September 6, 2025

Qilin Ransomware Strikes Osaki Medical in Japan

The ransomware group Qilin carried out a major cyberattack targeting Osaki Medical Co., Ltd., a prominent Japanese company established in 1936, specializing in medical supplies, sanitary products, cosmetics, and healthcare and nursing equipment. The attack commenced with Qilin issuing official warnings, urging the organization to establish immediate contact. The group further warned that non-compliance could lead to the theft and […]
September 4, 2025

NightshadeC2: A New Botnet Is Using “UAC Prompt Bombing” to Bypass Windows Defender

Cybersecurity researchers identified a highly sophisticated botnet known as NightshadeC2, which employs an innovative technique called UAC Prompt Bombing to bypass Windows Defender and evade detection in malware analysis environments. The botnet is primarily distributed through trojanized versions of legitimate software, including VPN clients, system utilities, and file search applications. Social engineering tactics are used to trick users into executing […]
September 1, 2025

Jaguar Land Rover Cyberattack Forces Extended Factory Shutdown and Disrupts Global Operations

Jaguar Land Rover (JLR), the United Kingdom’s largest automotive manufacturer and a subsidiary of Tata Motors, experienced a significant ransomware attack that forced a global operational shutdown. The cyberattack, attributed to the Scattered Lapsus$ Hunters group, caused severe disruption across multiple manufacturing plants in Solihull, Halewood, Wolverhampton, Slovakia, Brazil, and India. In response, JLR proactively disabled IT systems to contain […]
August 30, 2025

Nigerian Government Ministry Breaches

Nigeria continued to face a challenging cybersecurity landscape, marked by persistent threats to both public institutions and private organizations. While no confirmed breaches of government ministries were publicly reported during this period, multiple sources highlighted the country’s ongoing vulnerability to cyberattacks, including phishing campaigns, malware, and botnet activity. According to Kaspersky, Nigerian users encountered nearly 6.5 million cyber threats in […]
August 29, 2025

WhatsApp Cloud Ransomware Campaign

WhatsApp faced a significant cybersecurity incident after researchers uncovered a zero-day vulnerability (CVE-2025-55177) affecting its iOS and macOS applications. The flaw was tied to the linked devices feature, which synchronizes data across a user’s phone and secondary devices. Exploiting this weakness, threat actors could inject malicious content from unauthorized URLs, effectively bypassing normal security restrictions. Investigations revealed that the vulnerability […]
August 16, 2025

India Independence Day Government Cyberattack

As India prepared to celebrate its 79th Independence Day, the nation faced an unprecedented surge of cyber threats directed at government, defense, and financial sectors. Security intelligence assessments reported over 4,000 cyber incidents in the weeks leading up to the holiday. The campaign involved a mix of state-sponsored Advanced Persistent Threats (APTs), such as APT36 (also known as Transparent Tribe) […]
August 10, 2025

Orange Belgium Data Breach Impacts 850,000 Customers

Orange Belgium, a subsidiary of the global telecommunications group Orange SA, confirmed a significant cyberattack affecting approximately 850,000 customer accounts. The breach involved unauthorized access to an internal IT system, exposing personal data such as full names, phone numbers, SIM card numbers, PUK codes, and tariff plans. Importantly, sensitive information, including passwords, email addresses, or financial data was not compromised, […]
August 7, 2025

Air France and KLM customers’ personal details exposed via data breach

Air France KLM Group disclosed a data compromise incident affecting its customer base, traced to a breach at a third-party service provider that supported its contact center operations. The company confirmed detecting unusual activity on the external platform, after which it initiated an immediate response involving the vendor, cybersecurity experts, and relevant authorities.The exposed information primarily consisted of customer names, […]
July 31, 2025

CISA Announces Release of Thorium for Malware Analysis

The Cybersecurity and Infrastructure Security Agency (CISA), in partnership with Sandia National Laboratories, released Thorium, an automated, scalable malware and forensic analysis platform that can integrate commercial, custom, and open-source analysis tools and enable cyber defenders to quickly assess malware threats and index forensic analysis results into a unified platform.Advanced persistent threats using malware continue to increase in volume and […]