Europe News

The cybercrime group "ViceSociety" is claiming responsibility for the ransomware attack on the French administration of the Indre et Loire department and on the Higher Council for Scientific Research in Spain. The initial attack took place on 10 July for the french administration, and although the claim is public, no information on the amount of ransom demanded has yet been released. The department recommends for the time being not to open emails with its address as they could be fraudulent emails.  Read more about it : here

On August 19, a computer attack made it necessary to block all computer systems by the IT technicians of the “ASL Città di Torino”. A ransomware-type attack that has affected and continues to affect the San Giovanni Bosco, Maria Vittoria, Martini and Oftalmico hospitals. The cyber attack was discovered by IT technicians at 9 am last Friday, when the administrative offices opened. After the first checks carried out on the IT structures of the ASL Citta di Torino, the Polizia Postale and the CSIRT (Computer Security Incident Response Team), which is part of the Agenzia per la Cybersicurezza Nazionale (ACN), were alerted. Read more about it : here

According to their claim, it seems that the pro-Russian group "noname05716" has launched a DDoS attack campaign against Estonian news sites. These sites are currently inaccessible. These attacks are carried out in revenge for the recent anti-Russian actions of Estonia.  Read more about it : here

The pro-Russian hacktivist group From Russia with Love has announced on its telegram communications channel that it is aware of the creation of the "military media centre" of the Ukrainian Ministry of Defence. Many state agencies seem to be linked to this military centre, and FRwL says it is very interested and is preparing for what seem to be likely attacks. Read more about it : here

Hackers apparently also tapped into sensitive data of residents during the attack on the Suhl city administration in March. Account numbers, dates of birth and telephone numbers of Suhl residents have surfaced on the so-called Darknet. In response, the left-wing parliamentary group in the state parliament is calling for a cyber aid service for digital emergencies affecting critical infrastructure. Read more about it : here

The pro-Russian hacktivist group released a statement on its Telegram channel announcing that it is once again focusing its activities and attacks on the IT infrastructure of Latvian Railways as well as the website of the company "LDZ Ritose Satstava Serviss" which also works with the railroads. Read more about it : here

Calvados. L’UNA victime d’une cyberattaque et d’une demande de rançon L’Union nationale d’aide du Calvados, entreprise sociale de services à la personne et à domicile, a subi une importante cyberattaque dont elle s’est rendu compte le 15 août 2022. Les logiciels de l’association se sont avérés inexploitables. Un retour à la normale est attendu pour la semaine prochaine. Mais les salariés ont pu suivre leur planning de visites à domicile. Read more about it : here

Hanover The automotive supplier and tyre manufacturer Continental says it has been the victim of a cyber attack - but the company does not report any impairment of business. The IT department discovered at the beginning of August that cyber criminals had partially infiltrated Conti's systems, a company spokesman said in Hanover on Wednesday. However, Continental had continued to maintain control over the systems, and there had been no encryption of data or ransom demand by the attackers. Business activities were not affected at any time. According to current knowledge, third-party IT systems were also not affected, the Hanover-based company said. Read more about it : here

A German auto parts store, Autodoc, located in Finland, has suffered a data breach, according to a statement sent to its customers.  Attackers managed to break into the company's internal "communication tool" and use it to steal customers' personal data. The attack was quickly stopped, but the company says the data was still stolen. Customers' names, home addresses, phone numbers and email addresses were affected.   Read more about it : here

Un fournisseur de logiciels des communes néerlandaises d'Eijsden-Margraten, de Gulpen-Wittem, de Kerkrade, de Meerssen et de Vaals a été touché par une cyber-attaque fin juillet. La cyber-attaque ciblait un système administratif du domaine social. Ce sont les communes elles-mêmes qui signalent l'incident par la voie d'un communiqué conjoint. A cause de l'attaque, des fichiers ont été cryptés et ne sont plus accessibles. Il semble s'agir d'une contamination à un rançongiciel ('ransomware'). 'Le système en question a été examiné dans le détail par une agence spécialisée dans la cybersécurité. L'examen a démontré qu'il n'y avait pas d'indication de vol de données', indiquent les communes. Read more about it : here