September 29, 2025

Personal data potentially stolen in Asahi cyber-attack

Asahi Group Holdings, Japan’s largest brewer, was hit by a major ransomware attack, which forced the immediate shutdown of its domestic order placement, shipment, and customer service systems. The attack, attributed to the Russia-linked Qilin ransomware group, encrypted key IT infrastructure and disrupted nearly all digital business operations for Asahi’s beer and beverage products across Japan. As a consequence, the […]
September 22, 2025

Collins Aerospace/European airport systems hit by ransomware

A ransomware attack targeting Collins Aerospace’s vMUSE check-in and boarding software in September created widespread disruption at several major European airports, including London Heathrow, Brussels, Berlin Brandenburg, and Dublin. The assault began late Friday and rendered automated check-in kiosks and bag-drop systems inoperable, forcing airline staff to revert to manual paper-based processes. This rapid shift caused severe delays, extensive queues, […]
September 15, 2025

Volvo North America confirms staff data stolen following ransomware attack on IT supplier

Volvo Group North America confirmed a significant data breach after its third-party human resources software provider, Miljodata, was struck by ransomware. The incident began on August 20, 2025, when attackers later identified as the Data Carry ransomware group gained access to Miljodata’s cloud-based HR management platform, which services numerous organizations across Sweden and North America. Miljodata discovered suspicious activity three […]
September 6, 2025

Qilin Ransomware Strikes Osaki Medical in Japan

The ransomware group Qilin carried out a major cyberattack targeting Osaki Medical Co., Ltd., a prominent Japanese company established in 1936, specializing in medical supplies, sanitary products, cosmetics, and healthcare and nursing equipment. The attack commenced with Qilin issuing official warnings, urging the organization to establish immediate contact. The group further warned that non-compliance could lead to the theft and […]
September 4, 2025

NightshadeC2: A New Botnet Is Using “UAC Prompt Bombing” to Bypass Windows Defender

Cybersecurity researchers identified a highly sophisticated botnet known as NightshadeC2, which employs an innovative technique called UAC Prompt Bombing to bypass Windows Defender and evade detection in malware analysis environments. The botnet is primarily distributed through trojanized versions of legitimate software, including VPN clients, system utilities, and file search applications. Social engineering tactics are used to trick users into executing […]
September 1, 2025

Jaguar Land Rover Cyberattack Forces Extended Factory Shutdown and Disrupts Global Operations

Jaguar Land Rover (JLR), the United Kingdom’s largest automotive manufacturer and a subsidiary of Tata Motors, experienced a significant ransomware attack that forced a global operational shutdown. The cyberattack, attributed to the Scattered Lapsus$ Hunters group, caused severe disruption across multiple manufacturing plants in Solihull, Halewood, Wolverhampton, Slovakia, Brazil, and India. In response, JLR proactively disabled IT systems to contain […]

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.