February 22, 2025

Countermeasures Against DDoS Attacks NISC

Japan’s National Center of Incident Readiness and Strategy for Cybersecurity (NISC) took a significant step to bolster global cybersecurity defenses against Distributed Denial-of-Service (DDoS) attacks, particularly those targeting edge devices. Collaborating with international partners, NISC co-published a comprehensive document titled “Mitigation Strategies for Edge Devices,” originally authored by the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC).This joint advisory, […]
February 4, 2025

DeepSeek AI tools impersonated by infostealer malware on PyPI

Cybersecurity researchers identified that threat actors had uploaded multiple packages impersonating legitimate tools developed by DeepSeek, a prominent company known for its advanced artificial intelligence models. The malicious packages were crafted to closely resemble genuine DeepSeek AI utilities, leveraging nearly identical names and descriptions. Unsuspecting developers who installed these packages unknowingly activated a stealthy infostealer malware designed to harvest sensitive […]
December 15, 2024

Over 25,000 SonicWall VPN Firewalls exposed to critical flaws

A recent analysis by cybersecurity firm Bishop Fox uncovered that over 25,000 publicly accessible SonicWall SSLVPN devices are vulnerable to critical security flaws, with 20,000 running outdated SonicOS/OSX firmware that is no longer supported by the vendor. The study identified a total of 430,363 publicly exposed SonicWall firewalls, significantly expanding the potential attack surface for cyber threats. Many of these […]
November 2, 2024

US continues investigation into Chinese cyber espionage campaign, as Volt Typhoon resurfaces

SecurityScorecard researchers revealed that the Chinese-affiliated threat group Volt Typhoon has rebuilt its botnet, which was disrupted by the FBI in January. In response, the U.S. government disclosed an ongoing cyber espionage campaign by China targeting commercial telecommunications infrastructure. The FBI and CISA confirmed that PRC-linked actors have compromised multiple telecom networks to steal customer call data, intercept private communications, […]
October 2, 2024

Ukrainian pleads guilty to operating Raccoon Stealer malware

Ukrainian national Mark Sokolovsky has admitted guilt in connection with his participation in the Raccoon Stealer malware cybercrime scheme. Sokolovsky and his accomplices disseminated Raccoon Stealer through a Malware-as-a-Service (MaaS) model, enabling cybercriminals to lease the malware for $75 per week or $200 per month. The malware is designed to exfiltrate a broad spectrum of sensitive data from compromised devices, […]
September 9, 2024

Server Attacked, Risk of Information Leak | System Square

On September 9, 2024, System Square disclosed that it had been the target of a cyberattack on August 26, 2024. The attack was confirmed to have damaged several of the company’s servers. The compromised servers contained customer and technical information, which may have been exposed due to the incident.The legitimate project, however, has clarified that there is no connection between […]
July 19, 2024

North Korea likely behind takedown of Indian crypto exchange WazirX

Indian cryptocurrency exchange WazirX has disclosed the loss of virtual assets worth over $230 million due to a cyberattack that has been linked to North Korea. In a statement shared late Thursday on its Xeet platform, WazirX reported that the attack targeted one of its multi-signature wallets—a type of digital asset storage that provides enhanced security by requiring multiple private […]
August 15, 2022

PLAY ransomware hits Argentina’s Judiciary of Córdoba

On Saturday 13th of August 2022, Argentina’s Judiciary of Córdoba experienced a ransomware attack that resulted in them having to shut down its IT systems. The shutdown also resulted in the use of pen and paper for submitting official documents. Argentina’s Judiciary of Córdoba has confirmed they were hit by ransomware and have engaged with Microsoft, Cisco, Trend Micro, and […]
February 14, 2022

FBI releases joint Advisory with U.S. Secret Service against BlackByte ransomware

On Friday 11th of February 2022, the US Federal Bureau of Investigation (FBI) released a joint Cybersecurity Advisory with the U.S. Secret Service (USSS) about indicators of compromise associated with BlackByte ransomware. The joint advisory alert details indicators of compromise (IOCs) from previous BlackByte ransomware attack which organisations can use to detect and defend against future BlackByte’s attacks. The joint […]
123
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.