October 20, 2025

Microsoft pins latest GoAnywhere MFT exploitation campaign on Medusa ransomware group

Microsoft has identified a cybercriminal group tracked as Storm-1175 as responsible for actively exploiting a critical deserialization vulnerability (CVE-2025-10035) in Fortra’s GoAnywhere Managed File Transfer (MFT) software. This vulnerability affects the License Servlet component and allows unauthenticated remote code execution (RCE) by processing attacker-controlled serialized data. The attackers leveraged this zero-day flaw to gain initial access to targeted networks by […]
October 16, 2025

US Air Force warns of SharePoint data breach

The U.S. Air Force publicly acknowledged a significant data breach involving Microsoft SharePoint, which potentially exposed sensitive personal and health information of service members. According to an official notification circulated by the Air Force Personnel Center, the breach stemmed from misconfigured SharePoint permissions, resulting in the unauthorized access to Personally Identifiable Information (PII) and Protected Health Information (PHI). To mitigate […]
October 1, 2025

Homebuyers shrug off cybersecurity risks, even as scammers target property deposits

Many home buyers remain surprisingly unconcerned about cybersecurity risks despite a rise in scammers targeting property deposits. A recent report from InfoTrack shows that around half of Australians have little to no worry about sharing personal information during property transactions, even though the average deposit is now approximately $160,000. This complacency is alarming given the increasing number of cybercriminals exploiting […]
September 29, 2025

Personal data potentially stolen in Asahi cyber-attack

Asahi Group Holdings, Japan’s largest brewer, was hit by a major ransomware attack, which forced the immediate shutdown of its domestic order placement, shipment, and customer service systems. The attack, attributed to the Russia-linked Qilin ransomware group, encrypted key IT infrastructure and disrupted nearly all digital business operations for Asahi’s beer and beverage products across Japan. As a consequence, the […]
September 22, 2025

Collins Aerospace/European airport systems hit by ransomware

A ransomware attack targeting Collins Aerospace’s vMUSE check-in and boarding software in September created widespread disruption at several major European airports, including London Heathrow, Brussels, Berlin Brandenburg, and Dublin. The assault began late Friday and rendered automated check-in kiosks and bag-drop systems inoperable, forcing airline staff to revert to manual paper-based processes. This rapid shift caused severe delays, extensive queues, […]
August 30, 2025

Nigerian Government Ministry Breaches

Nigeria continued to face a challenging cybersecurity landscape, marked by persistent threats to both public institutions and private organizations. While no confirmed breaches of government ministries were publicly reported during this period, multiple sources highlighted the country’s ongoing vulnerability to cyberattacks, including phishing campaigns, malware, and botnet activity. According to Kaspersky, Nigerian users encountered nearly 6.5 million cyber threats in […]
August 16, 2025

India Independence Day Government Cyberattack

As India prepared to celebrate its 79th Independence Day, the nation faced an unprecedented surge of cyber threats directed at government, defense, and financial sectors. Security intelligence assessments reported over 4,000 cyber incidents in the weeks leading up to the holiday. The campaign involved a mix of state-sponsored Advanced Persistent Threats (APTs), such as APT36 (also known as Transparent Tribe) […]
July 31, 2025

CISA Announces Release of Thorium for Malware Analysis

The Cybersecurity and Infrastructure Security Agency (CISA), in partnership with Sandia National Laboratories, released Thorium, an automated, scalable malware and forensic analysis platform that can integrate commercial, custom, and open-source analysis tools and enable cyber defenders to quickly assess malware threats and index forensic analysis results into a unified platform.Advanced persistent threats using malware continue to increase in volume and […]
July 22, 2025

France Travail Data Breach Exposes Personal Information of 340,000 Job Seekers

France Travail, the French national public employment agency, experienced a major data breach affecting approximately 340,000 job seekers. The compromise originated via unauthorized access to the Kairos application, a platform used by partner organizations to monitor job seekers’ training progress. Attackers exploited info-stealer malware on a partner system, bypassing the existing two-factor authentication, which allowed them to access sensitive personal […]
123456
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.