December 3, 2024

Suspected Ukrainian hackers impersonating Russian ministries to spy on industry

According to researchers, a hacker group believed to be linked to Ukraine is conducting a new cyber espionage campaign against the Russian scientific and industrial sectors. The Russian cybersecurity company F.A.C.C.T. detected fraudulent emails that appeared to be from Russia’s Ministry of Industry and Trade. These emails, detailed in a report published on Wednesday, urged local defense industry firms to […]
November 25, 2024

Blue Yonder ransomware attack disrupts grocery store supply chain

A ransomware attack targeted software provider Blue Yonder last week, leading to disruptions at multiple grocery stores and retailers, including Starbucks and two major supermarket chains in the UK. Blue Yonder, a global supply chain management service provider for over 3,000 organizations, confirmed on Friday that its managed services-hosted environment was hit by a ransomware incident on Nov. UK grocery […]
November 20, 2024

Hackers Hijack Unsecured Jupyter Notebooks to Stream Illegal Sports Broadcasts

Cybercriminals are taking advantage of poorly configured JupyterLab and Jupyter Notebooks to engage in stream ripping and facilitate sports piracy using live-streaming capture tools. The attackers gain initial access by hijacking unsecured Jupyter Notebooks and then execute a series of actions aimed at illegally streaming sports events. This hidden piracy operation was uncovered by the cloud security firm after one […]
November 2, 2024

US continues investigation into Chinese cyber espionage campaign, as Volt Typhoon resurfaces

SecurityScorecard researchers revealed that the Chinese-affiliated threat group Volt Typhoon has rebuilt its botnet, which was disrupted by the FBI in January. In response, the U.S. government disclosed an ongoing cyber espionage campaign by China targeting commercial telecommunications infrastructure. The FBI and CISA confirmed that PRC-linked actors have compromised multiple telecom networks to steal customer call data, intercept private communications, […]
October 27, 2024

Over 22,000 CyberPanel Servers at Risk from Critical Vulnerabilities Exploitation by PSAUX Ransomware

CyberPanel, a widely used free web hosting control panel, was recently found to contain vulnerabilities that could allow unauthenticated remote code execution. The discovery was made by a security researcher known as DreyAnd. DreyAnd reported the vulnerabilities to CyberPanel developers, who released patches on October 23. A few days later, on October 27, the researcher publicly shared the technical details […]
October 10, 2024

Over 200 malicious apps on Google Play downloaded millions of times

Google Play, the official application marketplace for Android, facilitated the distribution of over 200 malicious applications within a one-year period, collectively accumulating nearly eight million downloads. This data was gathered between June 2023 and April 2024 by threat intelligence researchers at Zscaler, who identified and analyzed various malware families present on both Google Play and other distribution platforms. Earlier in […]
September 20, 2024

New Linux malware Hadooken targets Oracle WebLogic servers

Aqua Security’s Nautilus research team recently reported the emergence of a new Linux malware called Hadooken. This malware specifically targets Oracle WebLogic servers to deploy additional malicious software and extract credentials for lateral movement within compromised networks.The Hadooken malware is disseminated through attacks that exploit vulnerabilities associated with weak passwords to gain initial access. Once attackers infiltrate a WebLogic server, […]
September 1, 2024

Linux version of new Cicada ransomware targets VMware ESXi servers

A new ransomware-as-a-service (RaaS) operation is falsely associating itself with the legitimate Cicada 3301 organization and has already listed 19 victims on its extortion portal, targeting companies globally at an alarming pace.This cybercrime operation adopts both the name and logo of the enigmatic 2012-2014 Cicada 3301 online and real-world game, which was known for its complex cryptographic puzzles.However, there is […]
August 26, 2024

Publisher arrested on suspicion of DDoS attack Use of overseas services, discovered in international investigation

The National Police Agency announced on the 6th that a 25-year-old plumber from Oita City was arrested on suspicion of business obstruction through the damage of an electronic computer, following a cyberattack involving a Distributed Denial of Service (DDoS) attack. This type of attack overwhelms a corporate server with excessive data, rendering its website inaccessible.DDoS attacks are a common issue […]
Prev page
123456789101112131415161718192021222324252627282930313233
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.