Editor's Message

Welcome to DBD. 2024 was a tough year for me personally, and I'd like to thank every one of you who has supported me - you have been my light in times of darkness. 2024 saw the highest number of ransomware attacks on record, and there's no sign of these attacks slowing down as we head into the new year. Ransomware is a BIG problem that is NOT going away anytime soon, and this year could be just as catastrophic, if not worse, as cyber criminals continue to extort their victims with very little chance of being brought to justice. Wishing you all the very best for 2025. Stay safe. :)


“Data Breaches Digest and its PRiSM portal provide Dentons Global Security Team with valuable insights into the ransomware landscape, from the latest incidents to trends over time, as well as the ability to customize visual analytics. Timely reports and tracking by Data Breaches Digest help inform cyber intelligence for the world’s largest law firm and thus our cybersecurity posture across more than 80 countries worldwide.”
Dentons Senior Analyst, Washington DC



Monday, 10 February 2025

Data Breaches Digest - Week 7 2025

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 10th February and 16th February 2025.


13th February

4 Ways to Safeguard Your Privacy During Remote Work

Acronis Cyberthreats Report Reveals Rise in Ransomware, AI-Driven Attacks, and Malware Risks in 2024

Acronis H2 2024 Cyberthreats Report Unveils Rise in Ransomware, AI-Driven Attacks, and Malware Risks

APT Groups Using Ransomware 'Smokescreen' for Espionage

Astaroth Phishing Kit Bypasses 2FA to Hijack Gmail and Microsoft Accounts

Astaroth Phishing Kit Bypasses 2FA Using Reverse Proxy Techniques

AUKUS members sanction Medibank hacker and LockBit infrastructure provider

Australian police join global crackdown on cybercriminal infrastructure provider

Barcelona-based spyware startup Variston shuts down, per filing

Bengal police arrests 46 people linked to Jamtara gangs involved in phishing, online fraud

Brightline to pay $7M to resolve Fortra hack lawsuit

Bulletproof No More? Russian Zservers Sanctioned For Alleged LockBit Crypto Crimes

Canada Border Services Agency (CBSA) data breach exposes information of 18,000 employees

Chicago schools join IT giant in Cl0p's attack spree

China-linked APTs’ tool employed in RA World Ransomware attack

China’s Salt Typhoon hackers continue to breach telecom firms despite US sanctions

China’s Salt Typhoon hackers targeting Cisco devices used by telcos, universities

Chinese APT 'Emperor Dragonfly' Moonlights With Ransomware

Chinese Cyberspy Possibly Launching Ransomware Attacks as Side Job

Chinese espionage tools deployed in RA World ransomware attack

Chinese Espionage Tools Used in Ransomware Attacks

Circuit Board Maker Unimicron Targeted in Ransomware Attack

CISA and FBI Warn Against Buffer Overflow Vulnerabilities

Cyber attack causes error in Israeli credit transaction system

Cyber attack on Australian education centre claimed by KillSec

Cybercriminals Targeting U.S. Food and Agriculture Sector Now More Than Ever

Dark Web Profile: Fog Ransomware

Data Breach Hits Food Delivery Giant GrubHub, Putting Victims at Risk of Phishing Attacks

Department of Government Efficiency (DOGE) hasn’t accessed legally protected tax data, administration says in privacy suit response

Doxbin Data Breach: Hackers Leak 136K User Records and Blacklist File

Dutch police say they took down 127 servers used by sanctioned hosting service

Dutch Police seizes 127 XHost servers, dismantles bulletproof hoster

Electronic Frontier Foundation (EFF) Leads Fight Against Department of Government Efficiency (DOGE) and Musk's Access to US Federal Workers' Data

Email cyberattacks rose by 197% during second half of 2024

Email-based Cyberattacks Surge 197%; MSPs Face Increased Phishing, Ransomware Threats

Ethiopia again worst hit by cyber crime

FedEx Cautions Against New Wave of Scams, Urges Public Vigilance

FINALDRAFT Malware Exploits Microsoft Graph API for Espionage on Windows and Linux

FortiOS Vulnerability Allows Super-Admin Privilege Escalation – Patch Now!

