MX: Attack on Financiera Reyes Claimed by LockBit3.0
On December 12, Financiera Reyes was added to the leak site of LockBit3.0. No proof was provided, however. Finding no notice on the financial institution’s social media sites or web site, DataBreaches contacted Financiera Reyes on December 12 to ask them to confirm or deny any incident. No reply has been received and DataBreaches has not found any updates on the claimed attack.
VE: Attack on Amazing Global Claimed by LockBit3.0
On December 12, LockBit3.0 also added a technology firm, Amazing-Global, to their leak site. As with Financiera Reyes, there was no proof posted, and DataBreaches could find nothing on the technology firm’s web site or social media about any attack. Amazing Global did not reply to an inquiry sent to it on December 12.
MX: Sustainability company named by LockBit3.0
There seems to be a theme here involving LockBit3.0 activity. Veolus was also added to the LockBit3.0 leaks page, but without any proof. And yet again, we have found no confirmation and received no reply from the alleged victim firm.
BR: Textile Firm Attack Claimed by LockBit3.0
On December 10, Biotipo was added to the LockBit3.0 leaks page. Some sample files provided as proof appear consistent with the jeans firm. No notice appears on their social media or web site, however, and they, too, did not reply to DataBreaches’ inquiries.
TT: Beacon Insurance Company Ltd Named by DataLeak
On November 27, The Beacon Insurance Company Ltd was named on a web site called “DataLeak.” The site claims to have about 310GB of information on this insurer that has not yet been leaked. In response to our email inquiry of December 7, Beacon insurance responded on December 12:
“Thank you for your email. We were contacted, yes, and have thoroughly investigated the case, mitigated the exposure and all relevant parties were informed.”
CO: Medellin’s Public Utilities Company Under Cyber Attack
On December 13, public services provider Empresas Públicas de Medellín (EPM) tweeted that it was facing a cybersecurity incident .
EPM se permite informar a la opinión pública que se encuentra atendiendo un incidente de ciberseguridad, por lo que ha solicitado a sus funcionarios trabajar hoy desde sus casas. Esta situación no tiene afectación en la prestación de los servicios públicos
de energía, agua y gas— EPM estamos ahí (@EPMestamosahi) December 13, 2022
Machine Translation:
“EPM informs the public that it is dealing with a cybersecurity incident, so it has asked its employees to work from home today. This situation does not affect the provision of energy, water and gas public services.”
In the same Tweet thread, EPM also made clear that customer service offices and virtual customer service channels were not available.
El Colombiano reports that services were impacted for customers who use prepaid electric and water services. Unable to recharge or replenish their accounts, refrigerators stopped working and food started spoiling, etc.
According to Bleeping Computer, ALPHV (BlackCat) threat actors are responsible for this incident.
BR: Aegea Suffers Cyberattack
Aegea Saneamento e Participações S.A, a private company operating in the water and waste sector, has experienced a cyber-attack. The attack was announced on December 14 and the systems have already been restored, according to InfoMoney. The identity of the threat actors was not mentioned.
MX: ASEG Hit by Ransomware Attack
The technology system of the Superior Audit Office of Guanajuato (ASEG) suffered a ransomware attack that encrypted all the information of the system. The attack was detected on December 5. In a statement to Periodico Correo, the head of the body Javier Perez Salazar said (translation):
“Everything we work with in audits, legal processes, notifications, electronic signature, all our modules were encrypted and we cannot use them”.
So far, the identity of the attackers has not been revealed.
Edited by Dissent