Cyber ​​incidents

Nissan investigation into cyber attackNissan Oceania computer systems affected: potential data compromiseNissan is investigating a cyber attack on its systems in Australia and New Zealand, which could have allowed access to personal data. The company warned customers about the potential data compromise. Nissan is working with security experts to understand the extent of the unauthorized access.

Cyber incursions into US water utilitiesAmerica's water systems under attack: How cyber terrorism hits resource-constrained utilitiesCyber attacks on US water systems by Iran's Revolutionary Guard raise cyber security concerns. While there was no impact on water quality, the event is seen as a warning to organizations that rely on operational technologies. Federal authorities and the EPA are working to strengthen safety, especially...

JAXA under cyber attack. The safety of the space program is a concernThe risk of cyber vulnerability: details of the attack and implicationsThe Japan Aerospace Exploration Agency (JAXA) has suffered a cyberattack due to a Microsoft Active Directory breach, raising concerns about the security of Japan's space program data. According to reports, JAXA has previously been the target of hackers potentially linked to foreign governments. In response...

Cyberattacks and cryptocurrency laundering: North Korea's strategySanction evasion strategies and social engineering techniques adoptedThe North Korea-linked Lazarus Group uses technology to steal cryptocurrencies, bypassing sanctions. They stole around $3 billion in 6 years, taking advantage of DeFi systems to mask their tracks.

Crisis in aviation: Rosaviatsia targeted by cyberattackCyber attack exposes vulnerability of Russian aviation sectorUkrainian intelligence claims to have hit the Russian aeronautical agency Rosaviatsia with a cyberattack, causing problems for the Russian flight sector, already in difficulty due to sanctions that limit maintenance and spare parts.

CyberLink supply chain intrusion by North Korean hackersCyberLink installer compromise: the sophisticated operation of the Lazarus groupNorth Korean hacker group Lazarus attacked Taiwan's CyberLink company, spreading malware through altered company software. Microsoft detected the attack and notified affected users.

Denmark the target of a massive cyber attack by Russian hackersContrast and defense strategies in the era of international cyber offensivesA group of Russian hackers has launched a large-scale cyberattack against Danish infrastructure and institutions, using phishing and advanced malware. Coordinated action for safety and prevention is essential.

Security breach at Toronto librariesCrisis management and post-accident containment measuresToronto libraries have been hit by a ransomware attack, potentially exposing personal data. Authorities and libraries work together to investigate and improve security.

IT crisis in a leading company in the banking sectorThe emergence of new risks for the global financial system following cyber-attacksThe largest bank in the world suffered a cyber attack that forced it to use USB for market operations. This shows the importance of improving IT security in the banking sector.

Cyber-espionage campaign impacts Israeli hi-tech sectorChallenges in cyberspace: the battle to defend Israeli trade secretsA group of Iranian hackers attacked Israel's tech sector, stealing data and putting corporate networks at risk through phishing and malware. The international community is working to counter the threat.

Security breach at Henry County schoolsStrengthening digital defenses in educationA cyber attack threatened the security of Henry County's school network. Measures have been taken to protect the data and the attack is being investigated to improve security.

Response to major digital intrusion at Australian portsEmergency measures and economic impact post-cyber attack in logistics nodesAn Australian port has halted operations due to a cyber attack. The causes are being investigated and security is being strengthened to prevent future damage. This has economic and logistical impacts.

Global banking giant under ransomware attackA look at the ICBC ransomware incident and prevention strategiesICBC Bank was hit by a ransomware attack that put data and financial operations at risk. It responded by activating safety protocols to contain the damage and protect customers.

Mega DDoS attacks target Russian banking sectorIntensification of cyber attacks against Russian financial infrastructureSberbank, the main Russian bank, suffered a large-scale DDoS attack with one million requests per second, a peak never before recorded for the institution. The attack was more sophisticated than previous episodes.

Security alert for Atlassian: the escalation of a critical riskWarning about the consequences of exploits on Atlassian: an urgent call to strengthen defensesWarning: A serious vulnerability (CVE-2023-22518) has been discovered in Atlassian Confluence Server and Data Center with maximum risk. An urgent update is recommended to prevent ransomware attacks.

