German multinational building and construction material provider Knauf Group has been impacted by a cyberattack late last month, which has been claimed by the Black Basta ransomware gang, BleepingComputer reports.
Attackers hit Knauf on June 29, prompting the firm to shut down its email systems as it works on incident response and remediation efforts.
"We are currently working heavily to mitigate the impact to our customers and partners as well as to plan a safe recovery. However, we apologize for any inconvenience or delays in our delivery processes, that may occur," said Knauf.
Knauf did not provide more details about the attack but the Black Basta ransomware group took responsibility for the intrusion, posting the company as a victim on Saturday and leaking 20% of allegedly exfiltrated files.
Included in the exposed files, which have already been accessed by 350 visitors, were email communications, employee contact details, user credentials, ID scans, and production files.
Operations of California's Solano Partner Libraries and St. Helena, or SPLASH, continue to be interrupted weeks after the county's library network was targeted by a ransomware attack earlier this month, StateScoop reports.
Several rootkit-like capabilities could be obtained by threat actors through the exploitation of vulnerabilities in Windows' DOS-to-NT path conversion process, including file and process concealment and compromised prefetch file analysis, reports The Hacker News.
Open-source DevOps software project GitLab has also been impacted by the same security issue in GitHub comments that has been exploited by threat actors through Microsoft repository-linked URLs to facilitate the distribution of malware that was made to seem to originate from credible entities' official source code repositories, according to BleepingComputer.