Hacker leaks account data of 12 million Zacks Investment users

Hacker Offered 10% Bounty After Stealing Over $9,000,000 in Ethereum (ETH) From Lending Platform

Hackers Exploited Palo Alto’s Firewall Vulnerability to Deploy RA World Ransomware

Hackers Use CAPTCHA Trick on Webflow CDN PDFs to Bypass Security Scanners

Hewlett Packard Enterprise (HPE) notifies staff of data breach related to Russian hack

Hipshipper data leak exposes millions of shipping labels, raising privacy concerns

How Much Time Does it Take for Hackers to Crack My Password?

Immigration-themed Phishing Attack Uncovered

Industrial Sector Sees Increase in Ransomware Attacks

International travelers targeted in immigration-themed phishing campaign

Judge Approves $7 Million Brightline Data Breach Settlement

Kaspersky Issues Warning on Valentine’s Day Scams and Phishing Traps

Kimsuky Phishing Scheme Impersonates South Korean Officials, Leverages Microsoft PowerShell

Leveraging AI to detect and prevent ransomware attacks

Lines Between Nation-State and Cybercrime Groups Disappearing

Love in the digital age: Avoiding Valentine’s Day scams, phishing, data privacy threats

Massive IoT Data Breach Exposes 2.7 Billion Records, Including Wi-Fi Passwords

Massive online data breach sees 2.7 billion records leaked - here's what we know

Michigan’s Sault Tribe Impacted by Ransomware

More DeFi projects run into security issues, negotiations with a hacker begin

More sanctions imposed against Russians over Medibank Private cyber attack

New Phishing Attacks Abuses Webflow CDN & CAPTCHAs To Steal Credit Card Details

New Phishing Campaign Targets The X Accounts of Politicians, Tech Companies, Cryptocurrency, And More

North Korea Targets Crypto Devs Through NPM Packages

North Korean APT43 Uses PowerShell and Dropbox in Targeted South Korea Cyberattacks

North Korean hackers spotted using ClickFix tactic to deliver malware

Northern Ireland: Enniskillen man in court on PSNI data breach charge

Northern Ireland: Men accused of New IRA activity relating to PSNI data breach

Northern Ireland: Pair charged over alleged New IRA activity after PSNI data breach

Northern Ireland: Pair in court over alleged New IRA activity relating to PSNI data breach spreadsheets

Northern Ireland: Two men appear in court accused of possessing information from PSNI data breach

OmniGPT allegedly suffers massive data breach, exposing 30,000 users

Over 3 million Fortune 500 employee accounts compromised since 2022

Palo Alto Firewall Flaw Exploited in RA World Ransomware Attacks

Palo Alto Networks Patches Authentication Bypass Exploit in PAN-OS Software

PAN-OS authentication bypass hole plugged, PoC is public (CVE-2025-0108)

Papua New Guinea’s Internal Revenue Commission hit in major cyber attack but public only told of ‘system outage’

Phishing campaign exploits search engines to steal credit card info

Phishing emails are evolving - AI may be the answer to stopping them

Phobos ransomware, four hackers arrested accused of stealing $16 million

Powerschool discloses major data breach

“Puppygirl Hacker Polycule” Leaks Over 8,500 Privatized Police Files and Training Manuals

RA World Ransomware Attack in South Asia Links to Chinese Espionage Toolset

Ransomware Attacks Costing Manufacturers $1.9M/Day in Downtime

Ransomware up fourfold as threats get more complex

Ransomware, AI risks, and malware: Acronis report highlights growing cyberthreats in H2 2024

Researchers get $10K for disclosure of YouTube flaw that exposed billions of user emails

Romance Baiting Losses Surge 40% Annually

Russia deploying cybercriminals to support war in Ukraine

Russian Seashell Blizzard Enlists Specialist Initial Access Subgroup to Expand Ops

Sandworm APT’s initial access subgroup hits organizations accross the globe

Sarcoma ransomware gang claims the theft of sensitive data from PCB maker Unimicron

Seashell Blizzard hacker group escalating attacks on critical infrastructure, Microsoft warns

Sextortion kits fuel the great crypto heist

Spyware maker caught distributing malicious Android apps for years

Study Finds Nearly Half of Organizations Suffered a Third-Party Data Breach

Texas man sues Packers over pro shop data breach

Texas man suing Green Bay Packers over Pro Shop website data breach

The UK’s secret iCloud backdoor request: A dangerous step toward Orwellian mass surveillance

Threat Actors Exploiting DeepSeek’s Popularity To Deploy Malware

Unguarded database spills 440M personal records

Unimicron Purportedly Subjected to Sarcoma Ransomware Attack

Unusual attack linked to Chinese APT group combines espionage and ransomware

US frees jailed Russian cybercriminal as Trump builds bridges with Moscow

US, Australia, and UK to sanction key infrastructure that enables ransomware attacks

US, UK, Australia impose sanctions on Russian host Zservers

Valve removes Steam game that contained malware

zkLend’s $9M Ethereum Heist: Can a Bounty Save the Stolen Funds?