Cybersecurity on alert: Canadian clinics in checkCyber security at risk: Canadian healthcare faces large-scale data breachesFive Canadian healthcare facilities have been hit by a ransomware attack that caused the leak of sensitive patient and employee data. The Daixin group claimed responsibility for the action. Investigations are underway.

Exponential increase in cyber attacks in IndiaDramatic increase in cyber threats in the Indian nation: a worrying overviewA report by Indusface reveals that India suffered over 1.6 billion cyber attacks in the second quarter of 2023, registering a 70% increase. DDoS attacks have increased with the main victims being India, the United States, Germany and the United Kingdom. The report also highlights over two billion blocked...

LockBit ransomware group targets BoeingAn anti-ransomware defense plan is essential for companies like BoeingHacking group LockBit has targeted Boeing, threatening to release stolen data if they don't pay a ransom. LockBit has hacked many multinationals and earned millions of dollars. Boeing is investigating the situation and promises an update. Previous LockBit attacks may also involve Boeing.

Canadian hospitals under cyber attack: suspected ransomwareAn attack that puts the security of sensitive data and the functioning of crucial healthcare facilities at riskIn a cyberattack, Transform, an IT services provider for hospitals in Ontario, was possibly the victim of a ransomware attack. 5 hospitals, including Windsor Regional Hospital, were severely affected. Cyberattacks in the healthcare sector are increasingly common and companies must protect themselves...

Phishing attacks in the hospitality industry: new research from AkamaiIncreased levels of complexity in hospitality phishing campaignsAkamai research has detected sophisticated phishing attacks in the hospitality industry. Hackers are using DNS exploits to target both staff and customers, stealing data and damaging reservations. Akamai analyzes domains used by attackers to identify patterns and protect users.

Corporate data breach: D-Link responds promptlyD-Link's immediate reaction to corporate data breach reveals details of attack and reassures customersD-Link, Taiwanese company, confirms data breach. The breach was due to a phishing attack on an old, outdated system. Stolen data is few and not sensitive. Company took immediate action.

Serious Equifax security breach fined £11.1mA lesson on personal data management in the digital age: the Equifax caseThe Financial Conduct Authority (FCA) has fined Equifax £11,164,400 for a serious cybersecurity breach. Equifax failed to properly manage the security of UK consumer data, allowing hackers to access millions of personal details. The breach was made worse by Equifax's poor handling of the incident...

Hamas-Israel war: the escalation of virtual operationsThe digital arena: The new frontier in the Hamas-Israel warThe recent conflict between Hamas and Israel has demonstrated the use of digital warfare and disinformation operations to control the narrative and influence public opinion. Involving external actors, such as hackers and Russia, this hybrid warfare requires attention and a coordinated response from the...

Email delivery issues in Exchange Online: Microsoft investigatingLearn more about causes and impactsMicrosoft is investigating email delivery issues in Exchange Online, causing "Server Busy" errors and delays in receiving external emails. The problems could be related to the incorrect application of anti-spam rules. There have also been previous problems accessing email inboxes.

Record DDoS attacks: fixes quickly releasedHTTP2 vulnerability exploited by large-scale DDoS attacks: here are the solutionsWeb server vendors address Rapid Reset vulnerability in HTTP2 protocol that caused DDoS attacks. Fixes have been released for many affected products. Large DDoS attacks have been mitigated thanks to a zero-day vulnerability in the HTTP/2 protocol called HTTP/2 Rapid Reset.

Cyber attack on the Province of Cosenza: the imperative of robust digital securityThe need for advanced cyber defense against ransomware: lessons from the attack on the Province of CosenzaThe provincial administration of Cosenza was hit by a ransomware cyber attack, making data inaccessible and demanding a ransom. Despite the attack, the administration refused to pay, showing determination to recover the encrypted data. We highlight the importance of adopting advanced digital security...

Cloudflare: the incident that caused DNS resolution issuesCloudflare's implications and solutions for the DNS resolution incidentDNS service provider Cloudflare experienced a DNS resolution error that caused internet access issues for many users. The error was caused by an internal software error at Cloudflare and not by an external attack. Cloudflare is working to prevent future errors and apologizes for the incident.

