--- title: "Cybersecurity Updates For The Week 11 of 2022 | Phish Protection" description: "Cybersecurity Updates For The Week 11 of 2022: It is essential to be abreast of the latest phishing news headlines to plan anti-phishing strategies better." image: "https://phishprotection.com/og/blog/cybersecurity-updates-for-the-week-11-of-2022.png" canonical: "https://phishprotection.com/blog/cybersecurity-updates-for-the-week-11-of-2022/" --- Quick Answer It is essential to be abreast of the \[latest phishing news\](/tags/announcements/) headlines to plan \*\*anti-phishing strategies\*\* better. Here are this week's most significant phishing updates for your perusal. Share [ ](https://www.linkedin.com/sharing/share-offsite/?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-11-of-2022%2F "Share on LinkedIn") [ ](https://twitter.com/intent/tweet?text=Cybersecurity%20Updates%20For%20The%20Week%2011%20of%202022&url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-11-of-2022%2F "Share on X/Twitter") [ ](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-11-of-2022%2F "Share on Facebook") [ ](https://reddit.com/submit?url=https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-11-of-2022%2F&title=Cybersecurity%20Updates%20For%20The%20Week%2011%20of%202022 "Share on Reddit") [ ](mailto:?subject=Cybersecurity%20Updates%20For%20The%20Week%2011%20of%202022&body=Check out this article: https%3A%2F%2Fphishprotection.com%2Fblog%2Fcybersecurity-updates-for-the-week-11-of-2022%2F "Share via Email") ![Phish Protection blog post image](https://media.mailhop.org/phishprotection/images/2022/03/what-is-spear-phishing-5441.jpg) It is essential to be abreast of the [latest phishing news](/tags/announcements/) headlines to plan **anti-phishing strategies** better. Here are this week’s most significant phishing updates for your perusal. ### \*\*\*\* Cyberattack Hits Japanese Animation Studio, Toei _The Japanese Anime giant Toei recently underwent a cyberattack_ that delayed the airing of new episodes of its popular anime series (including Delicious Party Precure and ONE PIECE). The hack brought in major [disappointment for ONE PIECE viewers](https://www.bleepingcomputer.com/news/security/new-one-piece-anime-episodes-delayed-after-toei-cyberattack/) who were eagerly waiting for the release of the series’ chapter 1000\. Toei first detected **suspicious activities** in its systems on 6th March 2022 and immediately issued an internal notice demanding the shut down of all internal systems to ensure [protection from phishing](/) attacks. Toei also launched an investigation into the breach to determine whether the adversaries stole data from its systems. Further, _Toei hired a third-party cybersecurity firm to confirm if any data was stolen in the incident_. In addition, it also informed law enforcement about the attack. After launching its investigation, Toei published a notification pose informing its fanbase of the delay in the airing of new episodes of “ONE PIECE,” “Dragon Quest Dai no Daibouken,” “Digimon Ghost Game,” and “Delicious Party Precure” until further notice. This delay in the production of new episodes for ONE PIECE also affects its global broadcasters, including Netflix, Crunchyroll, and Funimation. ### \*\*\*\* Cyberattack Hits UK Ferry Operator Wightlink _A highly sophisticated cyberattack recently hit the UK ferry operator Wightlink_, which may have compromised its customers’ and employees’ data. The incident only [affected Wightlink’s back-office](https://portswigger.net/daily-swig/uk-ferry-operator-wightlink-flags-potential-data-breach-after-highly-sophisticated-cyber-attack) IT systems but not its booking system, ferry services, or website. As part of its [phishing prevention measures](/content/phishing-prevention/phishing-attack-prevention/), the ferry operator has informed the UK’s Information Commissioner’s Office (ICO), law enforcement, and the potentially affected victims. Wightlink carries **4.6 million passengers** annually and operates three routes running between Hampshire and the Isle of Wight, with over 100 daily sailings. Soon after detecting the attack, _Wightlink hired third-party cybersecurity experts to look into the breach_. The operator has also approached the South East Regional