September 1, 2025

Jaguar Land Rover Cyberattack Forces Extended Factory Shutdown and Disrupts Global Operations

Jaguar Land Rover (JLR), the United Kingdom’s largest automotive manufacturer and a subsidiary of Tata Motors, experienced a significant ransomware attack that forced a global operational shutdown. The cyberattack, attributed to the Scattered Lapsus$ Hunters group, caused severe disruption across multiple manufacturing plants in Solihull, Halewood, Wolverhampton, Slovakia, Brazil, and India. In response, JLR proactively disabled IT systems to contain […]
August 29, 2025

WhatsApp Cloud Ransomware Campaign

WhatsApp faced a significant cybersecurity incident after researchers uncovered a zero-day vulnerability (CVE-2025-55177) affecting its iOS and macOS applications. The flaw was tied to the linked devices feature, which synchronizes data across a user’s phone and secondary devices. Exploiting this weakness, threat actors could inject malicious content from unauthorized URLs, effectively bypassing normal security restrictions. Investigations revealed that the vulnerability […]
August 16, 2025

India Independence Day Government Cyberattack

As India prepared to celebrate its 79th Independence Day, the nation faced an unprecedented surge of cyber threats directed at government, defense, and financial sectors. Security intelligence assessments reported over 4,000 cyber incidents in the weeks leading up to the holiday. The campaign involved a mix of state-sponsored Advanced Persistent Threats (APTs), such as APT36 (also known as Transparent Tribe) […]
July 22, 2025

France Travail Data Breach Exposes Personal Information of 340,000 Job Seekers

France Travail, the French national public employment agency, experienced a major data breach affecting approximately 340,000 job seekers. The compromise originated via unauthorized access to the Kairos application, a platform used by partner organizations to monitor job seekers’ training progress. Attackers exploited info-stealer malware on a partner system, bypassing the existing two-factor authentication, which allowed them to access sensitive personal […]
July 22, 2025

Dell demonstration platform breached by World Leaks extortion group

Dell Technologies disclosed that its Customer Solution Centers demonstration platform had been compromised by the cyber-extortion group known as World Leaks, formerly Hunters International. The platform in question is used exclusively for showcasing Dell products, running proofs of concept, and testing configurations for prospective clients. Dell emphasized that this environment is fully segmented from internal networks, production systems, partner environments, […]
June 17, 2025

Supply Chain Attack on NPM Packages

In June 2025, a significant supply chain attack on the NPM ecosystem was uncovered, primarily affecting multiple React-Native Aria packages that had been tampered with to distribute a Remote Access Trojan (RAT). The malicious code was embedded in seemingly routine updates, beginning with @react-native-aria/focus version 0.2.10 and quickly spreading across related packages, many of which collectively record hundreds of thousands […]
May 25, 2025

Cellcom Outage Mobile Carrier Suffers Major Cyberattack

Wisconsin-based wireless carrier Cellcom suffered a major cyberattack that severely disrupted mobile services for nearly 75,000 subscribers across Northeast Wisconsin and Michigan’s Upper Peninsula. The outage began on May 14, leaving customers unable to make calls, send SMS messages, or port numbers, though 911 services, mobile data, iMessage, and RCS messaging continued to function.At first, Cellcom described the disruption as […]
April 25, 2025

Apple iPhone Targeted by Advanced Attackers

Apple has released emergency security updates for iOS/iPadOS, macOS, tvOS, and visionOS that fix two zero-day vulnerabilities (CVE-2025-31200, CVE-2025-31201) that have been exploited in an extremely sophisticated attack against specific targeted individuals on iOS.CVE-2025-31200 affects CoreAudio, an API Apple devices use for processing audio. The memory corruption vulnerability can be triggered with a maliciously crafted media file: when the audio […]
April 10, 2025

Supply Chain Email Breach Hits Marketing Giants

A notable supply-chain email breach impacted marketing giants through the compromise of OAuth tokens associated with Salesloft’s Drift platform. This breach propagated through integrations such as Salesforce, affecting hundreds of companies, including high-profile security enterprises like Cloudflare, Zscaler, Palo Alto Networks, SpyCloud, and Tanium. Attackers exploited the interconnected nature of modern SaaS ecosystems, leveraging downstream trust to access sensitive credentials […]
123456789101112131415161718192021
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.