October 16, 2025

US Air Force warns of SharePoint data breach

The U.S. Air Force publicly acknowledged a significant data breach involving Microsoft SharePoint, which potentially exposed sensitive personal and health information of service members. According to an official notification circulated by the Air Force Personnel Center, the breach stemmed from misconfigured SharePoint permissions, resulting in the unauthorized access to Personally Identifiable Information (PII) and Protected Health Information (PHI). To mitigate […]
October 10, 2025

Western Sydney University warns of scam emails revoking degrees

Western Sydney University warned students and alumni about a sophisticated scam involving fraudulent emails falsely claiming that recipients’ academic degrees had been revoked and that they were permanently excluded from the university. These emails, which appeared very official and included students’ full names and ID numbers, caused significant alarm among recipients. WSU confirmed the emails were fake, not issued by […]
October 5, 2025

Allianz Life reveals almost 1.5m impacted by July data breach

Allianz Life Insurance Company of North America suffered a significant data breach impacting nearly 1.5 million individuals, including customers, financial professionals, and select employees. The breach occurred on July 16, 2025, when a malicious threat actor gained unauthorized access to a third-party, cloud based Customer Relationship Management (CRM) system used by Allianz Life via a social engineering attack, specifically a […]
October 1, 2025

Homebuyers shrug off cybersecurity risks, even as scammers target property deposits

Many home buyers remain surprisingly unconcerned about cybersecurity risks despite a rise in scammers targeting property deposits. A recent report from InfoTrack shows that around half of Australians have little to no worry about sharing personal information during property transactions, even though the average deposit is now approximately $160,000. This complacency is alarming given the increasing number of cybercriminals exploiting […]
September 29, 2025

Personal data potentially stolen in Asahi cyber-attack

Asahi Group Holdings, Japan’s largest brewer, was hit by a major ransomware attack, which forced the immediate shutdown of its domestic order placement, shipment, and customer service systems. The attack, attributed to the Russia-linked Qilin ransomware group, encrypted key IT infrastructure and disrupted nearly all digital business operations for Asahi’s beer and beverage products across Japan. As a consequence, the […]
September 6, 2025

Qilin Ransomware Strikes Osaki Medical in Japan

The ransomware group Qilin carried out a major cyberattack targeting Osaki Medical Co., Ltd., a prominent Japanese company established in 1936, specializing in medical supplies, sanitary products, cosmetics, and healthcare and nursing equipment. The attack commenced with Qilin issuing official warnings, urging the organization to establish immediate contact. The group further warned that non-compliance could lead to the theft and […]
August 10, 2025

Orange Belgium Data Breach Impacts 850,000 Customers

Orange Belgium, a subsidiary of the global telecommunications group Orange SA, confirmed a significant cyberattack affecting approximately 850,000 customer accounts. The breach involved unauthorized access to an internal IT system, exposing personal data such as full names, phone numbers, SIM card numbers, PUK codes, and tariff plans. Importantly, sensitive information, including passwords, email addresses, or financial data was not compromised, […]
July 22, 2025

France Travail Data Breach Exposes Personal Information of 340,000 Job Seekers

France Travail, the French national public employment agency, experienced a major data breach affecting approximately 340,000 job seekers. The compromise originated via unauthorized access to the Kairos application, a platform used by partner organizations to monitor job seekers’ training progress. Attackers exploited info-stealer malware on a partner system, bypassing the existing two-factor authentication, which allowed them to access sensitive personal […]
July 2, 2025

Louis Vuitton Extortion Data Breach

Luxury fashion house Louis Vuitton, part of the LVMH Group, experienced a significant data breach involving extortion, affecting customers across multiple countries, including the United Kingdom, South Korea, Turkey, Italy, Sweden, and Hong Kong. The incident was detected on July 2, 2025, when unauthorized access was identified within a database operated by a third-party service provider. Investigations revealed that attackers […]
12
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.