Organized Crime Unit for clarity and assistance. While Wightlink does not store payment card details, some of its customers and staff may have lost their personal details in this incident. ### \*\*\*\* Source Code Data Breach At Mercado Libre _Mercado Libre, the Argentinian e-commerce giant recently confirmed unauthorized access_ of a part of its source code which impacted data belonging to **over 300k** of its users. Mercado Libre’s announcement follows that of the Lapsus$ group, which threatened to leak its data (along with a few other companies like Impresa and Vodafone). The company has deployed its **anti-phishing measures** and thoroughly analyzed the breach. So far, the investigations do not suggest [attack access of Mercado’s](https://www.bleepingcomputer.com/news/security/e-commerce-giant-mercado-libre-confirms-source-code-data-breach/) IT infrastructure or sensitive information. It confirmed in its initial statement that users’ account balances, passwords, financial information, investments, or credit card information were not compromised in the breach. With **over 140 million** active users in 18 countries, MercadoLibre is Latin America’s largest e-commerce and payments ecosystem. _Lapsus$ confesses to having access to 24,000 source code repositories belonging to MercadoLibre and Mercado Pago_. It has launched a poll on its Telegram channel asking users’ opinions on which company’s data to leak next, and this poll reportedly closed on 13th March 2022. ![What is spear phishing](https://media.mailhop.org/phishprotection/images/2022/03/what-is-spear-phishing-5441.jpg) ### \*\*\*\* Cyberattack Hits Samsung _Samsung recently confirmed that a cyberattack targeted its source code_. Like the MercadoLibre attack, Lapsus$ is believed to be responsible for this [source code breach at Samsung](https://www.zdnet.com/article/samsung-confirms-galaxy-source-code-breach-but-says-no-customer-information-was-stolen/). Fortunately, the incident did not affect Samsung’s business or customers’ personal data. However, Lapsus$ claimed to have **stolen 190GB** of sensitive data, and it also _attached snapshots of the stolen data to support its claim_. In its notification confirming the breach, Samsung mentioned that it had implemented its [phishing protection](/) measures soon after detecting the breach. Its initial analysis reflected that data related to the source code of Galaxy devices were compromised in the breach. Therefore, _no employee or customer data could have been compromised_. When asked for comments on whether any [ransomware demands](/resources/top-all-time-ransomware-demands-by-hackers/) have been made so far, Samsung remained silent. ### \*\*\*\* Data Breach Hits Japanese Beauty Products Retailer Acro _The Japanese beauty products retailer Acro recently underwent a data breach_ that exposed the details of **over 100,000 payment cards**. Four of [Acro’s beauty product websites](https://portswigger.net/daily-swig/japanese-beauty-retailer-acro-blames-third-party-hack-for-breach-of-100k-payment-cards) were affected because of a vulnerability in its third-party payment processing vendor. Consequently, _details belonging to 103,935 cards used on its Amplitude site and 89,295 payment cards_ (used on its Three Cosmetics domain) were compromised. Victims would include anyone who purchased Acro products on either of these websites between 21st May 2020 and 18th August 2021. The exposed credentials include cardholder names, security codes, payment card numbers, and dates of expiry. In some cases, usernames and passwords may also have been affected. Soon after detecting the suspicious activity, Acro appointed a third-party cybersecurity firm to investigate the breach. It also reported the incident to Japan’s Personal Information Protection Commission and law enforcement. As part of its [phishing attack prevention measures](/content/phishing-prevention/phishing-attack-prevention/), Acro is notifying affected customers of the breach via email and urged victims to **closely monitor** their financial statements for any suspicious activities. ### \*\*\*\* Cyberattack Hits PressReader _The digital platform for print newspapers and magazines, PressReader recently underwent a cybersecurity incident_ that caused outages