iT4iNT SERVER China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware http://dlvr.it/TRvhTS VDS VPS Cloud
seen from China
seen from Thailand
seen from United States

seen from United States

seen from China

seen from United States
seen from Kazakhstan
seen from United States
seen from Germany
seen from Singapore
seen from Argentina

seen from Australia

seen from United States
seen from Türkiye
seen from Yemen
seen from United States
seen from Israel
seen from China
seen from China
seen from Türkiye
iT4iNT SERVER China-Linked Storm-1175 Exploits Zero-Days to Rapidly Deploy Medusa Ransomware http://dlvr.it/TRvhTS VDS VPS Cloud
Ransomware Hits SimonMed Imaging, 1.2 Million Affected
The Medusa ransomware group infiltrated SimonMed’s network, exfiltrating sensitive patient data including medical and financial records. The attack demonstrates the continuing risks posed to healthcare providers and the large-scale impact of modern ransomware campaigns.
Source: SecurityWeek | SimonMed
Read more: CyberSecBrief
https://bit.ly/49Fpdrp - 🚨 Toyota Financial Services (TFS) has confirmed a cybersecurity breach in its systems in Europe and Africa after the Medusa ransomware group claimed responsibility for the attack. Medusa has listed TFS on its data leak site on the dark web, demanding a ransom of $8 million. The group threatens to release stolen data if the ransom is not paid, giving Toyota a 10-day deadline with an option to extend it for a daily fee. #CybersecurityBreach #ToyotaFinancialServices #MedusaRansomware 💻 To substantiate their claims, the Medusa group released sample data allegedly stolen from Toyota, including financial documents, invoices, account passwords, passport scans, and internal reports, primarily in German. This suggests that Toyota's Central European operations were significantly affected. Toyota Financial Services, a subsidiary of Toyota Motor Corporation, is involved in auto financing in 90% of Toyota's markets worldwide. #DataLeak #RansomwareAttack #CorporateCybersecurity 🔐 Toyota Financial Services has responded by taking certain systems offline to mitigate risk and is cooperating with law enforcement. They have begun the process of bringing systems back online in most affected countries. The extent of the data breach's impact on Toyota's operations and customer data remains under investigation. #SystemRecovery #LawEnforcementCooperation #CyberAttackResponse 🔍 The breach at Toyota Financial Services might be linked to the Citrix Bleed vulnerability (CVE-2023-4966), as noted by security analyst Kevin Beaumont. The company’s German office reportedly had an exposed Citrix Gateway endpoint that hadn't been updated since August 2023. This vulnerability has been exploited by various ransomware groups, including Lockbit, which recently targeted major companies worldwide.