DDW Weekly Highlights in August W3
2024.08.22
☑️ S2W DDW Weekly Highlights in August W3
⚠️ Israel Rocked by Severe Data Breaches Amid Ongoing Hamas Conflict
• Israel is prominently featured on dark web forums due to ongoing data breaches, fueled by tensions with Hamas and potential escalation with Iran.
• A statistical review highlights Israel as the second most affected nation by data breaches in the recent month.
• Victim country ranking: USA, Israel, Russia, Bangladesh, India.
• The most significant breaches have occurred in governmental bodies, notably including the Ministry of Defense and military institutions, as well as the judiciary and Ministry of Welfare.
⚠️South Korean Educational Website Compromised, Sensitive Data on Sale
• Internal documents from a South Korean Ministry of Education research site have been compromised and are being actively sold on BreachForums.
• On August 15th, known threat actor ‘IntelBroker’ disclosed the sale of approximately 1.6 million lines of data from CareerNet, including user IDs and encrypted passwords.
• A sample of the breached data was shared online, exposing the personal details of registered users.
⚠️U.S. Daily, The Washington Times, Faces Data Leak After Ransomware Attack
• The Washington Times was hit by a ransomware attack, resulting in substantial data leakage and extortion attempts by the ransomware gang Rhysida.
• On August 15th, Rhysida posted samples of the compromised documents and IDs from The Washington Times on their leak site.
• Rhysida demands 5BTC (approximately 400 million KRW), giving the media outlet, owned by the Unification Church, a seven-day ultimatum to respond.
If you want to read more, follow the newsletter as below and visit S2W Inc. website to contact us.
Attachments
Threat Analysis Brief Reports
Special Report: Ransomware Trends and Profiling, First Half of 2024
2024.08.21
Previous
Threat Intelligence Reports
Analysis of the North Korea-backed puNK-003’s Lilith RAT ported to AutoIt Script
2024.08.22
Next