Lyca Mobile services disrupted by cyber attackThe consequences of the attack and the ongoing investigationsA cyber attack has disrupted the services of mobile provider Lyca Mobile, preventing users from accessing services and causing operational problems. The company is investigating possible personal data breaches.

Hacker attack on Sony: threat of data disclosureA new threat to Sony's data security: the tension increasesA Russian hacker group, known as Ransomed.vc, claims to have breached Sony's security systems and is holding sensitive customer data. They threaten to sell the data if a ransom is not paid. Sony is investigating the situation.

Cyber attack paralyzes the Bermuda islands: government working to restore operationsExtensive checks are underway to determine the origin of the sophisticated cyber attack in the governmentBermuda suffered a major cyber attack last week, but there is no evidence of data theft. The government is restoring operations and building a more secure network. Difficulties have been encountered, but everything is expected to return to normal soon.

Air Canada: employees' personal data breachedFight against breaches of sensitive employee data and strengthen cybersecurity practicesAir Canada has revealed a breach of their internal systems, compromising employees' personal information. The company took immediate action, ensuring that no customer information was accessed. Air Canada is enhancing its security measures to protect employee data and remain operational.

Growing threat: Russian cyber warfare operations in UkraineThe increase in Russian attacks highlighted in the report of the Ukrainian cyber defense organizationRussian hackers targeted Ukrainian law enforcement agencies to gather information on war crimes investigations. Cyberattacks in Ukraine have increased, but defenses are improving. Russia integrates cyber warfare operations into its military strategies.

China's offensive cyber operations in Africa to support soft power effortsChina's growing threat: cyber infiltration into Africa to consolidate its digital dominanceA Chinese-sponsored cyber group has attacked African telecommunications, financial and government organizations in a bid to gain information and competitive advantages. China has invested heavily in African telecommunications and uses these attacks to shape its influence in the region. Other threatening...

China accuses the United States of a long campaign of cyber espionage against Huawei's serversRevealing investigation: details of cyber attacks against Huawei revealed by China's Ministry of State SecurityChina's Ministry of State Security accuses the United States of hacking into Huawei's servers, stealing sensitive data and installing spying backdoors. The US NSA is accused of conducting systematic cyber attacks against China.

Microsoft AI inadvertently exposed 38TB of sensitive data: lessons to be learnedThe consequences of data breaches and implications for corporate cybersecurityMicrosoft AI accidentally exposed 38TB of sensitive data due to misconfiguration of SAS tokens. It is critical to implement adequate security controls and carefully monitor access to sensitive data to avoid incidents like this.

Cyber espionage: Earth Lusca uses new Linux malwareA sophisticated cyber espionage attack endangers the security of Linux networksA China-linked cyber espionage actor known as "Earth Lusca" has begun using a Linux backdoor with features that appear to be inspired by previously known malware tools. The malware, named “SprySOCKS” by Trend Micro researchers, is a Linux variant of “Trochilus,” a remote access Trojan for Windows whose c...

ICC victim of serious cyber attack, investigations underwayThe ICC takes action to protect its digital integrity and ensure the operation of investigationsThe International Criminal Court (ICC) is dealing with a major cybersecurity incident. The ICC investigates war crimes in Ukraine and has taken measures to manage the situation. This is not the first cyber attack on the ICC and raises concerns about the security of the investigation.

Clorox fights the consequences of a cyber attackCybersecurity challenges in the industrial sector: the impact of a cyber attack on CloroxClorox is facing difficulties due to a cyber attack that affected the availability of its products. The company is working to repair the damage and restore production. The attack will have a financial impact in the first quarter and highlights the importance of cyber security measures. MGM Resorts also...

MGM ESXi servers encrypted by ransomware attack: BlackCat group held responsibleMGM Resorts hit by ransomware attack: cybersecurity implications and business repercussionsAccording to reliable sources, MGM's ESXi servers were encrypted by a ransomware attack conducted by the BlackCat/ALPHV group. The Scattered Spider group is suspected of using several types of social engineering attacks.

