France’s Grane Palais, Arcadian Ambulance Service, Security Service of Ukraine, AutoCanada, Halliburton, pharmaceutical giant Cencora, ADT Alarm, US National Public Data, POLADA, and Kootenai Health share a commonality: they were all targeted by cybercriminals in August 2024.
- Ransomware Incidents in August 2024
- Data Breaches Reported in August 2024
- Cyber Assaults in August 2024
- Newly Identified Malware and Ransomware
- Vulnerabilities Found and Security Patches Distributed
- Advisories Released, Reports, and Analyses from August 2024
We’re back with a comprehensive overview of cyber attacks, ransomware incidents, and data breaches from August 2024. The varied organizations affected this month underscore a stark reality: no one is safe from the threats posed by malicious actors online.
Is there a remedy for this widespread issue? While complete immunity from cyber attacks is unattainable, there are many proactive measures you can take to shield your business. Implementing a Cyber Incident Planning and Response strategy is crucial for minimizing the impact of any cybersecurity event. Additionally, leveraging Software Testing Services can help uncover weaknesses in your systems, further enhancing your defenses against potential threats.
Start by organizing your Incident Response plan and training your team with our NCSC Assured Cybersecurity Training programs. It’s vital to recognize the significance of Crisis Communications and to establish solid protocols.
Moreover, ensure that your staff practices responding to cyber incidents and decision-making through Cyber Attack Tabletop Exercises. The various attacks detailed below can serve as excellent scenarios for your own tabletop exercises. If any of this feels overwhelming, don’t hesitate to contact our Virtual Cybersecurity Assistants to help you strengthen your cybersecurity posture and resilience in a cost-effective manner today.
Ransomware Attacks in August 2024?
Date: August 01, 2024
Victim: Acadian Ambulance Services
Summary: Acadian Ambulance Services suffers a leak of protected health information following a cyber attack.
Threat Actor: Daixin Ransomware
Business Impact: The attack led to Acadian being listed on a dark web leak site. The Daixin team demanded $7 million in ransom, threatening to release stolen health data if not paid. Acadian proposed $173,000, which the group rejected, claiming to have stolen 11 million records.
Source Link: Acadian Ambulance Services ransomware attack
Date: August 02, 2024
Victim: Sable International
Summary: Hackers directly contact clients of this immigration firm after a damaging cyber attack.
Threat Actor: BianLian Ransomware
Business Impact: The attack may have compromised sensitive customer data, leading Sable International to shut down its servers and online portals. The attackers have been emailing clients to pressure the company for ransom.
Source Link: Sable International ransomware attack
Date: August 04, 2024
Victim: Keytronic
Summary: Keytronic reports losses exceeding $17 million due to a ransomware incident.
Threat Actor: Black Basta Ransomware
Business Impact: The electronic manufacturing services provider disclosed significant financial losses linked to a ransomware attack detected in May, impacting operations at its U.S. and Mexico sites.
Source Link: Keytronic ransomware attack
Date: August 04, 2024
Victim: OneBlood
Summary: A southern blood center recovers from a ransomware attack.
Threat Actor: Russian Cybercrime Ransomware
Business Impact: OneBlood faced operational disruptions affecting critical software systems but began recovery about a week after the attack.
Source Link: Healthcaredive.com
Date: August 05, 2024
Victim: France’s Grand Palais
Summary: France’s Grand Palais announces a cyber attack during the Olympic Games.
Threat Actor: Unknown
Business Impact: The attack forced the Grand Palais to shut down its systems, disrupting retail operations at various museums. The attackers left a ransom note demanding cryptocurrency for the return of stolen data.
Source Link: France’s Grand Palais ransomware attack
Date: August 06, 2024
Victim: Sumter County Sheriff’s Office
Summary: A hacking group demands 7 BTC from the Sumter County Sheriff’s Office.
Threat Actor: Rhysida Ransomware
Business Impact: The Rhysida group claimed to have breached the office, exfiltrating sensitive data such as passports and Social Security numbers, demanding approximately $425,000 in ransom.