12th February

1 in 3 Indians faced cyber-attacks in 2024, AI aided hackers

4 Phobos Ransomware-Linked Russians Arrested in Europol and Eurojust Crackdown

8Base ransomware group leaders arrested in European law enforcement operation

8Base ransomware members snared in global police crackdown

10 common dangers VPNs won't protect you from online - and how to avoid them

20 Million ChatGPT Accounts Allegedly Stolen and Sold on Hacker Marketplace

A Hacker Group Within Russia’s Notorious Sandworm Unit Is Breaching Western Networks

Acronis Cyberthreats H2 2024 Report: Ransomware and AI are a dangerous combination

Acronis Cyberthreats Report Shows MSPs are Targets

Alberta privacy commissioner responds to PowerSchool data breach affecting students and educators

Alleged Kraken Ransomware Hack Denied by Cisco

Apple Confirms ‘Extremely Sophisticated’ Exploit Threatening iOS Security

Apple Patches Security Flaw That Allowed Access to Locked Devices

Arizona Woman Admits to Running Laptop Farm for North Korean IT Workers, Faces Up to 9 Years in Prison

At least 189 Carousell, Facebook users lost over $303,000 to phishing scams since January

AUKUS members sanction Medibank hacker and LockBit infrastructure provider

AultCare Announces Data Breach Affecting Employer-Sponsored Health Plan Participants

Australia suffered a cyber attack every second in 2024, 47 million data breaches

BadPilot network hacking campaign fuels Russian SandWorm attacks

Btmob RAT: A New Evolution of Android Malware Targets Users via Phishing Sites

Check Point Uncovers Valentine’s Day Cyber Scams

CHERI Security Hardware Program Essential to UK Security, Says Government

China tops global data breach rankings in 2024, experts warn

CISA, experts urging users to patch new Windows zero-days: “test and deploy quickly”

Cisco Continues to Deny Kraken Ransomware Attack

Cisco Says Ransomware Group’s Leak Related to Old Hack

Cl0p Ransomware Hides Itself on Compromised Networks After Exfiltrating the Data

Crypto boom brings malware surge: how USBs are used to hijack devices

Cyberattack shuts down Upper Peninsula's Kewadin Casinos, tribal operations

Cybercrime evolving into national security threat

Cybercrime surges as global threat to national security

Cybercriminals Exploit Valentine’s Day with Romance Scams, Phishing Attacks

DeepSeek may face further regulatory actions

DeFi Platform zkLend Hit by Hacker – $900K Whitehat Bounty on the Table

Deloitte Pays Rhode Island $5 Million to Aid Recovery From Ransomware Attack

Don't ignore Microsoft's February Patch Tuesday - it's a big one for all Windows 11 users

Europol arrests four Russians in ransomware crackdown

Facebook Users Beware: Thousands Hit by New Phishing Scam

Fewer than one in three Chrome users have ‘Enhanced Security’ enabled

Fog ransomware group claims January hack of the University of Notre Dame Australia

Food and Ag-ISAC cyber threat report provides actionable intelligence on cyber threats, ransomware tactics

Fortra's 2025 cybersecurity survey: key risk findings

Four Russian nationals behind 8Base ransomware arrested, says Europol

Global Operation Shuts Down 8Base Ransomware Network

Google Chrome’s enhanced protection now provides safe browsing against phishing

Google fixes flaw that could unmask YouTube users' email addresses

Hacker allegedly puts massive OmniGPT breach data for sale on the dark web

Hacker claims access to 20 million-plus ChatGPT access codes: What ChatGPT users should do right away

Hacker claims to be selling credentials of 20 million OpenAI accounts

Hacker Pleads Guilty in Crypto-Related SEC X Account Breach

Hackers behind US ransomware attacks arrested in Thailand

Hackers clash over Doxbin lost account access

Healthcare Sector Sees Spike in Cyberattacks

Heartbreak hackers: Valentine’s day scams on the rise

Heartland Bank Sends Data Breach Letters Following Recent Email Data Security Incident

Holding the Tide Against the Next Wave of Phishing Scams

House Republicans launch group for comprehensive data privacy legislation

How crypto scammers are exploiting celebrities to drain your wallet

How Threat Actors Industrialised Cybercrime in 2024

How to outsmart ransomware and build resilience within your organisation

Huge Christmas data breach - 14 million shipping records leaked, putting shoppers at risk

Is Automation Fuelling a New Era of Cyber-crime?