across its branches and [disrupted readers’ access](https://www.zdnet.com/article/pressreader-service-partially-returns-after-cyberattack-causes-outage/) to **over 7,000** global publications, libraries, and museums. PressReader took to Facebook and Twitter to confirm the restoration of services for its content processing system and announced that all publications sent since 6th March have now been published. However, certain publications are still delayed, and PressReader is in the process of having these published at the earliest. It announced that issues missed during the downtime (3rd March to 5th March) would be published in the coming days. Reportedly, PressReader’s security teams (particularly those in Vancouver and the Philippines) are _working rigorously to tackle the incident and ensure the distribution of quality journalism_. ![Phishing prevention](https://media.mailhop.org/phishprotection/images/2022/03/phishing-prevention-5441.jpg) While the company has refrained from answering whether it was a [ransomware attack](/resources/ransomware-attack-why-organizations-pay-ransom/) that targeted its systems, it claimed that the attack looks like a part of some larger attack trend. So far, there is no evidence to prove the compromise of customer data, but PressReader is taking necessary measures to **prevent phishing attacks** and urges customers to be patient in these tough times. ### \*\*\*\* Ransomware Hits Romania’s Rompetrol Gas Station Network _A ransomware attack recently targeted Romania’s Rompetrol gas station network_, a subsidiary of KMG International. Announcing the complex cyberattack recently, Rompetrol said that it had to shut down its websites and the [Fill&Go service at gas stations](https://www.bleepingcomputer.com/news/security/rompetrol-gas-station-network-hit-by-hive-ransomware/) to ensure **protection against phishing**. Believably, the Hive Ransomware Gang is responsible for this attack on Rompetrol, and it is now asking for **2 million in ransom**. Being the operator of Petromidia (Romania’s largest oil refinery), which processes more than five million tons annually, Rompetrol becomes a primary target of the adversaries. In addition, _KMG International is known to operate in fifteen countries across Europe, North Africa, and Central Asia_. The attack caused KMG and Rompetrol’s websites to be unreachable along with the Fill&Go application. However, the company’s email system (Microsoft Outlook) remained operational during the downtime. As part of its [anti-phishing measures](/blog/ransomware-hits-reason-why-businesses-need-to-adopt-robust-anti-phishing-measures/), KMG has informed the Romanian National Directorate of Cyber Security (DNSC). Fortunately, services at Rompetrol gas stations have not been disrupted by the security incident. An anonymous source also mentioned that the _adversaries could break into the Petromidia refinery’s internal network_, but services at the refinery remain unaffected. ### Protect Your Organization - [Learn how phishing attacks work and how to spot them](/learn-what-is-phishing/) - [See how Phish Protection blocks threats in real time](/anti-phishing-tools/) ## Topics [ Announcements ](/tags/announcements/) ![Brad Slavin](https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg) [ Brad Slavin ](/authors/brad-slavin/) General Manager Founder and General Manager of DuoCircle. Product strategy and commercial lead across DuoCircle's 2,000+ customer base. [LinkedIn Profile →](https://www.linkedin.com/in/bradslavin) ## Protect your inbox from phishing attacks Real-time email security with 60-day free trial. No credit card required. [Start Free Trial](https://portal.duocircle.com/cart.php?a=add&pid=101&brand=phishprotection) [View Pricing](/pricing/) ## Related Articles [ Intermediate 5m Cybersecurity Updates For The Week 33 of 2022 Aug 22, 2022 ](/blog/cyber-security-news-update-week-33-2022/)[ Intermediate 6m Cybersecurity Updates For The Week 41 of 2022 Oct 21, 2022 ](/blog/cybersecurity-news-21-oct-2022/)[ Intermediate 5m Cybersecurity Updates For The Week 1 of 2021 Jan 1, 2021 ](/blog/cybersecurity-updates-for-the-week-1-of-2021/)[ Intermediate 6m Cybersecurity Updates For The Week 1 of 2022 Jan 7, 2022 ](/blog/cybersecurity-updates-for-the-week-1-of-2022/) ```json {"@context":"https://schema.org","@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]} ``` ```json {"@context":"https://schema.org","@type":"WebSite","name":"Phish Protection","url":"https://phishprotection.com","description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]}}} ``` ```json {"@context":"https://schema.org","@type":"BlogPosting","headline":"Cybersecurity Updates For The Week 11 of 2022","description":"Cybersecurity Updates For The Week 11 of 2022: It is essential to be abreast of the latest phishing news headlines to plan anti-phishing strategies better.","url":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-11-of-2022/","datePublished":"2022-03-19T17:34:16.000Z","dateModified":"2026-04-17T15:43:10.000Z","dateCreated":"2022-03-19T17:34:16.000Z","author":{"@type":"Person","@id":"https://phishprotection.com/authors/brad-slavin/#person","name":"Brad Slavin","url":"https://phishprotection.com/authors/brad-slavin/","jobTitle":"General Manager","description":"Brad Slavin is the founder and General Manager of DuoCircle, the company behind DMARC Report, AutoSPF, Phish Protection, and Mailhop. He founded DuoCircle in 2014 and has led the company's growth to 2,000+ customers across its email security product family. Brad's focus is product strategy, customer relationships, and the commercial and compliance side of email authentication (DPAs, SLAs, enterprise procurement).","image":"https://media.mailhop.org/phishprotection/images/authors/brad-slavin.jpg","knowsAbout":["Email Security Strategy","SaaS Product Management","Enterprise Compliance","Customer Success","Email Deliverability Business"],"worksFor":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com"},"sameAs":["https://www.linkedin.com/in/bradslavin"]},"publisher":{"@type":"Organization","name":"Phish Protection","url":"https://phishprotection.com","logo":{"@type":"ImageObject","url":"https://phishprotection.com/images/phishprotection-logo.png"},"description":"Advanced phishing protection and email security for businesses. Real-time threat defense, time-of-click protection, and seamless Office 365 integration.","parentOrganization":{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138883901","name":"DuoCircle LLC","url":"https://www.duocircle.com","sameAs":["https://www.wikidata.org/wiki/Q138883901","https://www.crunchbase.com/organization/duocircle-llc","https://www.linkedin.com/company/duocircle","https://github.com/duocircle"],"subOrganization":[{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138898167","name":"DMARC Report","url":"https://dmarcreport.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897474","name":"AutoSPF","url":"https://autospf.com"},{"@type":"Organization","@id":"https://www.wikidata.org/wiki/Q138897912","name":"Phish Protection","url":"https://www.phishprotection.com"}]},"sameAs":["https://www.linkedin.com/company/duocircle","https://x.com/duocirclellc","https://www.facebook.com/duocirclellc","https://github.com/duocircle"],"contactPoint":{"@type":"ContactPoint","contactType":"customer support","url":"https://phishprotection.com/contact/"},"knowsAbout":["Phishing Protection","Email Security","Anti-Phishing","Business Email Compromise","Ransomware Protection","Time of Click Protection","Office 365 Email Security","Advanced Threat Defense"]},"mainEntityOfPage":{"@type":"WebPage","@id":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-11-of-2022/"},"articleSection":"intermediate","keywords":"Announcements","wordCount":1265,"image":{"@type":"ImageObject","url":"https://media.mailhop.org/phishprotection/images/2022/03/what-is-spear-phishing-5441.jpg","caption":"Phish Protection blog post image","width":1200,"height":630},"speakable":{"@type":"SpeakableSpecification","cssSelector":[".answer-block","h1"]}} ``` ```json {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://phishprotection.com/"},{"@type":"ListItem","position":2,"name":"Blog","item":"https://phishprotection.com/blog/"},{"@type":"ListItem","position":3,"name":"Intermediate","item":"https://phishprotection.com/intermediate/"},{"@type":"ListItem","position":4,"name":"Cybersecurity Updates For The Week 11 of 2022","item":"https://phishprotection.com/blog/cybersecurity-updates-for-the-week-11-of-2022/"}]} ```