Data breach at Japanese telecom giant NTT hits 18,000 companies

Japanese telecommunication services provider NTT Communications Corporation (NTT) is warning almost 18,000 corporate customers that their information was compromised during a cybersecurity incident.

The data breach was discovered in early February 2025, but the exact date when the hackers gained initial access to NTT’s systems hasn’t been determined.

“NTT Communications Corporation discovered on February 5 that our facilities had been subjected to unauthorized access”.

“On February 6, we confirmed that some information might have been leaked externally.”

Specifically, NTT says hackers breached its ‘Order Information Distribution System,’ which held details on 17,891 corporate customers (companies), but no data on personal customers (consumers).

The types of data that may have been stolen by hackers includes:

• Customer name (registered contract name)
• Customer representative’s name
• Contract number
• Phone number
• Email address
• Physical address
• Service usage information

NTT says contracts for corporate smartphones and mobile phones provided directly by NTT Docomo were not affected by this incident.

Tata Technologies Battles Ransomware Attack

Tata Technologies, a leading global engineering and digital services company, confirmed that it fell victim to a ransomware attack. The breach led to the temporary suspension of some of its IT services, which have since been restored.

Tata Technologies has initiated a detailed investigation in collaboration with cybersecurity experts to determine the root cause of the breach. The company is committed to taking all necessary steps to mitigate potential risks and ensure the highest standards of security and data protection.

Cyber Attack at Raymond: IT Teams, Authorities Probe Massive Breach

Leading textile and apparel conglomerate Raymond Limited has confirmed a cyber-attack on its IT infrastructure on February 19. The company swiftly isolated affected systems to safeguard core business operations, ensuring no disruption to customer-facing platforms or store networks.

In a regulatory filing, Raymond’s Company Secretary and Compliance Officer, Rakesh Darji, assured that its retail and physical store operations remain unaffected. While the filing did not disclose details about the threat actors or confirm any ransomware involvement, the company stated that “necessary precautions and protocols” were activated to mitigate the impact.

Despite the security breach, Raymond reassured stakeholders that its critical manufacturing and retail systems are secure, with no significant service disruptions reported. The company’s cybersecurity experts, along with internal IT teams, are conducting forensic analysis to assess the attack’s entry points, duration, and potential data exposure risks. Additionally, India’s cybersecurity agency CERT-In has been notified, and an investigation is underway.

Massive Data Breach Hits NSW Online Registry: 9,000+ Files Stolen

A major cybersecurity incident has struck the New South Wales court system, as cybercrime detectives investigate a significant data breach affecting the Department of Communities and Justice (DCJ).

The breach targeted the NSW Online Registry Website (ORW), a critical platform that houses sensitive information related to both civil and criminal cases across the state.

The breach was discovered on Tuesday, March 25, 2025, prompting officers from the State Crime Command’s Cybercrime Squad to initiate an immediate investigation under Strike Force Pardey.

The investigation revealed that approximately 9,000 sensitive court files, including apprehended violence orders and affidavits, were accessed and downloaded by unauthorized parties.

Hackers steal sensitive data from Pennsylvania county during ransomware attack

Personal information from Union County, Pennsylvania, residents was stolen during a ransomware attack on government systems 10 days ago.

The county published a notice on Friday warning its more than 40,000 residents that the ransomware attack was discovered on March 13. Federal law enforcement was notified and cybersecurity experts were hired to help with the recovery process. 

On March 13, the county learned that the hackers took personal information from its network. 

Infosys settles U.S. cyber incident lawsuits for $17.5 mn

Indian IT services giant Infosys has reached a settlement agreement concerning multiple lawsuits filed against its U.S. subsidiary, Infosys McCamish Systems, over a cybersecurity breach that occurred in 2023. The company announced on Friday that it would pay $17.5 million into a settlement fund to resolve all pending class action lawsuits and associated allegations.

Impact of the Cybersecurity Breach

The security incident resulted in unauthorized access and data exfiltration affecting a substantial number of individuals. In April 2024, Infosys revealed that an internal investigation, conducted in collaboration with its third-party vendor eDiscovery, identified up to 6.5 million individuals whose personal information had been compromised.

Although the company did not disclose the exact nature of the data breach, cybersecurity analysts speculate that sensitive personal data, including financial and insurance-related information, may have been accessed. The breach raised concerns over Infosys McCamish Systems’ cybersecurity infrastructure and data protection measures, prompting regulatory scrutiny and class action lawsuits from affected parties.

Oracle Denies Breach Amid Hacker’s Claim of Access to 6 Million Records

A recent investigation by CloudSEK’s XVigil platform has uncovered a cyberattack targeting Oracle Cloud, resulting in the exfiltration of six million records and potentially affecting over 140,000 tenants. Reportedly, a threat actor, identified as ‘rose87168,’ perpetrated this attack that involved the theft of sensitive data, including JKS files, encrypted SSO passwords, key files, and enterprise manager JPS keys, which are now being sold on Breach Forums and other dark web forums.

The attacker, active since January 2025, claims to have compromised a subdomain login.us2.oraclecloud.com, which has since been taken down. This subdomain was found to be hosting Oracle Fusion Middleware 11G, as evidenced by a Wayback Machine capture from February 17, 2025. They are demanding ransom payments from affected tenants for the removal of their data and have even offered incentives for assistance in decrypting the stolen SSO and LDAP passwords.

Nine newspapers subscribers have data exposed online in breach

Thousands of the subscribers to Nine newspapers have had their personal data exposed online in a major cybersecurity breach.

Sixteen-thousand subscribers to the Sydney Morning Herald, The Age and The Financial Review had their names, postal addresses and email addresses left exposed online.

A spokesperson for Nine said payment details and passwords were not affected.

Nine said it was first made aware of the hack to a third-party supplier that had access to subscriber’s details by a security researcher.

“We have been made aware by a security researcher that certain personal information held by a third party supplier was not protected to the level of Nine’s strict internal data protocols after an unauthorised change,” a spokesperson said.

“This included a limited number of The Sydney Morning Herald, The Age and The Australian Financial Review print subscriber records.”

The company said there was no breach of its “internal technology infrastructure” and that the data was no longer visible online.

President Mahama’s hacked X account restored after several hours of cybersecurity breach

President John Dramani Mahama has confirmed that his X (formerly Twitter) account has been restored following a cybersecurity breach.

The account was compromised on March 17, 2025, and used to promote a suspicious cryptocurrency called “Solana Africa.”

In a post on X after regaining access, Mahama reassured the public, stating:

“My team has restored my account, working with the X support team. Thank you for your enquiries and offers to assist.”

The breach has also highlighted the importance of robust cybersecurity measures for public figures. Experts have urged political leaders and organizations to implement stronger authentication systems, regular security audits, and emergency response protocols to protect their digital assets.