It’s time to secure the extended digital supply chain

Ivanti fixes three critical flaws in Connect Secure & Policy Secure

Ivanti Patches Critical Flaws in Connect Secure and Policy Secure – Update Now

Justice Department Indicts Two Russians for Running Ransomware Cybercrime Operation

KeyBank Sends Data Breach Letters Following Incident at Wong Fleming, P.C.

“Largest data breach in US history”: Three more lawsuits try to stop DOGE

Major Players in Phobos and 8Base Ransomware Operations Captured in Global Cybercrime Sweep

Massive 1.17TB Data Leak Exposes Billions of IoT Grow Light Records

Massive IoT Data Breach Exposes 2.7 Billion Records

Medibank link emerges in multi-country action against ZServers

Medical Data Leak: 279K Files Exposed in Ransomware Attack

Michigan casino chain forced to shut down after ransomware attack

Microsoft Fixes Another Two Actively Exploited Zero-Days

Microsoft Patch Tuesday for February Includes Two Zero Days Under Attack

Microsoft Uncovers Sandworm Subgroup's Global Cyber Attacks Spanning 15+ Countries

Microsoft's Patch Tuesday Fixes 63 Flaws, Including Two Under Active Exploitation

Natures Organics confirms Medusa ransomware attack

New Era Life Insurance Provides Notice of Data Breach to Policyholders, Beneficiaries, Agents, and Employees

New phishing campaign exploits immigration arrival card process to steal personal data

New UK sanctions target Russian cybercrime network

North Korean hackers dupe targets into typing PowerShell commands as admin

North Korean Hackers Exploit PowerShell Trick to Hijack Devices in New Cyberattack

North Korean hackers Kimsuky exploiting the oldest critical vulnerability – the user

OmniGPT data breach exposes 34 million chat messages across six countries

Online Threats Are Rising - Here’s Why Companies Must Improve Their Cybersecurity

Papua New Guinea's Internal Revenue Commission hit in major cyber attack but public only told of 'system outage'

Patch Tuesday: Microsoft Fixes 63 Bugs with 2 Zero-Days

Patch Tuesday: Microsoft Patches Two Actively Exploited Zero-Day Flaws

Ransomware attack disrupting Michigan's Sault Tribe operations

Ransomware attack on Memorial Hospital and Manor impacted over 120,000 patients

Ransomware gangs shifting tactics to evade enterprise defenses

Ransomware isn't always about the money: Government spies have objectives, too

Ransomware Payments Fall 35%

Researchers Find New Exploit Bypassing Patched NVIDIA Container Toolkit Vulnerability

Rhode Island House bill would expand notification obligations after data breach

Rise in phishing attempts targeting Texas, US toll customers

Romance Scams Cost Americans $697.3M Last Year

Russia’s Zservers sanctioned by US, UK, and Australia for serving crypto ransomware LockBit

Russian cybercrime group behind $16M Phobos ransomware attacks busted

Sanctions Target Russian Host for Role in Ransomware Attacks

Sarcoma ransomware claims breach at giant Printed Circuit Board maker Unimicron

Sault Sainte Marie Tribe hit by ransomware attack

Scope of student, school staff data breach under investigation. Some Idaho schools compromised

Security Detection Tech Failing, Say Cyber Leaders in Regulated Industries

Silent breaches are happening right now, most companies have no clue

Spectrum Medical Imaging warns patients medical data exposed following ransomware attack

Starknet-based zkLend seeks return of over $8 million in ETH stolen from platform

Subgroup of Russia’s Sandworm compromising US and European organizations, Microsoft says

