September 6, 2025

Qilin Ransomware Strikes Osaki Medical in Japan

The ransomware group Qilin carried out a major cyberattack targeting Osaki Medical Co., Ltd., a prominent Japanese company established in 1936, specializing in medical supplies, sanitary products, cosmetics, and healthcare and nursing equipment. The attack commenced with Qilin issuing official warnings, urging the organization to establish immediate contact. The group further warned that non-compliance could lead to the theft and […]
August 10, 2025

Orange Belgium Data Breach Impacts 850,000 Customers

Orange Belgium, a subsidiary of the global telecommunications group Orange SA, confirmed a significant cyberattack affecting approximately 850,000 customer accounts. The breach involved unauthorized access to an internal IT system, exposing personal data such as full names, phone numbers, SIM card numbers, PUK codes, and tariff plans. Importantly, sensitive information, including passwords, email addresses, or financial data was not compromised, […]
July 22, 2025

France Travail Data Breach Exposes Personal Information of 340,000 Job Seekers

France Travail, the French national public employment agency, experienced a major data breach affecting approximately 340,000 job seekers. The compromise originated via unauthorized access to the Kairos application, a platform used by partner organizations to monitor job seekers’ training progress. Attackers exploited info-stealer malware on a partner system, bypassing the existing two-factor authentication, which allowed them to access sensitive personal […]
July 2, 2025

Louis Vuitton Extortion Data Breach

Luxury fashion house Louis Vuitton, part of the LVMH Group, experienced a significant data breach involving extortion, affecting customers across multiple countries, including the United Kingdom, South Korea, Turkey, Italy, Sweden, and Hong Kong. The incident was detected on July 2, 2025, when unauthorized access was identified within a database operated by a third-party service provider. Investigations revealed that attackers […]
November 20, 2024

Hackers Hijack Unsecured Jupyter Notebooks to Stream Illegal Sports Broadcasts

Cybercriminals are taking advantage of poorly configured JupyterLab and Jupyter Notebooks to engage in stream ripping and facilitate sports piracy using live-streaming capture tools. The attackers gain initial access by hijacking unsecured Jupyter Notebooks and then execute a series of actions aimed at illegally streaming sports events. This hidden piracy operation was uncovered by the cloud security firm after one […]
November 12, 2024

Germany’s cybersecurity is on high alert ahead of elections

Germany is ramping up its cybersecurity efforts ahead of the upcoming elections, with Interior Minister Nancy Faeser emphasizing the importance of strong defenses against cyberattacks and disinformation. She cautioned about potential threats from Russia and other foreign entities, underscoring the need to protect democracy in the digital space.A report from the Federal Office for Information Security highlighted Germany’s susceptibility to […]
August 9, 2024

Hacker wipes 13,000 devices after breaching classroom management platform

A hacker has breached Mobile Guardian, a global digital classroom management platform, and remotely wiped data from at least 13,000 students’ iPads and Chromebooks. Mobile Guardian, a Google for Education partner, provides device management, parental controls, secure web filtering, and classroom communication tools for K-12 schools across Android, Windows, iOS, ChromeOS, and macOS platforms. On August 4, 2024, the platform […]
June 12, 2024

361 million stolen accounts leaked on Telegram added to HIBP

A massive trove of 361 million email addresses from credentials stolen by password-stealing malware, in credential stuffing attacks, and from data breaches was added to the Have I Been Pwned data breach notification service, allowing anyone to check if their accounts have been compromised.Cybersecurity researchers collected these credentials from numerous Telegram cybercrime channels, where the stolen data is commonly leaked […]
June 2, 2022

Evil Corp attempts to evade sanctions by switching to LockBit ransomware

On Thursday 2nd of June 2020, Mandiant revealed that the Evil Corp cybercrime group has now switched to deploying LockBit ransomware on targets’ networks to evade sanctions imposed by the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC). The cybercrime group has been active since 2007 and was originally known for using the Dridex malware but in more recent […]

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.