Dr. Manish Rane’s Post

Threat actors assert that they have breached @Dell systems, encompassing Jira, Atlassian, and Confluence, presumably via password access. Information disclosed by grep on BreachForums comprised the full names, identification numbers, employment status, department codes, and internal identifiers of Dell employees. Additionally, it included two email addresses associated with the "dell.com" domain; however, it did not contain any plaintext credentials or personally identifiable information. #databreach #cyberattack

According to a recent announcement by the Lockbit 3.0 #threatgroup, they asserted that the Bank of India has paid a ransom in Tether USD, an official stablecoin. On August 20th, Lockbit 3.0 released a statement claiming they had infiltrated the Bank of India and extracted 12.36 million internal records.

The #ransomware group known as meow has successfully infiltrated Zydus Pharmaceuticals (USA) Inc., resulting in the exfiltration of approximately 200 GB of data. #ransomware #cybersecurity

The Sun Group company has once again been targeted by the lockbit ransomware group. This time, the victim is Sun Petrochemicals Pvt. Ltd. (SunPetro), India's second largest private oil producer.      

IIT Madras has been named as the victim of the lockbit ransomware gang, who assert that they have compromised 107 employees, over 12,000 users, and more than 20 URLs. Indian Institute of Technology, Madras CERT-In National Informatics Centre, MeitY

Intelbroker, a well-known threat actor, is currently offering access to a major cybersecurity firm. Based on leaked information, it is possible that the company in question is Zscaler. Subsequently, Zscaler issued a statement regarding the situation. https://lnkd.in/d36ZR6ds

The #lockbit3 #ransomware gang has struck again, this time targeting 32 #victims in a single day after a period of silence. It appears that they are now operating at full capacity. Comprises a big conglomerate from India gammarenax.ch oraclinical.com ville-bouchemaine.fr sonoco.com thebiglifegroup.com elarabygroup.com aev-iledefrance.fr telekom.com remagroup.com grand-indonesia.com carespring.com syntax-architektur.at qstartlabs.com netspectrum.ca cdev.gc.ca isee.biz epr-groupe.fr cpashin.com acsistemas.com arcus.pl yucatan.gob.mx getcloudapp.com parat-techology.com ishoppes.com geotechenv.com irc.be htcinc.com svenskakyrkan.se tdt.aero kras.hr eviivo.com sunray.com

It is quite unusual that news regarding Kotak Mahindra and the ban imposed by RBI on customer onboarding through their digital platform has become widely known. This ban has resulted in a significant 10% drop in the share price within a single day. Interestingly, the reason behind this ban is even more peculiar. After examining the bank's IT systems over the course of two years, RBI found that the bank had not successfully addressed the issues The justification given is; these actions are necessitated based on significant concerns arising out of Reserve Bank’s IT Examination of the bank for the years 2022 and 2023 and the continued failure on part of the bank to address these concerns in a comprehensive and timely manner. Serious deficiencies and non-compliances were observed in the areas of IT inventory management, patch and change management, user access management, vendor risk management, data security and data leak prevention strategy, business continuity and disaster recovery rigour and drill, etc. For two consecutive years, the bank was assessed to be deficient in its IT Risk and Information Security Governance, contrary to requirements under Regulatory guidelines. During the subsequent assessments, the bank was found to be significantly non-compliant with the Corrective Action Plans issued by the Reserve Bank for the years 2022 and 2023, as the compliances submitted by the bank were found to be either inadequate, incorrect or not sustained. The IT systems at Number 4 Private commercial bank are not operating as anticipated. Isn't that peculiar? #rbiban #kotakbank #itsystems #auditing

The Killsec #ransomware group has recently declared delhipolice as their latest victim of ransomware. They assert that they have successfully obtained a substantial volume of data and have even implanted a backdoor on the server. CERT-In National Informatics Centre, MeitY

The #LockBit gang has ultimately listed the Polycab India Limited data for sale on the dark web. Despite Polycab's previous claims in various discussions that their internal confidential data remained secure, the images shared suggest otherwise. It appears that approximately 500 GB of data has been stolen by the #ransomware gang.