Source Link: Sumter County Sheriff’s Office ransomware attack
Date: August 07, 2024
Victim: McLaren Health Care
Summary: A Michigan hospital system grapples with a cyber attack amid concerns over Russian ransomware.
Threat Actor: INC Ransomware
Business Impact: McLaren Health Care reported outages affecting its phone and computer systems due to a cyber attack.
Source Link: McLaren Health Care ransomware attack
Date: August 08, 2024
Victim: City of Killeen
Summary: Killeen faces a ransomware attack attributed to a ‘cybercriminal’ group.
Threat Actor: BlackSuit Ransomware
Business Impact: The attack disrupted city government emails and court operations, prompting officials to advise residents to monitor their financial accounts.
Source Link: kdhnews.com
Date: August 08, 2024
Victim: City of Columbus
Summary: Stolen data from Columbus is leaked after unsuccessful ransom auctions.
Threat Actor: Rhysida Ransomware
Business Impact: Over three terabytes of stolen data were released on the dark web after the hackers failed to find buyers for the information.
Source Link: nbc4i.com
Date: August 12, 2024
Victim: Evolution Mining
Summary: The Australian gold mining company announces a ransomware attack.
Threat Actor: Unknown
Business Impact: Evolution informed investors about the impact on its IT systems due to the ransomware incident.
Source Link: Evolution ransomware attack
Date: August 12, 2024
Victim: Schlatter Group
Summary: A Swiss manufacturer investigates a ransomware attack that paralyzed its IT network.
Threat Actor: Unknown
Business Impact: The company reported being blackmailed and had no access to its email system, initiating an investigation to assess potential data theft.
Source Link: Schlatter Group ransomware attack
Date: August 12, 2024
Victim: Kootenai Health
Summary: A ransomware attack impacts the personal data of 464,000 patients.
Threat Actor: 3AM Ransomware
Business Impact: Kootenai Health disclosed a data breach involving a 22GB archive of stolen personal information made freely available online, heightening risks for those affected.
Source Link: Ransomware attack on Kootenai Health
Date: August 19, 2024
Victim: CannonDesign
Summary: AvosLocker confirms a ransomware attack against CannonDesign.
Threat Actor: AvosLocker Ransomware
Business Impact: The attack compromised data related to 13,000 clients of the global architectural and consulting firm, dating back to a January 2023 incident.
Source Link: SCMagazine
Date: August 23, 2024
Victim: American Radio Relay League
Summary: The ARRL confirms a $1 million ransom payment.
Threat Actor: Embargo Ransomware
Business Impact: Following a ransomware attack in May, the ARRL paid the ransom to regain access to encrypted systems after taking affected systems offline to mitigate further breaches.
Source Link: American Radio Relay League ransomware attack update
Date: August 26, 2024
Victim: Patelco
Summary: Patelco alerts 726,000 customers about a data breach caused by ransomware.
Threat Actor: RansomHub Gang
Business Impact: Patelco Credit Union reported a data breach involving personal information stolen during a RansomHub ransomware attack earlier in the year.
Source Link: Patelco ransomware attack update
Date: August 28, 2024
Victim: Microchip Technology
Summary: The Play Ransomware Group claims a breach of Microchip and the theft of sensitive data.
Threat Actor: Play Ransomware
Business Impact: The group asserted that they stole confidential and personal information, including financial data, from Microchip Technology in a recent cyber attack.
Source Link: pcmag.co
Data Breaches in August 2024.
Date: August 01, 2024
Victim: Cencora
Summary: Cencora reveals that patient health information was compromised in a cyber attack from February.
Threat Actor: Unknown
Business Impact: The breach exposed protected health information and personally identifiable information (PII) affecting patients linked to several pharmaceutical companies, including Novartis and Bayer.
Source: BleepingComputer
Date: August 01, 2024
Victim: Unnamed Taiwanese Research Organization
Summary: A Taiwanese research institute focused on sensitive technologies was breached by APT41 hackers.
Threat Actor: Chinese APT41 Hackers
Business Impact: The attackers used ShadowPad malware and other tools to exfiltrate numerous files from the organization.
