December 25, 2025

Kuaishou Cyberattack Disrupts Livestreaming, Triggers Sharp Stock Decline

Chinese short-video and livestreaming platform Kuaishou, a leading competitor to TikTok, experienced a highly coordinated cyberattack on December 22, 2025, around 10 p.m. local time, which significantly disrupted its core livestreaming operations. Organized criminal groups, often referred to as “black and grey industries,” used nearly 17,000 automated bots and AI-driven tools to overwhelm the platform. These bots flooded popular live […]
December 20, 2025

Cisco Email Security Products Under Active Attack

Cisco Secure Email Gateway (SEG) and Secure Email and Web Manager (SEWM) appliances are currently being actively exploited by a China-linked advanced persistent threat (APT) group tracked as UAT-9686, with known associations to APT41 and UNC5174. Cisco’s Product Security Incident Response Team (PSIRT) identified the activity during a Technical Assistance Center (TAC) support investigation, with evidence indicating the campaign had […]
December 17, 2025

PDVSA Cyberattack Disrupts Administrative Systems, Oil Cargo Deliveries Suspended

Venezuela’s state-owned oil company, Petróleos de Venezuela S.A. (PDVSA), faced a major ransomware cyberattack detected days before December 15, 2025, severely disrupting its centralized administrative systems. Although PDVSA publicly insisted that oil production, refining, and domestic fuel distribution remained operational thanks to isolated security protocols the incident halted all oil cargo deliveries, stranding millions of barrels on tankers bound for […]
December 11, 2025

Google Fixes GeminiJack Zero-Click Flaw in Gemini Enterprise

Google has fixed a critical zero-click vulnerability, named “GeminiJack,” affecting its Gemini Enterprise AI tools and Vertex AI Search, which could allow silent exfiltration of sensitive corporate data. The issue was discovered in June 2025 by Noma Security researchers and responsibly disclosed to Google. The vulnerability abused Retrieval-Augmented Generation (RAG) behavior, enabling attackers to inject malicious instructions into seemingly harmless […]
December 10, 2025

Kimwolf Botnet Hijacks 1.8 million Android TVs, Launches Large Scale DDoS Attacks

Kimwolf botnet has infected over 1.8 million Android devices worldwide, primarily targeting smart TVs, set-top boxes, and tablets like TV BOX, SuperBOX, X96Q, and MX10, turning them into a massive army for DDoS attacks. Discovered by QiAnXin XLab on October 24, 2025, via a suspicious malware sample, the botnet’s command and control (C2) domain 14emeliaterracewestroxburyma02132.su briefly topped Cloudflare’s global rankings, […]

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.