September 1, 2025

Jaguar Land Rover Cyberattack Forces Extended Factory Shutdown and Disrupts Global Operations

Jaguar Land Rover (JLR), the United Kingdom’s largest automotive manufacturer and a subsidiary of Tata Motors, experienced a significant ransomware attack that forced a global operational shutdown. The cyberattack, attributed to the Scattered Lapsus$ Hunters group, caused severe disruption across multiple manufacturing plants in Solihull, Halewood, Wolverhampton, Slovakia, Brazil, and India. In response, JLR proactively disabled IT systems to contain […]
August 29, 2025

WhatsApp Cloud Ransomware Campaign

WhatsApp faced a significant cybersecurity incident after researchers uncovered a zero-day vulnerability (CVE-2025-55177) affecting its iOS and macOS applications. The flaw was tied to the linked devices feature, which synchronizes data across a user’s phone and secondary devices. Exploiting this weakness, threat actors could inject malicious content from unauthorized URLs, effectively bypassing normal security restrictions. Investigations revealed that the vulnerability […]
August 10, 2025

Orange Belgium Data Breach Impacts 850,000 Customers

Orange Belgium, a subsidiary of the global telecommunications group Orange SA, confirmed a significant cyberattack affecting approximately 850,000 customer accounts. The breach involved unauthorized access to an internal IT system, exposing personal data such as full names, phone numbers, SIM card numbers, PUK codes, and tariff plans. Importantly, sensitive information, including passwords, email addresses, or financial data was not compromised, […]
July 2, 2025

Louis Vuitton Extortion Data Breach

Luxury fashion house Louis Vuitton, part of the LVMH Group, experienced a significant data breach involving extortion, affecting customers across multiple countries, including the United Kingdom, South Korea, Turkey, Italy, Sweden, and Hong Kong. The incident was detected on July 2, 2025, when unauthorized access was identified within a database operated by a third-party service provider. Investigations revealed that attackers […]
June 20, 2025

WestJet Cyber Attack Causes Travel Disruption

WestJet confirmed it had been the target of a sophisticated cyberattack that caused significant disruption for customers. The incident was first detected on June 13, when suspicious activity was identified across the airline’s digital systems. Although flight operations and aircraft safety were not compromised, customers encountered service interruptions, particularly when attempting to access bookings through the airline’s website and mobile […]
May 25, 2025

Cellcom Outage Mobile Carrier Suffers Major Cyberattack

Wisconsin-based wireless carrier Cellcom suffered a major cyberattack that severely disrupted mobile services for nearly 75,000 subscribers across Northeast Wisconsin and Michigan’s Upper Peninsula. The outage began on May 14, leaving customers unable to make calls, send SMS messages, or port numbers, though 911 services, mobile data, iMessage, and RCS messaging continued to function.At first, Cellcom described the disruption as […]
May 17, 2025

Peter Green Chilled Supply Chain Attack

UK-based logistics firm Peter Green Chilled, a key distributor of chilled, frozen, and ambient foods to major supermarkets including Tesco, Sainsbury’s, M&S, Aldi, Waitrose, Co-op, Asda, and Morrisons, suffered a significant ransomware attack. The incident began on the evening of 14 May, when malicious actors encrypted the company’s systems. By 15 – 16 May, order processing was fully disrupted, though […]
April 25, 2025

Apple iPhone Targeted by Advanced Attackers

Apple has released emergency security updates for iOS/iPadOS, macOS, tvOS, and visionOS that fix two zero-day vulnerabilities (CVE-2025-31200, CVE-2025-31201) that have been exploited in an extremely sophisticated attack against specific targeted individuals on iOS.CVE-2025-31200 affects CoreAudio, an API Apple devices use for processing audio. The memory corruption vulnerability can be triggered with a maliciously crafted media file: when the audio […]
April 10, 2025

Supply Chain Email Breach Hits Marketing Giants

A notable supply-chain email breach impacted marketing giants through the compromise of OAuth tokens associated with Salesloft’s Drift platform. This breach propagated through integrations such as Salesforce, affecting hundreds of companies, including high-profile security enterprises like Cloudflare, Zscaler, Palo Alto Networks, SpyCloud, and Tanium. Attackers exploited the interconnected nature of modern SaaS ecosystems, leveraging downstream trust to access sensitive credentials […]
123456
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.