October 16, 2025

US Air Force warns of SharePoint data breach

The U.S. Air Force publicly acknowledged a significant data breach involving Microsoft SharePoint, which potentially exposed sensitive personal and health information of service members. According to an official notification circulated by the Air Force Personnel Center, the breach stemmed from misconfigured SharePoint permissions, resulting in the unauthorized access to Personally Identifiable Information (PII) and Protected Health Information (PHI). To mitigate […]
October 5, 2025

Allianz Life reveals almost 1.5m impacted by July data breach

Allianz Life Insurance Company of North America suffered a significant data breach impacting nearly 1.5 million individuals, including customers, financial professionals, and select employees. The breach occurred on July 16, 2025, when a malicious threat actor gained unauthorized access to a third-party, cloud based Customer Relationship Management (CRM) system used by Allianz Life via a social engineering attack, specifically a […]
September 29, 2025

Personal data potentially stolen in Asahi cyber-attack

Asahi Group Holdings, Japan’s largest brewer, was hit by a major ransomware attack, which forced the immediate shutdown of its domestic order placement, shipment, and customer service systems. The attack, attributed to the Russia-linked Qilin ransomware group, encrypted key IT infrastructure and disrupted nearly all digital business operations for Asahi’s beer and beverage products across Japan. As a consequence, the […]
September 15, 2025

Volvo North America confirms staff data stolen following ransomware attack on IT supplier

Volvo Group North America confirmed a significant data breach after its third-party human resources software provider, Miljodata, was struck by ransomware. The incident began on August 20, 2025, when attackers later identified as the Data Carry ransomware group gained access to Miljodata’s cloud-based HR management platform, which services numerous organizations across Sweden and North America. Miljodata discovered suspicious activity three […]
September 4, 2025

NightshadeC2: A New Botnet Is Using “UAC Prompt Bombing” to Bypass Windows Defender

Cybersecurity researchers identified a highly sophisticated botnet known as NightshadeC2, which employs an innovative technique called UAC Prompt Bombing to bypass Windows Defender and evade detection in malware analysis environments. The botnet is primarily distributed through trojanized versions of legitimate software, including VPN clients, system utilities, and file search applications. Social engineering tactics are used to trick users into executing […]
September 1, 2025

Jaguar Land Rover Cyberattack Forces Extended Factory Shutdown and Disrupts Global Operations

Jaguar Land Rover (JLR), the United Kingdom’s largest automotive manufacturer and a subsidiary of Tata Motors, experienced a significant ransomware attack that forced a global operational shutdown. The cyberattack, attributed to the Scattered Lapsus$ Hunters group, caused severe disruption across multiple manufacturing plants in Solihull, Halewood, Wolverhampton, Slovakia, Brazil, and India. In response, JLR proactively disabled IT systems to contain […]
August 7, 2025

Air France and KLM customers’ personal details exposed via data breach

Air France KLM Group disclosed a data compromise incident affecting its customer base, traced to a breach at a third-party service provider that supported its contact center operations. The company confirmed detecting unusual activity on the external platform, after which it initiated an immediate response involving the vendor, cybersecurity experts, and relevant authorities.The exposed information primarily consisted of customer names, […]
August 2, 2025

Google’s Salesforce CRM Breach by ShinyHunters

Google disclosed that its Salesforce CRM environment had been compromised by the cybercriminal group ShinyHunters, exposing customer contact data from its small- and medium-sized business clients. The breach, which occurred in June 2025 but was revealed publicly in August, was executed through social engineering tactics, particularly voice phishing (vishing). Attackers impersonated trusted personnel to trick an employee into granting access, […]
July 31, 2025

CISA Announces Release of Thorium for Malware Analysis

The Cybersecurity and Infrastructure Security Agency (CISA), in partnership with Sandia National Laboratories, released Thorium, an automated, scalable malware and forensic analysis platform that can integrate commercial, custom, and open-source analysis tools and enable cyber defenders to quickly assess malware threats and index forensic analysis results into a unified platform.Advanced persistent threats using malware continue to increase in volume and […]
1234567891011121314151617181920212223242526272829303132333435
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.