October 20, 2025

Microsoft pins latest GoAnywhere MFT exploitation campaign on Medusa ransomware group

Microsoft has identified a cybercriminal group tracked as Storm-1175 as responsible for actively exploiting a critical deserialization vulnerability (CVE-2025-10035) in Fortra’s GoAnywhere Managed File Transfer (MFT) software. This vulnerability affects the License Servlet component and allows unauthenticated remote code execution (RCE) by processing attacker-controlled serialized data. The attackers leveraged this zero-day flaw to gain initial access to targeted networks by […]
October 10, 2025

Western Sydney University warns of scam emails revoking degrees

Western Sydney University warned students and alumni about a sophisticated scam involving fraudulent emails falsely claiming that recipients’ academic degrees had been revoked and that they were permanently excluded from the university. These emails, which appeared very official and included students’ full names and ID numbers, caused significant alarm among recipients. WSU confirmed the emails were fake, not issued by […]
October 1, 2025

Homebuyers shrug off cybersecurity risks, even as scammers target property deposits

Many home buyers remain surprisingly unconcerned about cybersecurity risks despite a rise in scammers targeting property deposits. A recent report from InfoTrack shows that around half of Australians have little to no worry about sharing personal information during property transactions, even though the average deposit is now approximately $160,000. This complacency is alarming given the increasing number of cybercriminals exploiting […]
September 15, 2025

Volvo North America confirms staff data stolen following ransomware attack on IT supplier

Volvo Group North America confirmed a significant data breach after its third-party human resources software provider, Miljodata, was struck by ransomware. The incident began on August 20, 2025, when attackers later identified as the Data Carry ransomware group gained access to Miljodata’s cloud-based HR management platform, which services numerous organizations across Sweden and North America. Miljodata discovered suspicious activity three […]
September 1, 2025

Jaguar Land Rover Cyberattack Forces Extended Factory Shutdown and Disrupts Global Operations

Jaguar Land Rover (JLR), the United Kingdom’s largest automotive manufacturer and a subsidiary of Tata Motors, experienced a significant ransomware attack that forced a global operational shutdown. The cyberattack, attributed to the Scattered Lapsus$ Hunters group, caused severe disruption across multiple manufacturing plants in Solihull, Halewood, Wolverhampton, Slovakia, Brazil, and India. In response, JLR proactively disabled IT systems to contain […]
August 29, 2025

WhatsApp Cloud Ransomware Campaign

WhatsApp faced a significant cybersecurity incident after researchers uncovered a zero-day vulnerability (CVE-2025-55177) affecting its iOS and macOS applications. The flaw was tied to the linked devices feature, which synchronizes data across a user’s phone and secondary devices. Exploiting this weakness, threat actors could inject malicious content from unauthorized URLs, effectively bypassing normal security restrictions. Investigations revealed that the vulnerability […]
August 16, 2025

India Independence Day Government Cyberattack

As India prepared to celebrate its 79th Independence Day, the nation faced an unprecedented surge of cyber threats directed at government, defense, and financial sectors. Security intelligence assessments reported over 4,000 cyber incidents in the weeks leading up to the holiday. The campaign involved a mix of state-sponsored Advanced Persistent Threats (APTs), such as APT36 (also known as Transparent Tribe) […]
July 22, 2025

France Travail Data Breach Exposes Personal Information of 340,000 Job Seekers

France Travail, the French national public employment agency, experienced a major data breach affecting approximately 340,000 job seekers. The compromise originated via unauthorized access to the Kairos application, a platform used by partner organizations to monitor job seekers’ training progress. Attackers exploited info-stealer malware on a partner system, bypassing the existing two-factor authentication, which allowed them to access sensitive personal […]
July 22, 2025

Dell demonstration platform breached by World Leaks extortion group

Dell Technologies disclosed that its Customer Solution Centers demonstration platform had been compromised by the cyber-extortion group known as World Leaks, formerly Hunters International. The platform in question is used exclusively for showcasing Dell products, running proofs of concept, and testing configurations for prospective clients. Dell emphasized that this environment is fully segmented from internal networks, production systems, partner environments, […]
123456789101112131415161718192021
Next page

Collaboration can mitigate the effects of Ransomware Attacks

Archives
Categories
Privacy Policy
RSS NCSC Threat Reports Feed

© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.