Petition No 0729/2024 by N. W. (Austrian) on the implementation of an EU-Linux operating system in public administrations across all EU countries

https://www.europarl.europa.eu/petitions/en/petition/content/0729%252F2024/html/-

D-Link: PoC pubblico per lo sfruttamento della CVE-2024-10914
(AL01/241111/CSIRT-ITA)
Disponibile un Proof of Concept (PoC) per la vulnerabilità CVE-2024-10914 presente in alcuni modelli di NAS D-Link. Tale vulnerabilità – con score CVSS v3.x pari a 9.8 – potrebbe essere utilizzata per eseguire codice arbitrario sui dispositivi interessati tramite l’invio al NAS di una richiesta HTTP GET opportunamente predisposta.

by CSIRT - https://r.zerozone.it/post/JUBRWzabuGPABKt8B

🏴‍☠️ Ransomhub has just published a new victim: tolbertlegal.com
[AI generated] Tolbert Legal is a law firm that specializes in providing legal services in areas such as personal injury, family law, and criminal defense. Their team is dedicated to delivering personalized and effective legal solutions to meet the needs of their clients. With a focus on client satisfaction, they [...]

by Ransomware live - https://r.zerozone.it/post/91PdS2ByAz3hK8ZBH

🏴‍☠️ Ransomhub has just published a new victim: comarchs.com
[AI generated] Comarch is a global IT company that specializes in designing, implementing, and integrating advanced IT solutions for various industries. Founded in 1993 and headquartered in Kraków, Poland, Comarch offers services in telecommunications, finance, banking, healthcare, and more. The company is known for its focus on innovative software and [...]

by Ransomware live - https://r.zerozone.it/post/3aPrkv1r3TZ0a5TMY

Vidar nuovamente attivo in Italia tramite caselle PEC compromesse: nuova campagna con URL aggiornati
Vidar, noto per le sue capacità di sottrazione di credenziali e furto di dati sensibili, conferma ancora una volta la sua adattabilità e pericolosità, soprattutto considerando che la tecnica di veicolazione tramite PEC compromesse può indurre i destinatari a fidarsi dei messaggi ricevuti.

by CERT-AgID - https://r.zerozone.it/post/pM725cqF4rHFtsHYZ

Rilasciata una nuova versione del tool Hashr
Il CERT-AGID ha recentemente rilasciato una nuova versione del tool hashr come software libero e a codice aperto sotto licenza EUPL. Questo strumento, scaricabile gratuitamente dall'apposita pagina, è progettato per la ricerca di file malevoli all'interno di un filesystem confrontando i valori hash dei file riscontrati con una lista di [...]

by CERT-AgID - https://r.zerozone.it/post/GGTAbp3F0epJcvjdY

🏴‍☠️ Hunters has just published a new victim: Amourgis & Associates
Country : United States of America - Exfiltraded data : yes - Encrypted data : no

by Ransomware live - https://r.zerozone.it/post/qdZdgsXUGS4CnAxu5

🏴‍☠️ Ransomhub has just published a new victim: nynewspapers.com
[AI generated] "nynewspapers.com" is a digital platform that serves as a comprehensive directory and resource for newspapers in New York. It provides information on various publications across the state, catering to both local and regional audiences. The site is designed to help users find newspapers by location or type, offering [...]

by Ransomware live - https://r.zerozone.it/post/5CcbW2XBG6HH996J1

🏴‍☠️ Hunters has just published a new victim: Dietzgen Corporation
Country : United States of America - Exfiltraded data : yes - Encrypted data : no

by Ransomware live - https://r.zerozone.it/post/PXgHggtXknEpfnkrw

🏴‍☠️ Akira has just published a new victim: Followmont TransportPty Ltd
Followmont Transport can provide a complete transport, warehousin g and logistics solution or simply deliver a one-off parcel. We will upload 230Gb of data including NDAs, passports, lot’s of driver licenses, medical documents, detailed financial informati on.

by Ransomware live - https://r.zerozone.it/post/MhDCX3arRsKwP2HQ0

🏴‍☠️ Blacksuit has just published a new victim: dezinecorp.com
DezineCorp has been a trusted supplier of decorated promotional products in Canada since 2009, enabling businesses of all sizes to build their brand with top quality branded merchandise.

by Ransomware live - https://r.zerozone.it/post/5xaEpMzfGT60RXNgu

🏴‍☠️ Ransomhub has just published a new victim: potteau.be
[AI generated] Potteau.be is a Belgian company specializing in the design and manufacture of high-quality architectural elements, primarily focusing on facade cladding and sun protection solutions. They offer custom-made products tailored to the specific needs of their clients, combining aesthetic appeal with functionality. The company is known for its innovation, [...]

by Ransomware live - https://r.zerozone.it/post/2wZV3gB4PSREp16fv

🏴‍☠️ Lynx has just published a new victim: Future Metals
The Future Metals Company

by Ransomware live - https://r.zerozone.it/post/MJAd0byDuqWxNMvy4

🏴‍☠️ Blacksuit has just published a new victim: Supply Technologies
Supply Technologies, a subsidiary of ParkOhio(NASDAQ:PKOH), specializes in supplier selection and management, planning, implementing, managing the physical flow of product for world-class international manufacturing companies, and servicing customers in the various markets.

by Ransomware live - https://r.zerozone.it/post/dUuhau3jCTcdKrzJu

🏴‍☠️ Blacksuit has just published a new victim: Maxxis International
Founded in Taiwan, Maxxis got its start by making bicycle tires, and soon expanded its offerings to include tires for auto, light truck, ATV, motorcycle, trailer, and more. Today, Maxxis distributes its products in more than 180 countries and has operations in Asia, North America, South America, Europe, Africa, and [...]

by Ransomware live - https://r.zerozone.it/post/PY4vVYu4f4S810gne

🏴‍☠️ Lynx has just published a new victim: Plowman Craven
Integrated measurement and consultancy services to the property and infrastructure markets worldwide…we’re not just a Survey Company

by Ransomware live - https://r.zerozone.it/post/R5YSk8BANYrNrY4uc

🏴‍☠️ Killsec has just published a new victim: National Institute of Administration
N/A

by Ransomware live - https://r.zerozone.it/post/qBUxPGJRCKzC3Y8rK

🏴‍☠️ Lynx has just published a new victim: DSZ
DZS is a global leader of Network Edge, Connected Home/Enterprise and AI Cloud Software solutions that enable gigabit broadband everywhere.

by Ransomware live - https://r.zerozone.it/post/eeUd90z9VEQh4Xs7G

🏴‍☠️ Lynx has just published a new victim: TaxPros of Clermont
For over 25 years, Tax Preparation/Consulting firm owned by CPA's and Attorney's specializing in ALL types of tax return preparation/consulting/IRS Tax Defense.

by Ransomware live - https://r.zerozone.it/post/k0gQZmqKfKrhBHt46

🏴‍☠️ Lynx has just published a new victim: Banco de Fomento Internacional
Finance Organization.

by Ransomware live - https://r.zerozone.it/post/6H0PhNApZDwBKTKzk

SAP Security Patch Day
(AL02/241112/CSIRT-ITA)
SAP rilascia il Security Patch Day di novembre che risolve diverse vulnerabilità, di cui una con gravità “alta” che interessa il prodotto SAP Web Dispatcher, componente chiave per la gestione del traffico HTTP(S) verso i sistemi SAP. Tale vulnerabilità potrebbe permettere ad un utente malevolo la creazione di link opportunamente [...]

by CSIRT - https://r.zerozone.it/post/Yn0ZJJpYpDPuWYn49