Surge in attacks exploiting old ThinkPHP and ownCloud flaws

Tarrant, Alabama, Wards Off Ransomware Attack on City Computers

Thai Police Arrest Russian Hackers Behind Swiss Ransomware Attacks

Thailand arrests Russian hackers wanted in US

U.S., Australia, and UK Join Forces to Target Russian Bulletproof Hosting Provider Supporting LockBit Ransomware

UAC-0006’s new phishing campaign targets Ukraine’s PrivatBank

Ukraine's latest cyber attack disrupts Russian oil and gas infrastructure

Understanding the Growing Threat of Deepfake Phishing Attacks

United States, Australia, and United Kingdom Crack Down on Key Cybercrime Infrastructure Supporting Ransomware Attacks

University of the Bahamas struck by a major ransomware attack

Unmasking the Crypto Ghost: Will the ZkLend Hacker Return Millions or Face the Law?

Uruguayan government investigates dimensions of cyber-attack

US reportedly releases Russian cybercrime figure Alexander Vinnik in prisoner swap

US, Australia, UK Sanction Key Infrastructure Enabling Ransomware Attacks

US, UK, and Australia sanction Russia-based Zservers for enabling LockBit ransomware

US, UK and Australia Sanction Russian Bulletproof Hoster Zservers

US, UK, Australia sanction Russian cyber firm Zservers over ransomware attacks

US, UK Sanction Russian Zservers Over LockBit Ransomware

US, UK, and Australia sanction Zservers for supporting LockBit ransomware operations

Warning: fake Etsy invoices sent via legitimate domains

Washington County Schools: More than 30K files impacted by PowerSchool data breach

West London Council Faces 20,000 Cyberattack Attempts Every Day Amid Growing Threats

ZeroLogon Ransomware Exploits Active Directory Vulnerability To Gain Domain Controller Access

ZeroLogon Ransomware Exploits Windows AD to Hijack Domain Controller Access

zkLend Exploited for $4.9M in ETH, Team Appeals to Hacker with 10% Offer

ZkLend hack sees $9.5M exploit, offers hacker 10% bounty for return

zkLend loses $5 million in hacker attack

zkLend loses $9.5M in crypto heist, asks hacker to return 90%

11th February - Safer Internet Day

4 Ways to Keep Multi-Factor Authentication (MFA) From Becoming too Much of a Good Thing

8Base ransom gang members arrested, operations seized by international authorities

8Base ransomware group leaders arrested, leak site seized

8Base Ransomware Site Seized, Phobos Suspects Arrested in Thailand

8base ransomware site taken down in global police operation

88% of UK businesses say cyber fraud drove payment fraud

Accendo Insurance Company Affected by Business Associate Data Breach

Akira Ransomware Leads The Number of Ransomware Attacks For January 2025

Alabama Hacker Admits Role in SEC X Account Breach

Another person targeted by Paragon spyware comes forward

Apple fixes security flaw allowing third-party access to locked devices

Apple fixes zero-day flaw exploited in “extremely sophisticated” attack (CVE-2025-24200)

Apple Mitigates “Extremely Sophisticated” Zero-Day Exploit

Apple Patches Actively Exploited iOS Zero-Day CVE-2025-24200 in Emergency Update

Arizona woman pleads guilty to running laptop farm for N. Korean IT workers, faces 9-year sentence

Authorities arrest four suspected 8base ransomware operators in global takedown

Authorities Disrupt 8Base Ransomware, Arrest Four Russian Operators

Authorities Seize 8Base Ransomware Dark Web Site, Arrest Four Key Operators

Authorities Seize 8Base Ransomware Infrastructure, Arrest Four Russians

Authorities seize Phobos and 8Base ransomware servers, arrest 4 suspects

Avery Discovers Credit Card Scraper Following Ransomware Attack

Beware of Fake Salesforce Emails Deceiving Businesses and Users

California students take legal action against US Education Department over massive data breach

Canada’s privacy watchdog to investigate PowerSchool student information data breach

Canada's privacy czar launches investigation into student information data breach

Cisco dispels Kraken data breach claims, insists stolen data came from old attack

Cisco Rejects Kraken Ransomware’s Data Breach Claims

CloudSEK Uncovers ClickFix Phishing Campaign Targeting Users

CloudSEK Uncovers DeepSeek-based Phishing Campaign Targeting AI Users

Cyber attack on University Diagnostic Medical Imaging impacted over 135,000 patients

