March 1, 2022

Toyota shuts down all plants in Japan after cyber-attack on major

On Monday 28th of February 2022, Toyota, the world’s bestselling carmaker had to halt their operations at all their plants in Japan due to one of their suppliers, Kojima Industries Corporation experiencing a system failure which is believed to be due to a cyber-attack. It is believed that the closure will result in a set back of about 13,000 cars. […]
December 17, 2021

Hellmann Worldwide warns clients of possible phishing campaigns after ransomware attack

On Thursday 9th of December 2021, Hellmann Worldwide, an international logistics that handles 16 million shipments per year has disclosed that they experienced a ransomware attack which resulted in Hellmann Worldwide being forced to shut down their systems to contain the spread of the ransomware. Hellmann Worldwide has confirmed that during the forensic investigation that they have conducted, they have discovered evidence […]
October 17, 2021

REvil ransomware group’s Tor sites shut down after being hijacked

On the 17th of October 2021, the Tor sites of REvil ransomware gang went offline after an unknown person hijacked the Tor onion domains with the same private keys as REvil’s Tor sites and may have backups of the sites. One of the threat actors “0_neday”, affiliated with the REvil operation has confirmed that someone has hijack the ransomware gang’s […]
July 12, 2021

Coop supermarket – 500 stores closed due to Ransomware attack

On the 2nd of July 2021, approximately 500 Coop Supermarket in Sweden had to shut down due to their point-of-sale tills and self-service checkouts had stopped working. This is a result of the Kaseya supply chain attack by the REvil ransomware group as Coop’s cash registers are run by Visma Esscom, which manages servers for several Swedish businesses and in […]
July 4, 2021

MSP supply chains attacked through the Kaseya VSA in US

On the 3rd of July 2021, the IT solutions developer company Kaseya, announced that it had become the victim of a REvil ransomware attack on July 2. The goal of the attack to target multiple MSP and their customers (Managed Service Provider) through a supply chain attack that leveraged a vulnerability in Kaseya’s VSA software. Due to this attack more […]
May 28, 2021

Lorenz ransomware group involved – Canada Post Ransomware

On May 19, 2021, Canada post, the primary postal operator in Canada had to inform several of its large commercial customers that a ransomware attack that hit one of its third service providers, Commport Communications had exposed the commercial companies’ customers shipping information. In total, the attack affected 44 of Canada Post’s commercial customers and over 950,000 receiving customers. In […]
May 10, 2021

The US colonial pipeline attacked by a Ransomware

On the 8th of May 2021, Colonial Pipeline, the largest fuel pipelines in the United States, released a statement confirming they suffered a ransomware attack on the 7th of May 2021 and had taken the decision to shut down the operations in order to stop the malware being propagated to other machines on the network. The impact of the attack […]
April 20, 2021

REvil extorted Apple – $50 Million Ransom demanded

Quanta Computer which is one of the leading notebook manufacturers and one of the business partners with Apple recently have been attacked by REvil ransomware group during April 2021. Quanta is a Taiwan based manufacturer that has a long list of high-profile customers, including Apple, Dell, Hewlett-Packard, Alienware, Lenovo, Cisco, and Microsoft. They are also responsible for the manufacture of […]
Prev page
1234

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.