The pro-Ukraine hacktivist group "Kromsec" claims responsibility for an attack on a Belarusian media website "Belarus.news". The attack is part of a wider campaign of cyber attacks by pro-Ukraine hacktivists targeting Belarus for its support of Russia in the war in Ukraine.   Read more about it : here

We had recently spoken of an IT attack on the Unione dei Comuni Valdisieve e Valdarno, but we did not know which cybergang had attacked the union, nor the amount of ransom demanded. But as we have always said, ransomware is 'blatant' and lays bare all truths, even those we would never want to talk about. Here is in fact that the cybergang RansomHouse, after the ransom monetization with the union of the Valdisieve and Valdarno municipalities went unsuccessful, publishes after about 2 weeks the data within its data leak site (DLS).   Read more about it : here

Due to a recent cyber attack the databases managed by Latvia’s Corruption Prevention and Combating Bureau (KNAB), including Electronic Data Entry Systems, and the institution’s official mobile app Ziņo KNAB have been disrupted, as confirmed by KNAB. KNAB reports that in the evening on 25 July multiple of the institution’s resources suffered a cyber attack. Public accessibility to those resources was disrupted by those cyber attacks. Read more about it: here

The ransomware group Lockbit claims to have released data allegedly stolen from LaPosteMobile. The data appears to include a database containing customer information including names, email and physical addresses, phone numbers, bank details and dates of birth. It is understood that negotiations with LockBit 3.0 have not yielded any results in the past month, resulting in the release of the data.  Read more about it : here

From Russia With Love. Frwl claims a successful use of Somnia ransomware on Ukraine governmental system. No financial motivation, only destruction. If confirmed its a capability uplift they have planned for months. Read more about it : here

Spain’s National Police said Wednesday that two people have been arrested for allegedly hacking the country’s Radioactivity Alert Network (RAR) and disabling more than one-third of the sensors that are used to monitor excessive radiation levels across the country. The attack occurred between March and June of 2021, and was allegedly carried out by two individuals who were at one point involved in maintaining the system, which is run by Spain’s General Directorate of Civil Protection and Emergencies (DGPCE). The police did not disclose the names of the arrested individuals, or say what motivated the attack. “During the investigation it was determined that the two detainees had been responsible for the maintenance program of the RAR system, through a company contracted by the DGPCE, for which they had a deep knowledge of it that made it easier for them to carry out the attacks and helped them in their efforts to mask their authorship, significantly increasing the difficulty of the investigation,” the National Police said. Read more about it: here

According to the Redpacketsecurity media, the cybercriminal ransomware as a service group LockBit 3.0 has claimed responsibility for an attack on the Italian-based international group "FAAC" and published this claim on 13 August 2022.  Read more about it : here

The Russian Federation carried out a cyber attack on the IT infrastructure of the DTEK Group. The attackers' goal is to destabilize the technological processes of generating and distribution companies and undermine the energy security of Ukraine, as well as to spread known false information about the companies' work through state propaganda bodies, and as a result, to leave Ukrainian consumers without electricity. Read more about it: here

#KILLNET claims to have launched #DoS attacks against Energijos Skirstymo Operatorius AB (#ESO), an energy company based in Lithuania 🇱🇹. ESO's website appears down at the moment... Read more about it: here Lithuania's state-owned energy group Ignitis said it was hit by "the biggest cyber attack in a decade" on Saturday. Ignitis said it had experienced DDoS attacks, affecting the operation of its websites and digital services. However, the attacks were taken under control by noon the same day. "There were no recorded hacks into the systems or other adverse effects," the group said in a statement. Ignitis later resumed digital services for customers, but the cyber attack on the infrastructure continued. . Read more about it: here

The company Coretrek was probably exposed to a denial of service attack on Monday, similar to what we saw against the Norwegian authorities last week. It affected several websites. A denial of service attack, also called a DDoS attack, takes place when someone uses a network of computers to send large amounts of traffic to a website. As a result, the website is unable to receive all the traffic and goes down. According to the Telegram channel of the Russian hacker network Killnet, Russian hackers are behind the attacks. This time it is the hacker group "NoName057" who will be behind it. On NoName057's Telegram channel it is claimed that they have hit Bastø Fosen and Boreal. These websites have also been down. They also have Coretrek as a supplier. Read more about it: here