November 17, 2023 at 11:47AM Yamaha Motor’s motorcycle manufacturing subsidiary in the Philippines was hit by a ransomware attack, resulting in the theft and leak of some employees’ personal information. The breach was detected on October 25, and the company has been investigating with the help of external security experts. The attack was attributed to … Read more
November 17, 2023 at 06:33AM Toyota Financial Services Europe & Africa confirmed being targeted in a cyberattack by the ransomware group Medusa. Unauthorized activity was detected in a limited number of locations and systems were taken offline. The group is threatening to distribute stolen data unless an $8 million ransom is paid. The attack may … Read more
November 15, 2023 at 02:24PM The Toronto Public Library (TPL) experienced a ransomware attack in October, resulting in the theft of personal information belonging to employees, customers, volunteers, and donors. The compromised file server contained data dating back to 1998, including names, social insurance numbers, birth dates, home addresses, and government-issued identification documents. The library … Read more
November 13, 2023 at 09:41AM Denmark experienced its largest-ever online attack on critical infrastructure in May, according to a report from SektorCERT. The attack affected 22 companies, with some forced to disconnect from the power network. Unpatched vulnerabilities in Zyxel firewalls were exploited, potentially by multiple groups including Russia’s Chief Intelligence Office. The attacks were … Read more
November 10, 2023 at 03:28PM LockBit, a ransomware gang, claims to have leaked all the data stolen from Boeing after the company refused to pay the ransom demand. The leaked data includes 50GB of compressed archives and backup files, as well as company finances, marketing activities, and supplier details. Boeing has not confirmed the entry … Read more
November 10, 2023 at 10:32AM The Industrial & Commercial Bank of China (ICBC) has confirmed that it experienced a ransomware attack on November 8, which disrupted its services. The attack impacted certain financial services systems, including its ability to connect to DTCC/NSCC and settle U.S. Treasury trades for other market participants. ICBC is conducting an … Read more
November 8, 2023 at 01:31PM Security and data analytics company, Sumo Logic, disclosed a security breach after its AWS account was compromised. The breach was discovered on November 3rd when an attacker used stolen credentials to gain access. Customer data remains encrypted, and Sumo Logic has implemented extra security measures and advised customers to rotate … Read more
November 6, 2023 at 04:59PM Veeam has released hotfixes to address four vulnerabilities in its Veeam ONE IT infrastructure monitoring and analytics platform. Two of the vulnerabilities are critical and allow attackers to gain remote code execution and steal NTLM hashes. The remaining two are medium-severity bugs. The company has provided hotfixes for actively supported … Read more
November 4, 2023 at 12:30PM The North Korean hacking group, Lazarus, has been using new macOS and Windows malware in recent attacks, according to security researchers. In one attack, Lazarus targeted blockchain engineers at a cryptocurrency exchange platform by impersonating members of the blockchain community and convincing the victim to download an archive containing malicious … Read more
November 2, 2023 at 11:39AM Okta has notified approximately 5,000 employees that a file containing their personal information was stolen in a breach on one of their third-party vendors, Rightway Healthcare. The breach occurred on September 23, but was only discovered on October 12. Okta has found no evidence of the personal information being misused … Read more