A cyberattack disrupted some Northern Mariana Islands government email accounts, leaving users without access and potentially slowing routine work. OIT launched security protocols to restore service; the attack type and actor are unknown, and affected users are directed to support.
Hongsu Technology, a semiconductor equipment manufacturer in Taiwan, experienced a ransomware attack on its information system in early April 2026. The incident resulted in an estimated loss of approximately 22 million NTD due to the disposal and repair of affected hardware and software infrastructure, as well as costs associated with external data recovery teams. However, the attack did not significantly impact core operations such as production or transactions, and no leaks of trade secrets or sensitive information were detected. Hongsu plans to enhance its security mechanisms in response to the incident.
Kintetsu World Express (S) Pte Ltd. experienced a cyber incident on May 15, 2026, due to unauthorized access by a third party. Affected systems were taken offline and isolated, and services were restored following security verification. Currently, no impact has been noted on operations outside of Singapore, nor on critical operational systems. The company has activated a crisis center and is implementing measures in accordance with its business continuity plan.
The Kinsmen Foundation in Canada experienced a cybersecurity incident around May 19, 2026, resulting in potential compromise of contact information and email addresses. Unauthorized access was gained to certain applications; however, regular operations and services were not affected. Local authorities have been informed, and third-party experts have been engaged. The foundation is currently notifying donors whose information may have been impacted and advises the public to remain vigilant for suspicious emails.
Nostrum Co., Ltd. was affected by a ransomware attack that penetrated its network via VPN on April 19, 2026, at 5 AM. The incident resulted in the encryption of internal server data, rendering the servers inoperable and disrupting the company's learning support services. Nostrum reported the attack to law enforcement and the Personal Information Protection Authority, engaged an external firm to monitor a leak site, and is currently investigating and repairing the damage with cybersecurity experts while rebuilding its system on new infrastructure.
On May 18, 2026, the SPLIU union experienced a cyber attack on the same day it announced a national strike for early childhood and primary school teachers scheduled for June 15. The attack disrupted the normal functioning of its services, but SPLIU stated that it would not hinder its demands for 'absolute equity' in the teaching profession. There are no details regarding stolen or encrypted data, and investigations are likely ongoing.
Delano Public Schools in Minnesota canceled Wednesday classes after a Monday night cyber incident compromised the district network and prompted an internet shutdown. Officials have not confirmed ransomware or data theft; experts are testing systems before resuming classes, and no group has claimed responsibility.
Kent Industrial's headquarters in Taiwan experienced attempted connections and cyber attacks on its internal networks around May 20, 2026. The group promptly activated defensive measures, and no personal or confidential information was leaked. The incident had no significant impact on operations, and improvements will be made to the network security architecture.
The Arbeitsgemeinschaft Wirtschaftlichkeitsprüfung Niedersachsen (Arwini) was targeted in a cyber attack around May 4, 2026. Sensitive personal data of up to 80,000 insured individuals, including contact, health, and billing information, may have been compromised. The incident was discovered in early May, prompting immediate shutdown of the affected systems. Authorities including the Landeskriminalamt and the data protection authority have been notified, although the exact extent of the data breach remains unclear. The attack was claimed by the group Kairos on May 11.
CKC Network and Gakusan were victimized by a ransomware attack around May 2, 2026. The incident potentially exposed personal information, including children's names, classes, requests, phone numbers, and email addresses; however, no data transfers or breaches of payment information were confirmed. Affected services include Nabi, Meirin, Kojo, Eishin, and Gakusei. Both companies are currently conducting an external investigation to assess the cause and extent of the incident.
HDFC Asset Management Company experienced a cyber attack on May 16, 2026, leading to a 3.8% drop in its stock price. The nature of the attack impacted the company's IT infrastructure, though details on breached systems or stolen data have not been specified. The incident was revealed through an anonymous source and reflects the increasing security risks faced by the Indian financial sector. The company is currently working to contain the incident.
3i Infotech Limited detected a suspected ransomware cyber attack on its IT infrastructure on May 16, 2026. The company engaged an independent expert firm to investigate the root cause of the incident and notified CERT-in. Initial assessments indicate no impact on business continuity or the operational functioning of its systems.
On Saturday, Chanhassen Dinner Theatres in Minnesota said it took systems offline after detecting a network attack and would reschedule some performances. Box office and ticket holders are affected; the venue and external experts are working to restore systems, and impacted patrons will be contacted.
On April 18, 2026, Goodstone Group, a hospitality provider based in Tasmania, experienced a cyber attack by the ransomware group CMD Organization. Sensitive data, including employee passport scans, was compromised and is currently being sold on the dark web for an estimated one million dollars. The company is collaborating with the relevant authorities to address the incident.
Oriental Diamond Co. in Japan reported a ransomware attack on May 4, 2026, that led to the encryption of data on its internal servers, posing a risk of personal data leakage. The company promptly isolated its servers from the network, reported the incident to law enforcement and the Personal Data Protection Commission, and engaged external experts for investigation and restoration efforts. The company is taking measures to prevent future incidents, including discontinuing VPN use and enhancing authentication procedures.
East Inc. confirmed that it experienced unauthorized access to its internal network by third parties on April 24, 2026. Although there has been no confirmation of data leakage, the company has taken immediate action and reported the incident to the appropriate authorities. External security agencies are currently investigating the extent of the impact and are working to enhance cybersecurity measures.
Tokyo Paving Industry Co., Ltd. experienced a ransomware attack on April 2, 2026, which potentially exposed information about its customers, business partners, and employees. The company is collaborating with specialized agencies to mitigate damage and investigate the cause of the incident. Despite the breach, they report that their operations remain unaffected and commit to disclosing any new findings promptly.
FORREC Ltd., a subsidiary of Sansei Technologies in Japan, experienced a cyber attack on April 3, 2026. The investigation revealed no breach of personal data or customer information, and the security measures on the affected network equipment were promptly implemented. The impact on FORREC's operations was minimal, with no repercussions reported for the wider Sansei group.
The Fondation pour la formation des adultes à Genève (IFAGE) experienced a cyber attack on April 13, 2026, which compromised usual data of its collaborators and former employees. However, no educational systems or student data were affected. Investigations are ongoing as the institution continues its activities and advises increased vigilance to those concerned.
A cyberattack on Murray County, Georgia’s government network closed several county offices Wednesday, while officials said 911, public safety and primary voting remain available.
The disruption affects public-facing county services, including tax, assessment and court offices, but officials said first responders and emergency functions are still working.