Peach Sandstorm: the persistent threat of iranian state actorsThe sophisticated cyber-espionage techniques used by Peach Sandstorm threaten global securityMicrosoft has warned of a global cyber-espionage campaign led by an Iranian state actor called Peach Sandstorm. Using password attacks and exploiting vulnerabilities, they have targeted industries such as defense and pharmaceuticals. Microsoft recommends strengthening your defenses and implementing multi-factor...

Hacker attack on Retool: stolen cryptocurrencies and deepfakesSophisticated attack leveraging Google Authenticator MFA sync and deepfake puts business security at riskA San Francisco software development company, Retool, was the victim of a sophisticated hacker attack attributed to a Google sync feature. Hackers breached the system and targeted cryptocurrency customers, causing significant damage. The attack exploited deepfake and raises concerns about corporate security...

Las Vegas casinos double violations: Scattered Spider and ALPHV ChargedAn unprecedented hacking operation puts the security of Las Vegas casinos at riskTwo hacker groups, Scattered Spider and ALPHV, have been linked to the attacks on the MGM Resorts and Caesars Entertainment companies in Las Vegas. MGM had to pay a multimillion-dollar ransom, while Caesars suffered widespread outages. Investigations are still ongoing to identify the perpetrators of...

Hackers steal $53 million worth of cryptocurrencies from CoinExCoinEx under attack: millions of dollars worth of cryptocurrency funds stolenCoinEx, a well-known cryptocurrency exchange, suffered a cyber attack resulting in the loss of digital assets worth approximately $53 million. The cryptocurrencies involved are Ethereum, Tron and Polygon. CoinEx has suspended services to protect users and it is suspected that the Lazarus group may be...

Anonymous Sudan: DDoS attack against TelegramThe mysterious reasons behind the exclusion of Anonymous Sudan from TelegramThe latest article talks about the suspension of the main account of the Anonymous Sudan group on Telegram, an alleged consequence of the use of bots. The group responded with DDoS attacks against the platform itself. It is speculated that the suspension is also linked to previous attacks against Microsoft...

Cyber espionage: new Sponsor backdoor hits various industriesNew cyber threat: Charming Kitten affects at least 34 companiesAn Iran-linked cyber spy group known as Charming Kitten has infected 34 victims in Brazil, Israel and the United Arab Emirates with a new backdoor called Sponsor. This malware exploits vulnerabilities in Microsoft Exchange servers. Experts recommend applying security patches and staying vigilant for...

Sri Lanka data incident: ransomware attack hits governmentA cyber disaster that could put national security at riskThe Sri Lankan government suffered a major cyber attack that compromised over 5000 email accounts due to outdated software. Backup servers were also compromised, making data recovery difficult. The government will not pay ransom to attackers.

The UK Electoral Commission fails a crucial cybersecurity testThe gaps in the IT security of the Election Commission expose the entire population to serious risksThe UK Electoral Commission has admitted to a cyber breach that compromised the personal data of 40 million voters. The attack occurred after the Commission failed a cybersecurity test and used outdated software. An investigation is underway to assess the consequences and improve cybersecurity.

Freecycle.org reports data breach, urges users to reset passwordsEnhancing security measures: Freecycle.org takes immediate action following data breachFreecycle.org, a recycling platform, suffered a data breach, prompting the organization to recommend password resets for its millions of users. The compromised data includes usernames, email addresses, and hashed passwords. Freecycle.org is investigating the incident and advising users to remain vigilant...

Okta: social engineering attacks targeting IT help desks to gain control of privileged accounts and disable...Details of the attack and recommendations for protecting privileged accountsOkta, an identity and access management company, has revealed a series of targeted attacks on their customers' IT service desks in the US. Attackers used social engineering to gain control over privileged accounts. Okta suggests implementing new security measures, such as phishing-resistant authentications,...

LockBit hackers steal sensitive british military defense documentsSuspicions of a russian cyber attack on the UK Ministry of DefenceThe UK Ministry of Defense has been attacked by Russian hackers, according to reports on social media. The stolen information was shared on the dark web. The UK's National Cyber Security Center has issued a threat alert, urging companies to be alert and stay safe.