LockBit Ransomware Attack on TRACSA, Leading Industrial Solutions Provider
LockBit has claimed a ransomware attack on TRACSA SA de CV, a major Mexican provider of industrial machinery, stating that it will leak “critical data” if the company does not enter negotiations. The incident was listed on the group’s leak site on December 7 and is described as involving potential exposure of sensitive corporate information, with no public confirmation yet from the victim.
[Multi-State Cyber Syndicate With Suspected Chinese Links Discovered](http…
LockBit Ransomware Attack on TRACSA, Leading Industrial Solutions Provider
LockBit has claimed a ransomware attack on TRACSA SA de CV, a major Mexican provider of industrial machinery, stating that it will leak “critical data” if the company does not enter negotiations. The incident was listed on the group’s leak site on December 7 and is described as involving potential exposure of sensitive corporate information, with no public confirmation yet from the victim.
Multi-State Cyber Syndicate With Suspected Chinese Links Discovered
Delhi Police report dismantling a multi-state cybercrime syndicate that allegedly operated under the direction of foreign handlers in China and laundered fraud proceeds through shell companies and cryptocurrency. The group is accused of using money-mule accounts, forged KYC identities, SIM farms and USDT-based wallets to move funds from a senior citizen investment fraud overseas, with several arrests made and additional suspects under investigation.
Coupang Offers Advisory After Recent Data Breach, Security Expert Warns of Dangerous Fallout
Coupang, South Korea’s largest e-commerce platform, has issued new guidance to customers following a breach that reportedly affected about 33.7 million accounts. Exposed data includes names, email addresses, phone numbers, shipping addresses and some order histories, while the company says payment information and passwords were not compromised; regulators have pressed the firm to clearly label the incident as a data breach and address the risk of secondary misuse.
Ex-Employee Sues Washington Post Over Oracle EBS-Related Data Breach
A former Washington Post employee has filed a class-action lawsuit after a breach tied to Oracle E-Business Suite exposed personal data for roughly 9,720 current and former staff, contractors and contributors. The suit argues that the Post failed to implement reasonable safeguards against attacks that exploited critical vulnerabilities in Oracle EBS, part of a wider campaign attributed to the Cl0p group, and seeks compensation for alleged identity theft risks and monitoring costs.
Extortion Only Attacks Surge for Manufacturers
A new Sophos “State of Ransomware in Manufacturing and Production 2025” report finds that only 40 percent of ransomware attacks on manufacturers led to data encryption, down sharply from 74 percent in 2024, as more organizations stop attacks earlier. At the same time, extortion-only incidents where attackers steal data without encrypting systems have risen from 3 percent to 10 percent, and 39 percent of victims that did experience encryption also had data stolen, highlighting a shift toward data theft and pressure tactics.
Portugal Updates Cybercrime Law to Exempt Security Researchers
Portugal has amended its cybercrime law to create a legal safe harbor for good-faith security research through a new Article 8.o-A titled “Acts not punishable due to public interest in cybersecurity.” The provision exempts certain hacking activities from criminal liability when strict conditions are met, including acting solely to find vulnerabilities, avoiding financial gain beyond normal compensation, promptly reporting issues to system owners and authorities, avoiding service disruption or unlawful personal data processing, and deleting any collected data after remediation.