Cyberattacks targeting medical organizations up 32% in 2024

Cybercrime leaders arrested in international ransomware crackdown

Data Security Breach Forces Kewadin Casinos to Halt Operations in Upper Michigan

DDoS Attack Volume and Magnitude Continues to Soar

Delta Health 'data breach' what you need to know

FBI, Department of Justice (DOJ) make major arrests of Russians allegedly involved in massive ransomware group Phobos

FBI, Europol, and NCA Take Down 8Base Ransomware Data Leak and Negotiation Sites

Feds Unmask Russian Duo Behind Ransomware Epidemic Threatening U.S. Cybersecurity

Fortinet discloses second firewall auth bypass patched in January

Four Russians Arrested in Major Hacking Operation

Four Russians arrested in Phobos ransomware crackdown, Europol says

Gcore DDoS Radar Reveals 56% YoY Increase in DDoS Attacks

Gcore Radar report reveals 56% year-on-year increase in DDoS attacks

Global Phishing Campaign Targets Facebook Accounts

Grubhub discloses data breach

Hacker confesses to role in SIM swapping attack on SEC X account

Hacker found selling 20 million OpenAI credentials; AI firm claims no breach

Hacker of SEC’s X account sentenced after admitting guilt

Hacker pleads guilty for SEC X account breach that made fake Bitcoin ETF post

Hackers leak cop manuals for departments nationwide after breaching major provider

Hackers Newly Registering Valentine’s Day Themed Domains for Stealthy Cyber Attacks

Here’s how many ransomware attacks impacted agriculture in 2024

Hospital Sisters Health System (HSHS) notifies nearly 900K patients about a 2023 data breach

International Crackdown: Phobos Ransomware Network Dismantled

International Crackdown on Russia-Based Zservers Targets Ransomware Threats

International Crackdown on Russian Ransomware Provider

International law enforcement takes down 8Base ransomware gang

Justice Department charges 2 Russians with operating cybercrime group using ransomware

Kewadin Casino among Sault Tribe systems impacted by ransomware attack

Key figures behind Phobos and 8Base ransomware arrested in international cybercrime crackdown

Law Enforcement Operation Takes Down 8Base Ransomware Group

Lawsuit accuses Trump administration of violating federal information security law

LockBit crackdown continues with Zservers sanctions

LockBit’s woes continue as gangs’ helpers sanctioned

Malicious actors exploiting exposed ASP.NET keys to deploy malware

Massive Facebook Phishing Attack Targets Hundreds of Companies for Credential Theft

Michigan Upper Peninsula tribe hit with ransomware attack, gaming at 5 casinos shut down

Microsoft February 2025 Patch Tuesday fixes 4 zero-days, 55 flaws

Microsoft fixes two actively exploited zero-days (CVE-2025-21418, CVE-2025-21391)

Millions exposed as 14 Million shipping records accidentally leaked

New Chinese Hacking Campaign Targets Manufacturing Firms to Steal IP

New Ransomware Gangs Drive Surge in Attacks

New technology could quash QR code phishing attacks

New UK sanctions target Russian cybercrime network

New York Blood Center hit by ransomware, blood services disrupted

New Zealand: Government Communications Security Bureau (GCSB) report reveals sophisticated attacks, boosts cyber resilience amid rising espionage and ransomware

Number of active dark web ransomware groups up 38 percent in 2024

OmniGPT AI Chatbot Alleged Breach: Hacker Leaks User Data, 34 Million Messages

Online scams and phishing: Five questions that might save you from being caught

OpenAI Finds No Evidence of Breach After Hacker Offers to Sell 20 Million Credentials

OpenAI Was Not Breached, Say Researchers

Operation Phobos Aetor: Police dismantled 8Base ransomware gang

Over 120K impacted by Memorial Hospital & Manor ransomware attack

Phishing evolves beyond email to become latest Android app threat

PowerSchool breach exposed special education status, mental health data and parent restraining orders

Progress Software Patches High-Severity LoadMaster Flaws Affecting Multiple Versions

Ransomware attack disrupts gaming, offices, services for Sault Sainte Marie Tribe of Chippewa Indians

Ransomware attack halts Sault Sainte Marie Tribe departments and businesses temporarily

