Widespread cybersecurity incidents

A cluster of new cyber incidents is hitting consumers across three regions, with phishing in Japan and data breaches tied to gyms, telecoms and pharmacies. (antiphishing.jp) (nltimes.nl) (analyzer.vecert.io) In Japan, the Council of Anti-Phishing Japan said on April 2 that scammers were sending emails about unpaid phone or credit-card bills and steering victims into PayPay app payments. The group said the phishing site was still active at 1 p.m. that day and that Japan Computer Emergency Response Team Coordination Center had been asked to investigate a takedown. (antiphishing.jp) The warning listed subject lines including “4月の請求予定金額のお知らせ” and messages claiming a payment failure or service suspension. It said victims were being pushed through intermediary domains before landing on a PayPay payment link under `qr.paypay.ne.jp`. (antiphishing.jp) In Europe, Basic-Fit said hackers accessed member data in a system that records club visits, affecting about 200,000 people in the Netherlands and about 1 million members across six countries. Dutch media said the stolen data included names, addresses, email addresses, dates of birth and bank account details, and that affected members were notified on April 13. (nos.nl) (dutchnews.nl) (theregister.com) Basic-Fit told Dutch outlets it had informed the Dutch Data Protection Authority and said it had no indication the leaked data had been misused. Reports in the Netherlands said the intrusion was detected by system monitoring and stopped within minutes, though the company did not disclose the exact date of the attack. (wnl.tv) (nos.nl) The pattern across these cases is simple: criminals are targeting ordinary services people use every week, then using either urgency or scale. A fake bill can trigger a payment in minutes, while a breached membership database can expose enough personal data for follow-on fraud. (antiphishing.jp) (cybernews.com) VECERT’s public threat-monitoring map showed new leak activity on April 15, but the available public page did not independently confirm the specific claims circulating on social media about MRW Venezuela, Telmex or Farmacias del Ahorro. The monitor did show fresh leak publications and country targeting, indicating the incidents were being tracked in near real time. (analyzer.vecert.io 1) (analyzer.vecert.io 2) The immediate advice from Japan’s anti-phishing group was concrete: do not open payment links from email, verify the sender, and check payment details inside the official app or service instead. For Basic-Fit members, the practical next step is to watch bank accounts, inboxes and any new phishing attempts that use real personal details taken from the breach. (antiphishing.jp) (nltimes.nl)