Source: Data breach attack on Taiwanese research organization
Date: August 05, 2024
Victim: Mobile Guardian
Summary: A hacker breached Mobile Guardian, wiping data from over 13,000 devices.
Threat Actor: Unknown
Business Impact: The breach affected the iPads and Chromebooks of students in North America, Europe, and Singapore, compromising their data.
Source: BleepingComputer
Date: August 08, 2024
Victim: ADT Alarm
Summary: ADT reported that unauthorized access allowed hackers to obtain “limited” customer data.
Threat Actor: Unknown
Business Impact: The breach included customer order details, such as email addresses and home addresses.
Source: The Record
Date: August 08, 2024
Victim: CSC ServiceWorks
Summary: CSC ServiceWorks disclosed a data breach resulting from a cyber attack in 2023.
Threat Actor: Unknown
Business Impact: Personal information of an undisclosed number of individuals was compromised after threat actors accessed the network from September 2023 to February 2024.
Source: CSC ServiceWorks data breach
Date: August 08 and 15, 2024
Victim: National Public Data
Summary: Hackers leaked 2.7 billion records containing Social Security numbers.
Threat Actor: Fenice and SXUL on BreachForum
Business Impact: The leaked data included extensive personal information for individuals in the U.S., making it a significant security threat.
Source: BleepingComputer
Date: August 12, 2024
Victim: POLADA (Poland’s Anti-Doping Agency)
Summary: A suspected “hostile state” hack led to a data breach involving athletes’ personal information.
Threat Actor: Beregini (Ukrainian Hacker Group)
Business Impact: Over 50,000 confidential files, including medical records, were compromised, leading to the agency’s website going offline.
Source: The Record
Date: August 12, 2024
Victim: People Power Party (PPP) of South Korea
Summary: North Korean hackers allegedly stole sensitive technical data.
Threat Actor: DPRK Hackers
Business Impact: Information about K2 tanks and spy planes was compromised, posing national security risks.
Source: Data breach attack on South Korea’s PPP
Date: August 13, 2024
Victim: Orion (Luxembourg-based company)
Summary: Orion suffered a $60 million loss due to a business email compromise scam.
Threat Actor: Unknown
Business Impact: The scam involved fraudulent wire transfers, leading to significant financial losses for the carbon products supplier.
Source: The Record
Date: August 18, 2024
Victim: FlightAware
Summary: A configuration error exposed user data for an extended period.
Threat Actor: Unknown
Business Impact: Users were advised to reset their passwords due to potential exposure of personal account information.
Source: FlightAware data breach
Date: August 18, 2024
Victim: Oregon Zoo
Summary: Cybercriminals stole credit card information from the zoo’s website.
Threat Actor: Unknown
Business Impact: Over 100,000 individuals had their credit card data compromised after hackers accessed the zoo’s payment platform.
Source: Data breach attack on Oregon Zoo
Date: August 18, 2024
Victim: Toyota North America
Summary: Toyota confirmed a third-party data breach affecting customer information.
Threat Actor: ZeroSevenGroup
Business Impact: An archive of 240GB containing sensitive employee and customer data was leaked on a hacking forum.
Source: Toyota data breach
Date: August 26, 2024
Victim: Park’N Fly
Summary: Park’N Fly notified one million customers about a data breach.
Threat Actor: Unknown
Business Impact: The breach compromised personal and account information of customers in Canada.
Source: Park’N Fly data breach
Date: August 26, 2024
Victim: Exotel
Summary: The customer-engagement firm Exotel reported a data breach.
Threat Actor: Unknown
Business Impact: The breach affected its cloud infrastructure, compromising customer data.
Source: Exotel data breach
Date: August 27, 2024
Victim: Young Consulting (now Connexure)
Summary: BlackSuit ransomware stole data from nearly 950,000 individuals.
Threat Actor: BlackSuit Ransomware
Business Impact: The firm issued breach notifications following the data exposure in an April attack.
Source: Data breach attack on Young Consulting
Date: August 28, 2024
Victim: Banham Poultry
Summary: Staff personal details were stolen in a cyber attack on the poultry factory.
