Attackers who infiltrated its systems from June 29 to July 18 were able to compromise some system files, which included individuals' names, financial details, and Social Security numbers, with the stolen data differing from person to person.
Infiltration of systems belonging to Mystic Valley, which caters to older adults and people with disabilities, have enabled the exfiltration of names, birthdates, Social Security numbers, payment card and financial account numbers, passport numbers, driver's license numbers, online passwords, medical details, and health insurance data.
After Quad7's successful exfiltration of targeted systems' passwords through a limited number of sign-in attempts meant to evade detection, Storm-0940 immediately utilized the stolen credentials to breach networks, conduct credential dumping, and deploy remote access trojans and proxy tools to ensure persistence as part of a possible cyberespionage attack.
Major Peruvian financial services firm Interbank, formerly known as the International Bank of Peru, has disclosed having been impacted by a cyberattack that resulted in the compromise of certain clients' information after stolen data was exposed by the threat actor "kzoldyck" on various dark web forums.
Attacks by EmeraldWhale involved the utilization of the 'httpx' and 'Masscan' open-source tools to scan websites and determine exposure of the /.git/config file and environment files in Laravel apps.
Milan-based private investigations firm Equalize led by former top cop Carmine Gallo was reportedly behind the years-long hacking campaign, which was facilitated by bribes to police officers, remote access trojan compromise, and the breach of the Italian Interior Ministry computer system's maintenance personnel.
