Netcrook
12 June 2026
Claimed DragonForce Strike Puts a Hong Kong Engineering Firm in the Crosshairs
A ransomware-tracking post names a building-services contractor and its public website, but the technical evidence still points to an unverified claim rather than confirmed compromise.
DragonForce Claims A. Liberty Engineering Co. Ltd as a New Victim
A leak-site post names an electrical and EV-infrastructure firm, but the available record supports a victim claim - not a confirmed breach, data theft, or outage.
DragonForce Lists Cheoy Lee Shipyards, but the Technical Picture Is Still Thin
A new leak-site victim entry is enough to trigger defensive attention, yet the public record here stops short of proving data theft, encryption, or operational disruption.
DragonForce Claim Lands on a Shipyard Name, but the Evidence Stops at the Post
A ransomware-monitoring entry names Cheoy-Lee-Shipyards, yet the public record still does not confirm an intrusion, data theft, or operational disruption.
Sheets, Shortcuts, and a Diplomatic Bait: Why This RAT Chain Matters
A themed ISO, a disguised Windows shortcut, and a Google Sheets command channel show how ordinary tools can be stitched into an espionage workflow.
South Korea’s Coupang Case Shows How One Breach Can Become Two Enforcement Problems
A record privacy sanction tied to Coupang’s data incident points to more than stolen account data: regulators also focused on key management, access control, and ad-tech privacy governance.
Samsung’s Multi-Model Gamble Turns AI Governance Into the Real Security Story
The company is bringing ChatGPT, Gemini, and Claude into DX workflows, but the harder problem is not model choice - it is controlling data, permissions, and employee behavior.
The Missing Drive Problem: How a Physical Slip Can Turn Into a Privacy Crisis
Kyushu Electric Power’s disclosure shows that data risk does not always begin with hackers - sometimes it begins with a lost device and a very large customer set.
Leak-Site Claim Puts a Thai Domain in the Crosshairs, but Proof Is Thin
A ransomware-branded allegation against Did-Asia underscores how extortion crews can weaponize names, hashes, and public-facing domains long before anyone confirms a real intrusion.
A Victim Listing Is Not a Breach - But It Can Still Move Markets, Teams, and Enemies
A public ransomware victim entry tied to Did Asia shows how extortion groups use visibility itself as pressure, even before any compromise is independently confirmed.
Leak-Site Claim Puts a Global Jewelry Maker Under a Ransomware Microscope
A public extortion claim naming Jewelex is unverified, but it shows how ransomware crews use pressure, branding, and ambiguity before any breach is confirmed.
Leak-Site Listing Puts Jewelex in the Extortion Spotlight, but the Cyber Trail Is Still Unconfirmed
A ransomware victim page tied to Direwolf names Jewelex and tags it as manufacturing, a reminder that leak-site posts can signal real risk long before any breach is publicly proven.