields such as constr uction, agriculture, manufacturing companies, condominium associa tions, housing cooperatives, non-profit organizations and early c hildhood centers. We are ready to upload more than 70 GB of internal corporate docu ments including: inside financial information, employee and custo mer contact [...]

by Ransomware live - https://r.zerozone.it/post/0VW3tQhczEn0xJ4rF

🏴‍☠️ Funksec has just published a new victim: precisediagnosticspacs warn


by Ransomware live - https://r.zerozone.it/post/KrF1tE27xg17YJMgc

🏴‍☠️ Ransomhub has just published a new victim: mpdory.com
Company specializing in Guardrail, Fence, Signs, Traffic Signals, and Noise Barriers

by Ransomware live - https://r.zerozone.it/post/VdWaBwVqK2T07njfU

🏴‍☠️ Apt73 has just published a new victim: bankily.mr
The BANKILY product is a mobile banking product from Banque Populaire de Mauritanie. Employee names and data, including the admin’s username, cu...

by Ransomware live - https://r.zerozone.it/post/XRqvKUNUjWmxS1kt2

🏴‍☠️ Funksec has just published a new victim: kurosu.com.py Breach
[AI generated] The "kurosu.com.py Breach" refers to a security incident involving Kurosu, a company based in Paraguay. During this breach, unauthorized individuals accessed the company's systems, compromising sensitive data. This incident highlights vulnerabilities in cybersecurity measures and the importance of robust data protection protocols to safeguard against unauthorized access and [...]

by Ransomware live - https://r.zerozone.it/post/pXxraW1syB6Y1erEV