Bezbedan Balkan Bezbednost državnih resursa Kompromitovani resursi v
Kibernetički napad na KBC Zagreb - Lockbit ransomware

Threaded Mode
Kibernetički napad na KBC Zagreb - Lockbit ransomware
milos_rs Offline
Administrator
*******
Posts: 1,056
Threads: 405
Joined: Sep 2022
Reputation: 308
#1
06-27-2024, 02:31 PM (This post was last modified: 07-01-2024, 03:21 PM by milos_rs.)
https://vijesti.hrt.hr/hrvatska/kbc-zagr...a-11631404
Quote:KBC Zagreb izvijestio je u četvrtak da je u jutarnjim satima na bolnicu izveden kibernetički napad. Dodali su da su zbog dodatnih provjera ugašeni svi sustavi te da će zbog zaštite građana biti uključeni tek kada se uvjere u njihovu ispravnost. 

Kibernetički napad na najveću zagrebačku bolnicu uslijedio je dan nakon što su hakeri u srijedu popodne napali nekoliko internetskih stranica hrvatskih institucija, među kojima su Ministarstvo financija, Porezna uprava, HNB i Zagrebačka burza koje su proradile oko 20 sati.
Find
Reply
VincaSec Away
Posting Freak
*****
Posts: 793
Threads: 443
Joined: Oct 2023
Reputation: 162
#2
06-27-2024, 02:45 PM (This post was last modified: 06-27-2024, 02:45 PM by VincaSec.)
Quote:Gdje je došlo do upada?
"Ovaj cyber napad se dogodio između aplikacije koju koriste liječnici i servera KBC-a. Tu između su se ubacili hakeri koji imaju priliku kontrolirati cijeli sustav i u jednom trenu možda ga preuzeti", piše N1.
https://www.index.hr/vijesti/clanak/hake...ostalo_d_0
There is no patch for stupidity - Kevin Mitnick
Website Find
Reply
milos_rs Offline
Administrator
*******
Posts: 1,056
Threads: 405
Joined: Sep 2022
Reputation: 308
#3
07-01-2024, 03:27 PM (This post was last modified: 07-01-2024, 03:33 PM by milos_rs.)
Izgleda da ih je Lockbit3 napao, ukrao podatke i preti da ih objavi ako ne plate, nisam za sada siguran da li su im zaključali sve podatke ili samo prete objavom...

   

Quote:University Hospital Centre Zagreb (KBC Zagreb) has been listed as a victim by the LockBit 3.0 ransomware group.
The hackers allegedly exfiltrated: - Medical records; - Patient exams and studies; - Doctors' research papers; - Surgery; - Organ and donor data; - Organ and tissue banks; - Employee data, (addresses, phone numbers); - Employee legal documents; - Data on donations and relationships with private companies; - Donation book; - Medication reserve data; - Personal data breach reports.

Ransom deadline: 18th Jul 24.

During the night of Jun 24 to 25, a cyberattack targeted the University Hospital Centre Zagreb (KBC Zagreb) in Croatia, forcing the hospital to shut down its entire IT infrastructure.

The attack significantly damaged the hospital’s digital systems, causing a temporary rollback to manual processes.
Find
Reply
milos_rs Offline
Administrator
*******
Posts: 1,056
Threads: 405
Joined: Sep 2022
Reputation: 308
#4
07-17-2024, 09:42 AM
Nakon hakerskog napada oboleli od raka nedeljama nisu išli na zračenje u KBC Zagreb: "Radićemo u tri smene"

Quote:Nakon sajber napada na najveću hrvatsku bolnicu KBC Zagreb i brojnih prijava da onkološki bolesnici ne mogu da se zrače jer su njihovi planovi zračenja izgubljeni, iz bolnice su se oglasili saopštenjem u kojem navode da na sam dan sajber napada niti jedan od pet linearnih akceleratora nije radio.
"Već naredni dan, 28.juna, a nakon sigurnosnih provera, s radom su zapečala dva uređaja. Preostala tri su bila van funkcije zbog neophodne sigurnosne provere do 10. jula 2024. oko 13 časova", navode u saopštenju, prenosi Jutarnji.

