Europe News

On 14 September 2022, LockBit 3.0 claimed responsibility for a ransomware attack on the French online company artdis.fr. The company specialises in express delivery throughout France and Europe, storage, order picking and redistribution. The data will be released on 29 September if the ransom is not paid.  No information on the nature of the data has yet been provided.  Read more about it : here

The company OrangeCyberFR has confirmed the publication of a file containing the personal information of several hundred French customers, which is currently being sold on a deep web forum.  Read more about it : here

According to the CyberKnow media, the pro-Russian hacktivist group called "noname05716" has claimed responsibility on its telegram channel for a series of cyber attacks on Lithuanian government websites, presumably in response to Lithuania's anti-Russian policies. These attacks continue to be part of large-scale cyber campaigns organised by pro-Russian groups in order to affect the morale of the populations of opposing countries such as European countries.  Read more about it : here

Dutch police have arrested a 39-year-old man accused of laundering crypto-currencies worth tens of millions of euros. The suspect allegedly used phishing lures to deploy data-stealing malware on victims' computers. In the early morning of 6 September, the suspect was arrested in the village of Veenendaal for money laundering, based on police tracking of bitcoin transactions.  "The funds were stolen using a malicious software update claiming to be from the Electrum open source wallet," according to the press release According to the release, law enforcement was able to track the suspect by following the stolen cryptocurrencies using a malicious software update for the Electrum wallet, a popular open source Bitcoin wallet application that allows users to safely manage their digital assets.  Read more about it : here

The RagnarLocker ransomware group has finally disclosed the personal information of around 9,000 customers of TAPAir, the Portuguese airline, including customers' names, dates of birth, addresses, nationalities, genders, emails, loyalty IDs and phone numbers. No information has been released about any ransom negotiations.  Read more about it : here

Le petit pays des Balkans ciblé par des cyberattaques. Des institutions gouvernementales du Monténégro ont été visées samedi 27 août et depuis la veille par une importante attaque informatique. Certains responsables y voient la main de la Russie, même si le Premier ministre, Dritan Abazovic, reste prudent sur l'origine de cet acte. Il s'agit de la deuxième cyberattaque en une semaine, après une première vague ayant frappé des institutions du pays, dans la foulée d'une motion de censure qui a renversé son gouvernement le 19 août. Read more about it : here

According to a tweet and a photo shared by Valérie Marchive, editor-in-chief of "MAG IT", the ENSIACET school was hit by a cyber attack on Tuesday 13 September, disabling access to the Internet and business applications. On the notice board set up by the school, the school itself indicates that the attack is on a large scale.  No further information is available to define the type of attack or its origin.  Read more about it : here

The pro-Russian hacktivist group Phoenix said on its Telegram channel that after seeing an increase in attacks by pro-Ukrainian cyber groups against the daily lives of Russian citizens, they will now target hospitals and social organisations.  Read more about it : here

Italy's state-owned energy services firm GSE said on Monday its gas purchases were guaranteed despite a hacking attack on its IT systems that happened overnight. The company added its website and portals were temporarily suspended to secure data. GSE has been buying gas to boost Italy's stockpiles and help fill the country's gas storage system to at least 90% of capacity by year-end. Read more about it : here

The cybercrime group "ViceSociety" is claiming responsibility for the ransomware attack on the French administration of the Indre et Loire department and on the Higher Council for Scientific Research in Spain. The initial attack took place on 10 July for the french administration, and although the claim is public, no information on the amount of ransom demanded has yet been released. The department recommends for the time being not to open emails with its address as they could be fraudulent emails.  Read more about it : here