Ransomware gang 8Base members arrested, darknet site seized

Ransomware Gangs Increasingly Prioritize Speed and Volume in Attacks

Ransomware Operator 8Base Taken Apart Following International Effort

Ransomware suspects arrested in cybercrime crackdown

Ransomware’s risk to businesses may be growing more complex

Rocky View Schools: PowerSchool data breach exposed records from 2012

Russian bulletproof hosting service Zservers sanctioned by US for LockBit coordination

Russian cybercrime network targeted for sanctions across US, UK and Australia

Russian military hackers deploy malicious Windows activators in Ukraine

Russian ransomware hackers arrested in Phuket

Sanction Zservers for Facilitating Ransomware Attacks

Sanctions Imposed on Lockbit Ransomware's Russian Hosting Provider

Sault Sainte Marie Tribe of Chippewa Indians Battles Ransomware Attack Impacting Casinos and Health Services

Sault Tribe provides updates on health services following cyber attack

Searchlight Cyber Report Shows 38% Year-on-Year Increase in Active Dark Web Ransomware Groups

SonicWall firewall exploit lets hackers hijack VPN sessions, patch now

Students Sue U.S. Department of Education Over Alleged Data Breach Involving Elon Musk and DOGE

SystemBC RAT Now Targets Linux, Spreading Ransomware and Infostealers

Taipei’s Mackay Memorial Hospital faces ransomware attack

Takedown of 8Base Ransomware Crew in Thailand

TD Bank data breach: Suit seeks $5 Million after customer info was leaked

Thai Police Bust 4 Suspected 8Base Ransomware Group Members

The PowerSchool data breach is now under a Canadian privacy investigation

Third-Party Data Breach at ArdyssLife Affects an Unknown Number of Consumers

This Tata Company Was Hit By Ransomware; Recovery Has Been Completed

Threat Actors Exploit ClickFix to Deploy NetSupport RAT in Latest Cyber Attacks

Triplestrength hits victims with triple trouble: Ransomware, cloud hijacks, crypto-mining

Trump's first sanctions? US, UK and Australia impose restrictions on Russian cyber group

Two Russian nationals arrested in takedown of Phobos ransomware infrastructure

U.S. Justice Department Cracks Down on Phobos Ransomware Group

U.S. sanctions bulletproof hosting provider for supplying LockBit infrastructure

U.S., Australia and Britain sanction Zservers for supporting ransomware

U.S., U.K. and Australia Sanction Russian Cyber Firm Zservers Over Ransomware Attacks

UK announces sanctions against Russian cyber crime network

UK Cracks Down on Russian ZSERVERS Network Acting as Launchpad for Cyber Attacks

UK, US, Australia blast holes in LockBit's bulletproof hosting provider Zservers

Understanding cyber attacks: how to protect your optometry practice

University of the Bahamas struck by a major ransomware attack

US indicts 8Base ransomware operators for Phobos encryption attacks

US sanctions LockBit ransomware’s bulletproof hosting provider

US, UK, Australia sanction Russian ransomware actors

US, UK, Australia target Russia-based Zservers over Lockbit ransomware attacks

Weak encryption and privacy risks found in DeepSeek’s Android app

10th February

2.1TB of Data Allegedly from Israel Police Systems Published on the BreachForums

3 in 5 organizations expect cyber attack this year

4 Arrested as Police Dismantle 8Base Ransomware, Seize Dark Web Sites

8base ransomware site seized, 4 suspects arrested

8Base ransomware site taken down as Thai authorities arrest 4 connected to operation

29% of school systems report a rise in student-to-student security incidents

Accused Russian ransomware hackers arrested in Phuket

AI’s Role in Cutting Costs and Cybersecurity Threats in Logistics

Alleged hacker behind fake SEC post could forfeit $50K in plea deal

Apple and Google take down malicious mobile apps from their app stores

Apple fixes zero-day exploited in 'extremely sophisticated' attacks

As Gmail Attack Warnings Surge - Do Not Switch To New Email App

Attackers Change Tactics as Ransomware Payoffs Decline

Attackers Use 2.8 Million Devices in Major Brute Force Attack

Australians Hit With One Cyber Attack Every Second in 2024

BadIIS Malware Exploits IIS Servers for SEO Fraud

British military drops basic training to fast track recruitment of ‘cyber warriors’

Catholic Charities of Southern Nevada Reports Data Breach Affecting the Personal Info of 73,822 People

Central African Republic ‘CAR’ memecoin info pages plagued with phishing links

CERT-In Warns of High-Severity Vulnerabilities in Mozilla Firefox and Thunderbird