Threat Actor: Unknown
Business Impact: The breach involved unauthorized access to employee data, heightening security concerns.
Source: Banham Poultry data breach
Date: August 28, 2024
Victim: Azov Battalion (3rd Separate Assault Brigade)
Summary: A Russian hacker group leaked information about 7,700 Azov soldiers.
Threat Actor: RaHDit Hackers
Business Impact: The breach included over 4,000 images and sensitive information of battalion members.
Source: Data breach attack on Ukraine’s Azov Battalion
Date: August 28, 2024
Victim: Durex India
Summary: Durex India exposed customers’ private order information.
Threat Actor: Unknown
Business Impact: Customer data, including names, order details, and contact information, was compromised on the brand’s website.
Source: TechCrunch
Date: August 29, 2024
Victim: Fota Wildlife Park
Summary: The park alerted customers about a cyber attack.
Threat Actor: Unknown
Business Impact: Customers who made transactions between May 12 and August 27 were warned that their financial information might be at risk.
Source: Fota Wildlife Park data breach.
I enjoyed reading your piece and it provided me with a lot of value.
Please tell me more about this. May I ask you a question?
Thank you for your articles. I find them very helpful. Could you help me with something?
The articles you write help me a lot and I like the topic
I enjoyed reading your piece and it provided me with a lot of value.
Great content! Super high-quality! Keep it up!
Thank you for your help and this post. It’s been great.
Thanks for expressing your ideas. A very important factor is that pupils have an option between national student loan plus a private education loan where it can be easier to opt for student loan online debt consolidation than with the federal student loan.
The following time I read a blog, I hope that it doesnt disappoint me as much as this one. I mean, I do know it was my choice to read, however I truly thought youd have one thing attention-grabbing to say. All I hear is a bunch of whining about something that you possibly can repair in the event you werent too busy searching for attention.
Hi! This is my first visit to your blog! We are a group of volunteers and starting a new initiative in a community in the same niche. Your blog provided us useful information to work on. You have done a marvellous job!
Many thanks for this article. I’d personally also like to express that it can possibly be hard when you find yourself in school and simply starting out to establish a long credit history. There are many pupils who are simply just trying to pull through and have a lengthy or favourable credit history can occasionally be a difficult matter to have.
I just couldn’t depart your website prior to suggesting that I actually enjoyed the standard info a person provide for your visitors? Is gonna be back often to check up on new posts
I have learned some new things via your web site. One other thing I’d really like to say is the fact that newer computer system operating systems are inclined to allow far more memory to use, but they additionally demand more storage simply to work. If an individual’s computer could not handle far more memory as well as the newest application requires that storage increase, it can be the time to buy a new Laptop. Thanks
Thanks for your post on the vacation industry. I might also like contribute that if you’re a senior taking into consideration traveling, it really is absolutely crucial to buy travel cover for seniors. When traveling, seniors are at high risk of having a professional medical emergency. Obtaining right insurance policy package for the age group can safeguard your health and give you peace of mind.
Hi there, You’ve performed an incredible job. I will certainly digg it and in my view recommend to my friends. I’m sure they’ll be benefited from this site.
Wow, marvelous blog structure! How lengthy have you ever been running a blog for? you make blogging glance easy. The full glance of your web site is excellent, as neatly as the content material!
Keep working ,splendid job!
Thank you for the good writeup. It in fact was a amusement account it. Look advanced to more added agreeable from you! By the way, how could we communicate?
I enjoyed reading your piece and it provided me with a lot of value.
Thanks for your posting on this blog site. From my experience, occasionally softening upwards a photograph may possibly provide the wedding photographer with a chunk of an inventive flare. Often however, that soft blur isn’t what precisely you had as the primary goal and can often times spoil an otherwise good photograph, especially if you intend on enlarging this.
Normally I don’t read article on blogs, but I would like to say that this write-up very pressured me to check out and do it! Your writing taste has been amazed me. Thanks, quite great article.
Valuable information. Lucky me I found your website unintentionally, and I am stunned why this coincidence didn’t came about in advance! I bookmarked it.