After a period of quiet, DESORDEN Group has re-emerged as a threat to Malaysian entities, and now, it seems, to providing drinkable water to Johor (see this post from 2021 for an overview of Ranhill Utilities Berhad in the environment sector and the role of AquaSmart). In a statement sent to DataBreaches this morning, DESORDEN writes:…
Category: Non-U.S.
Presumably the largest Dutch user of the Genesis Market arrested
Who knew that the Netherlands was such a hotbed of cybercrime? This week, the police reported: Barendrecht – In the international investigation “Operation Cookie Monster”, a 32-year-old Dutchman who lives in Brazil was arrested after intensive investigation. This happened on Tuesday 18 July in Barendrecht. Because the man was in complete restraint after his arrest,…
NL: Investigation into arms trade leads to suspected cybercriminal
July 24 — as seen on OM.nl: Analysis of residual information from an investigation into arms trade led to the arrest of a 21-year-old man from Amsterdam at the beginning of this month. The Public Prosecution Service suspects the man of, among other things, years of fraud, theft, computer trespass and money laundering. According to the Public…
UK: Ambulance patient records system hauled offline for cyber-attack probe
Lindsay Clark reports: Several UK NHS ambulance organizations have been struggling to record patient data and pass it to other providers following a cyber-attack aimed at health software company Ortivus. In a statement, the Sweden-headquartered software vendor said it was subject to a cyber-attack on July 18 which hit UK customer systems within its hosted datacenter…
Yamaha confirms cyberattack after multiple ransomware gangs claim attacks
Jonathan Greig reports: Yamaha’s Canadian music division confirmed that it recently dealt with a cyberattack after two different ransomware groups claimed to have attacked the company. The Yamaha Corporation — different from the spun-off motorcycle division — is a Japanese manufacturing giant producing musical instruments and audio equipment. It is considered the world’s largest producer…
Norway says Ivanti zero-day was used to hack govt IT systems
Sergiu Gatlan reports: The Norwegian National Security Authority (NSM) has confirmed that attackers used a zero-day vulnerability in Ivanti’s Endpoint Manager Mobile (EPMM) solution to breach a software platform used by 12 ministries in the country. The Norwegian Security and Service Organization (DSS) said on Monday that the cyberattack did not affect Norway’s Prime Minister’s Office, the…