Ako se ništa nije promenilo, rok za plaćanje otkupa je sutra, 18. jul
Find
Reply
milos_rs Offline
Administrator
*******
Posts: 1,056
Threads: 405
Joined: Sep 2022
Reputation: 308
#5
07-18-2024, 09:34 PM
Stručnjak o hakerskom napadu na KBC Zagreb: “Ovo sve postaje kao onaj bosanski vic”

Quote:Stručnjak za informacijsku sigurnost, Lucijan Carić, gostovao je u Novom danu kod Sandre Križanec gdje je komentirao hakerske napade na KBC Zagreb.
Find
Reply
VincaSec Away
Posting Freak
*****
Posts: 793
Threads: 443
Joined: Oct 2023
Reputation: 162
#6
07-22-2024, 08:54 PM
izvor: Cavalier
Quote:
?‍? Compromised Employees: 23
-----
? Compromised Users: 1
-----
?‍? Compromised Third Party Employees: 19
-----
?️ Most recent credential identified: 2024-04-01T19:09:38.000Z
--------------------------------------
Employee URLs: 5
-----
User URLs: 2
-----
Third Party Domains: 14
-----
?‍? Top Employee URLs ⬇️
https://webmail.kbc-zagreb.hr/rc
-----
https://webmail.kbc-zagreb.hr/rc/
-----
http://www.kbc-zagreb.hr/
-----
https://email.kbc-zagreb.hr/owa/auth/logon.aspx
-----
https://webmail.kbc-zagreb.hr
   
-----
? Employee Password Strength Statistics:
 
Total Passwords: 38+
Too Weak: 2.63%
Weak: 92.11%
Medium: 0%
Strong: 5.26%
   
-----
?️ Employee Anti-Virus Installs:
   
Total Anti-Viruses: 25+
 
20% Premium Anti-Virus
52% Free Anti-Virus
28% No Anti-Virus
     
There is no patch for stupidity - Kevin Mitnick
Website Find
Reply
VincaSec Away
Posting Freak
*****
Posts: 793
Threads: 443
Joined: Oct 2023
Reputation: 162
#7
07-22-2024, 09:31 PM (This post was last modified: 07-22-2024, 10:16 PM by milos_rs.)
   

   
   
There is no patch for stupidity - Kevin Mitnick
Website Find
Reply
VincaSec Away
Posting Freak
*****
Posts: 793
Threads: 443
Joined: Oct 2023
Reputation: 162
#8
07-22-2024, 09:33 PM
Code:
"date_uploaded":"2024-04-10T10:51:06.524Z"
"stealer_family":"StealC"
"computer_name":"Admin"
"operating_system":"Windows 10 Pro"
"antiviruses":[]0 items
"employee_session_cookies":233 items
[0 - 100]
[100 - 200]
[200 - 233]
"date_compromised":"2024-04-01T19:09:38.000Z"
"credentials":[2 items
0:{5 items
"type":"employee"
"url":"••••••••••••••••••••••••••••••••"
"domain":"kbc-zagreb.hr"
"username":"••••••"
"password":"••••••••••"
}
1:{5 items
"type":"employee"
"url":"••••••••••••••••••••••••••••••••"
"domain":"kbc-zagreb.hr"
"username":"••••••"
"password":"••••••••••"
}
]
Code:
"date_uploaded":"2022-12-21T22:02:45.000Z"
"stealer_family":"RedLine"
"computer_name":"karlo"
"operating_system":"Windows 10 Enterprise x64"
"antiviruses":[1 item
0:"Windows Defender"
]
"employee_session_cookies":[...]57 items
"date_compromised":"2022-11-20T00:58:14.000Z"
"credentials":[2 items
0:{5 items
"type":"employee"
"url":"••••••••••••••••••••••••••••••••"
"domain":"kbc-zagreb.hr"
"username":"••••••"
"password":"••••••••"
}
1:{5 items
"type":"employee"
"url":"••••••••••••••••••••••••••••••••"
"domain":"kbc-zagreb.hr"
"username":"••••••••"
"password":"••••••••"
}
]
Ima tu još više
There is no patch for stupidity - Kevin Mitnick
Website Find
Reply
VincaSec Away
Posting Freak
*****
Posts: 793
Threads: 443
Joined: Oct 2023
Reputation: 162
#9
07-22-2024, 09:56 PM
   
   
   
There is no patch for stupidity - Kevin Mitnick
Website Find
Reply


Forum Jump:


Users browsing this thread: