During the holiday season of Christmas 2023, a ransomware attack targeted the Ohio Lottery, causing disruptions to its operations. The gaming company is currently in the process of recovering its encrypted data and is consulting with security experts to expedite the recovery. As a result of the attack, services such as prize and cash claims exceeding $599 are temporarily unavailable. Customers are advised to use alternative digital channels to access their winnings. The newly identified ransomware group, DragonForce, has claimed responsibility for the attack, revealing its ability to extract sensitive information, including social security numbers and dates of birth.
Eagers Automotive, an Australia-based company specializing in the sale of internationally renowned car brands, experienced a malware attack on December 27, 2023. The hackers managed to siphon a small portion of data, leading to severe disruptions in the company’s servers. With over 300 branches across various locations, including Queensland, Adelaide, Darwin, Melbourne, Perth, Sydney, Tasmania, Auckland, and NSW, the company’s digital operations were temporarily inaccessible to both staff and customers.
Yakult Australia, a well-known probiotic brand, faced a cyber attack, likely a ransomware variant, resulting in the exposure of sensitive files such as employee passport details on the dark web. Despite the company’s refusal to meet the hackers’ demands, its IT staff is actively working to mitigate the risks associated with the data breach. Yakult Australia has a robust data continuity plan, and the restoration of IT systems is expected by the first week of January 2024. The recently identified DragonForce Ransomware openly claimed responsibility for breaching the company’s servers.
In Germany, the LockBit Ransomware group targeted a hospital chain, leading to the cancellation of emergency services and ambulance diversions. The impacted hospitals, including Sankt Vinzenz Hospital, Mathilde Hospital Herford, and Franziskus Hospital Bielefeld, issued a press statement acknowledging the disruption to their IT services. The Katholische Hospitalvereinigung Ostwestfallen (KHO) has issued a press statement that its hospital chainās IT services were impacted on the eve of this Christmas 2023 and its doctors and staff were doing their best in providing the emergency care to the needy.
EasyParkGroup, a prominent European parking app, fell victim to a cyber attack, likely a ransomware incident. The attackers gained access to personal details of users, including names, phone numbers, addresses, email addresses, and credit card numbers, which were then copied to foreign servers. Users are urged to monitor their credit card statements for any suspicious activity. The company has committed to implementing enhanced security measures to mitigate the risks associated with the breach.
In Jordan, the Rhysida Ransomware group targeted Abdali Hospital, employing a double extortion tactic. The group has given the hospital a seven-day ultimatum to pay 10 BTC, after which it threatens to disclose the stolen data on the dark web and auction it to the highest bidder.
Cactus Ransomware gang has targeted Swedish Grocery service offering company COOP to apparently steal about 257GB of data. As per the details available to our Cybersecurity Insiders, COOP was not directly targeted, but its software service provider Kaseya was first impacted leading to the disruption in the IT services of the supermarket chain.
