May 30, 2026

Palo Alto PAN-OS GlobalProtect Authentication Bypass (CVE-2026-0257) Actively Exploited

Cybersecurity teams around the world are being urged to take immediate action following the discovery of a critical vulnerability in Palo Alto Networks’ PAN-OS software. The flaw, identified as CVE-2026-0257 and assigned a CVSS score of 7.8, is already being actively exploited in the wild. The vulnerability affects the GlobalProtect portal and gateway and allows attackers to establish unauthorized VPN […]
May 23, 2026

Anthropic’s AI Finds Thousands of Security Flaws in Major Software Systems

Anthropic made headlines after introducing Claude Mythos Preview, a new AI model designed to assist security researchers in finding previously unknown software vulnerabilities. Unlike traditional security tools, the model can analyze large amounts of code, identify potential weaknesses, and help researchers understand how those flaws might be exploited.At the same time, Anthropic launched Project Glasswing, a cybersecurity initiative that brought […]
April 27, 2026

AI Turns Vulnerability Hunter -Anthropic’s Mythos Changes Everything

Anthropic has introduced Claude Mythos Preview, describing it as its most advanced artificial intelligence model developed so far. The announcement has attracted significant attention across the cybersecurity community due to the model’s reported ability to identify software vulnerabilities at a scale far beyond traditional security research methods.According to information shared during early testing, the model demonstrated an exceptional capability to […]
April 24, 2026

Medtronic Confirms Data Breach After ShinyHunters Claims Theft of 9 Million Records

Medical technology giant Medtronic confirmed that it had experienced a cybersecurity incident after the hacking group ShinyHunters claimed to have stolen more than 9 million records from the company’s corporate systems. The incident became public on April 24, 2026, when Medtronic disclosed the breach and informed regulators.According to reports, ShinyHunters added Medtronic to its data leak website in mid-April and […]
April 20, 2026

Everest Ransomware Hits Two Major US Banks Simultaneously

Two major U.S. banks, Citizens Financial Group and Frost Bank, found themselves at the center of a significant cybersecurity incident after the Everest ransomware group claimed to have stolen millions of customer records. The ransomware operation posted both organizations on its dark web leak site and threatened to release the stolen data publicly unless its demands were met within six […]
April 16, 2026

Data breach at edtech giant McGraw Hill affects 13.5 million accounts

Educational publishing giant McGraw-Hill has confirmed a significant data breach after cybercriminal group ShinyHunters gained access to sensitive information through a misconfigured Salesforce environment.According to reports, the attackers initially demanded a ransom and claimed to have stolen around 45 million records. When negotiations reportedly failed, the group released more than 100 GB of data online, exposing a large volume of […]
March 27, 2026

European Commission Suffers Second Data Breach

The European Commission has confirmed that cybercriminals gained unauthorized access to part of its cloud infrastructure and stole more than 350 GB of data. According to initial findings, the attackers accessed information stored in the Commission’s Amazon Web Services (AWS) environment, including employee records, email server data, and databases linked to several Europa.eu websites.The breach was discovered on March 24, […]
March 20, 2026

SNUH says 16,000 patient records leaked in internal email error

Seoul National University Hospital (SNUH) recently disclosed a data breach that affected around 16,000 patients after an employee accidentally sent an internal email to the wrong recipient. While the incident was not the result of a cyberattack or malicious activity, it highlights how a simple human mistake can lead to a major privacy and security issue.According to the hospital, the […]
March 12, 2026

Iranian Hacktivists Destroy Stryker’s Global Infrastructure

One of the most alarming cyber incidents of 2026 wasn’t caused by ransomware or a sophisticated piece of malware. Instead, attackers turned a company’s own management tools against it.On March 11, medical technology giant Stryker suffered a massive cyberattack that affected more than 200,000 employee devices across 79 countries. According to reports, the threat group Handala gained access to Microsoft’s […]
123456789
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.