May 20, 2026

GitHub Breached Employee Device Hack Led to Exfiltration of 3,800+ Internal Repos

GitHub has confirmed a security breach that resulted in unauthorized access to nearly 3,800 internal repositories after a malicious Visual Studio Code extension was installed on an employee’s device. According to the company’s investigation, the incident was traced to Nx Console version 18.95.0, a compromised extension that was published to the Visual Studio Code Marketplace on May 18, 2026. The […]
April 30, 2026

UK Launches New Cyber Resilience Push at CYBERUK Conference

The UK government used the CYBERUK 2026 conference in Glasgow to outline its vision for strengthening national cyber resilience over the coming decade. Held from 21 to 23 April at the Scottish Event Campus, the event brought together more than 3,000 cybersecurity professionals, government officials, academics, and industry leaders to discuss the evolving threat landscape and the future of cyber […]
April 27, 2026

AI Turns Vulnerability Hunter -Anthropic’s Mythos Changes Everything

Anthropic has introduced Claude Mythos Preview, describing it as its most advanced artificial intelligence model developed so far. The announcement has attracted significant attention across the cybersecurity community due to the model’s reported ability to identify software vulnerabilities at a scale far beyond traditional security research methods.According to information shared during early testing, the model demonstrated an exceptional capability to […]
April 20, 2026

Everest Ransomware Hits Two Major US Banks Simultaneously

Two major U.S. banks, Citizens Financial Group and Frost Bank, found themselves at the center of a significant cybersecurity incident after the Everest ransomware group claimed to have stolen millions of customer records. The ransomware operation posted both organizations on its dark web leak site and threatened to release the stolen data publicly unless its demands were met within six […]
April 16, 2026

Data breach at edtech giant McGraw Hill affects 13.5 million accounts

Educational publishing giant McGraw-Hill has confirmed a significant data breach after cybercriminal group ShinyHunters gained access to sensitive information through a misconfigured Salesforce environment.According to reports, the attackers initially demanded a ransom and claimed to have stolen around 45 million records. When negotiations reportedly failed, the group released more than 100 GB of data online, exposing a large volume of […]
March 20, 2026

SNUH says 16,000 patient records leaked in internal email error

Seoul National University Hospital (SNUH) recently disclosed a data breach that affected around 16,000 patients after an employee accidentally sent an internal email to the wrong recipient. While the incident was not the result of a cyberattack or malicious activity, it highlights how a simple human mistake can lead to a major privacy and security issue.According to the hospital, the […]
March 12, 2026

Iranian Hacktivists Destroy Stryker’s Global Infrastructure

One of the most alarming cyber incidents of 2026 wasn’t caused by ransomware or a sophisticated piece of malware. Instead, attackers turned a company’s own management tools against it.On March 11, medical technology giant Stryker suffered a massive cyberattack that affected more than 200,000 employee devices across 79 countries. According to reports, the threat group Handala gained access to Microsoft’s […]
January 22, 2026

Nike Hit by Major Cyberattack, 1.4TB of Internal Data Leaked

Nike has become the latest global brand to face a significant cybersecurity incident after a hacking group known as WorldLeaks claimed responsibility for stealing and publishing a massive amount of the company’s internal data.The group first added Nike to its dark web leak site on January 22, giving the company a deadline to respond to ransom demands. When no payment […]
December 17, 2025

PDVSA Cyberattack Disrupts Administrative Systems, Oil Cargo Deliveries Suspended

Venezuela’s state-owned oil company, Petróleos de Venezuela S.A. (PDVSA), faced a major ransomware cyberattack detected days before December 15, 2025, severely disrupting its centralized administrative systems. Although PDVSA publicly insisted that oil production, refining, and domestic fuel distribution remained operational thanks to isolated security protocols the incident halted all oil cargo deliveries, stranding millions of barrels on tankers bound for […]
12345
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.