VulnHub

The article discusses the increased risk of ransomware attacks targeting enterprises during off-hours, weekends, and holidays when security teams are less available. This trend highlights the vulnerability of organizations to cyber threats during periods of reduced staffing and response capabilities, emphasizing the need for continuous security measures and preparedness.

The Everest ransomware group has claimed responsibility for breaching ASUS and stealing over 1TB of sensitive data, including camera source code. ASUS has been given a tight deadline of 21 hours to respond to the ransom demand, highlighting the urgency and severity of the situation.

The Inc ransomware gang has claimed responsibility for a cyberattack that led to the shutdown of the CodeRED Emergency Alert Platform, indicating a significant breach involving sensitive subscriber data. This incident raises concerns about the security of emergency communication systems and the potential misuse of stolen data.

The Clop ransomware group has shifted its focus from exploiting file transfer tools to targeting legacy business systems like Oracle EBS. This change signifies an evolution in their attack strategy, posing a significant threat to organizations using these systems due to potential data breaches and operational disruptions.

The article highlights that over half of ransomware incidents occur during weekends or holidays when organizations have reduced staffing and oversight. This lack of attention allows attackers to infiltrate systems more effectively, particularly following significant organizational changes such as mergers or acquisitions.

Asahi Group Holdings, Ltd reported a significant cybersecurity incident where hackers stole personal data of approximately 2 million customers and employees before launching a ransomware attack that severely disrupted its operations in Japan. This breach highlights the increasing vulnerability of organizations to cyber threats and the potential impact on customer trust and business continuity.

The Asahi data breach has resulted in the theft of personal information from approximately 2 million individuals, impacting both customers and employees. The incident escalated with the deployment of ransomware, severely disrupting Asahi's operations in Japan, highlighting the growing threat of cyberattacks on corporate entities.

Crisis24 has shut down its OnSolve CodeRED emergency notification system following a ransomware attack that has rendered the system nonoperational. The attack has resulted in data theft and has significantly impacted numerous agencies and their users, highlighting the severity of the incident.

Ransomware group Devman has claimed responsibility for a cyberattack that disrupted the Georgia Superior Court Clerks' Cooperative Authority, leading to a shutdown of its website and services. This incident raises concerns about ongoing outages across the state and highlights the increasing threat of ransomware attacks on public services.

The OnSolve CodeRED emergency notification system has been disrupted by a cyber-attack attributed to the INC Ransom group, leading to compromised emergency notifications and exposure of user data across the United States. This incident raises significant concerns about the security of critical communication systems and the potential risks to public safety.

A sophisticated supply chain attack has targeted South Korea's financial sector, resulting in the deployment of Qilin ransomware. This incident highlights the potential collaboration between a major Ransomware-as-a-Service group and North Korean state-affiliated actors, leading to significant data breaches across multiple victims.

The OnSolve CodeRED platform has suffered a ransomware attack by the Inc Ransom group, leading to significant disruptions and a data breach affecting local emergency alert systems across the United States. This incident highlights the vulnerabilities in critical communication infrastructures and the potential risks to public safety.

Everest ransomware has claimed responsibility for significant data breaches at Spain's national airline Iberia and Air Miles España, resulting in the theft of 596 GB of data. This incident poses a serious risk to millions of users, highlighting the ongoing threat of ransomware attacks in the travel sector.