November 18, 2025

Coupang breach exposes data of over 33 million users

South Korean e‑commerce giant Coupang has disclosed a massive data breach that exposed personal information from approximately 33.7 million customer accounts, making it one of the largest cyber incidents in the country’s history. ​The exposed data includes names, email addresses, phone numbers, postal or shipping addresses, and order histories, with some reports noting leak of delivery entrance codes, raising concerns […]
November 9, 2025

Chinese Hackers Used Anthropic’s AI to Automate Cyberattacks

Anthropic, the developer of the Claude AI model, disclosed in mid-November 2025 that it disrupted the first documented large scale cyber-espionage campaign orchestrated primarily by artificial intelligence, attributed with high confidence to a Chinese state sponsored hacking group. Detected in mid-September 2025, the operation dubbed GTG-1002 involved hackers manipulating Anthropic’s Claude Code tool to automate intrusions against approximately 30 high-value […]
October 5, 2025

Allianz Life reveals almost 1.5m impacted by July data breach

Allianz Life Insurance Company of North America suffered a significant data breach impacting nearly 1.5 million individuals, including customers, financial professionals, and select employees. The breach occurred on July 16, 2025, when a malicious threat actor gained unauthorized access to a third-party, cloud based Customer Relationship Management (CRM) system used by Allianz Life via a social engineering attack, specifically a […]
August 2, 2025

Google’s Salesforce CRM Breach by ShinyHunters

Google disclosed that its Salesforce CRM environment had been compromised by the cybercriminal group ShinyHunters, exposing customer contact data from its small- and medium-sized business clients. The breach, which occurred in June 2025 but was revealed publicly in August, was executed through social engineering tactics, particularly voice phishing (vishing). Attackers impersonated trusted personnel to trick an employee into granting access, […]
February 10, 2025

Kazakhstan to audit foreign ministry after suspected Russia-linked cyberattack

The government of Kazakhstan announced a comprehensive audit of its Ministry of Foreign Affairs in response to a significant cybersecurity breach believed to be orchestrated by Russia-linked threat actors. The cyberattack, which reportedly targeted internal communications and sensitive diplomatic data, raised immediate concerns regarding national security and the integrity of Kazakhstan’s foreign policy apparatus.According to official statements released by the […]
January 22, 2025

Oracle To Address 320 Vulnerabilities in January Patch Update

Oracle Corporation announced a significant security release as part of its scheduled Critical Patch Update (CPU), aimed at addressing 320 newly discovered vulnerabilities across its extensive suite of products. This comprehensive update, in line with Oracle’s quarterly patch cycle, underscores the company’s continued commitment to enhancing the security posture of its enterprise solutions.The January CPU covers a broad spectrum of […]
November 25, 2024

Blue Yonder ransomware attack disrupts grocery store supply chain

A ransomware attack targeted software provider Blue Yonder last week, leading to disruptions at multiple grocery stores and retailers, including Starbucks and two major supermarket chains in the UK. Blue Yonder, a global supply chain management service provider for over 3,000 organizations, confirmed on Friday that its managed services-hosted environment was hit by a ransomware incident on Nov. UK grocery […]
August 1, 2024

Possible APT28-linked hackers target Ukraine’s scientific institutions

A recent cyber-espionage campaign targeting Ukraine’s scientific and research institutions has been linked to APT28, a Kremlin-backed group associated with Russia’s military intelligence (GRU). Researchers from CERT-UA identified the involvement of the UAC-0063 group, which used malware strains Hatvibe and Cherryspy in July attacks. Hatvibe enables the execution of additional files on infected devices, while Cherryspy allows attackers to run […]
July 24, 2024

CrowdStrike impact update: More than 5,000 flights cancelled

Software update has caused significant global IT disruptions, leading to canceled flights, interruptions in healthcare services, and potential payroll issues. The company responsible has issued an apology, but industry experts caution that resolving issues such as “blue screens of death” and endless loops may take weeks.One of the most severely affected sectors is aviation. According to updated figures from the […]
1234567891011121314151617
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.