CISA Flags Critical Trimble Cityworks Vulnerability (CVE-2025-0994) in KEV Catalog

Cisco Data Breach – Ransomware Group Allegedly Breached Internal Network

Cisco Hacked – Ransomware Group Allegedly Breach Internal Network & Gained AD Access

City of Tarrant fends off ransomware attack on city computers, police say

City of Tarrant shut down due to ransomware attack

Cyberattack disrupts Lee newspapers' operations across the US

DeepSeek’s R1 reportedly ‘more vulnerable’ to jailbreaking than other AI models

Department of Government Efficiency (DOGE) inputs federal data to AI, cyber leaders discuss implications

DragonRank Exploits IIS Servers with BadIIS Malware for SEO Fraud and Gambling Redirects

Econet denies alleged customer data breach

Econet denies alleged data breach

Econet Wireless Addresses Data Breach Allegations, Launches Cybersecurity Investigation

Econet Wireless refutes claims of massive data breach amid customer concerns

Egyptian hacks Israeli TV channel. What's the truth?

Engineering giant IMI reveals a major cyber attack on its internal network

Europol Warns Financial Sector of “Imminent” Quantum Threat

Experts Dismayed at UK’s Apple Decryption Demands

Faulty phishing site blocking disrupts Cloudflare services

FBI cautions: Artificial intelligence-based phishing attacks have increased on Gmail accounts

Four cyber security myths that could sink your business in 2025

Gallagher settles lawsuit over major data breach

Georgia Hospital Alerts 120,000 Individuals of Data Breach

Global police operation seizes 8base ransomware gang leak site

Gmail AI Phishing Attacks Skyrocket: FBI Warns Users to Take Action Now Before It's Too Late

Gmail Users Warned About the “Most Sophisticated Gmail Attacks Ever” AI-Powered Phishing Attack

Gmail users warned as phishing attacks become more advanced: Do Not Click on Anything

Hacker pleads guilty to SIM swap attack on US SEC X account

Hacker targets Indonesian banks with ransomware threats

Hacker who hijacked SEC’s X account pleads guilty, faces maximum five-year sentence

Hackers Exploit Google Tag Manager to Deploy Credit Card Skimmers on Magento Stores

Hackers stole customers' personal data from Rivers Casino's systems

Handala Hackers Claim Massive Data Breach on Israeli Police, Leak 350,000 Files

Hewlett Packard Enterprise (HPE) notifies employees of data theft following Russian state-sponsored cyberattack

Hospital Sisters Health System says cyber attack impacted over 880,000 patients

How Deepseek’s security failures shape the future of cyber defense on AI

Huge cyber attack under way - 2.8 million IPs being used to target VPN devices

Karnataka Police Investigates Cyber Attack on Kaveri 2.0 Property Registrations

Lawmakers propose DeepSeek ban on government devices

London council hit by 20,000 cyberattacks every day

Malicious Machine Learning (ML) models found on Hugging Face Hub

Media giant Lee Enterprises confirms cyberattack as news outlets report ongoing disruption

Most Sophisticated Gmail Attacks Ever - FBI Says: Do Not Click Anything

NetSupport RAT Grant Attackers Full Access to Victims Systems

New OG Spoof Toolkit Manipulates Social Media Links for Cybercrime

Newport man reveals shocking NHS data protection breach

Newspaper conglomerate Lee Enterprises says cyberattack disrupting print editions

Notable Ransomware Statistics and Facts

Out of 6,000 non-IPA requests, Apple provided UK with iCloud data only four times since 2020

Over 2 million IPs bombard edge network devices in ongoing brute force login attack

Over 12,000 KerioControl firewalls exposed to exploited RCE flaw

Phishing to QR code scam: Key steps to avoid some common UPI-related frauds

Police arrests 4 Phobos ransomware suspects, seizes 8Base sites

PowerSchool data breach exposes some Rocky View Schools records dating back to 2012

Predictive and Generative AI Solutions in Cybersecurity Automation

Quishing via QR Codes Emerging as a Top Attack Vector Used by Hackers

Ransomware extortion rose by 46% in Q4 2024

Ransomware Groups Made Less Money in 2024

Ransomware Industrialization Impacts Security Ops

Ransomware Payments Dropped 35% in 2024 as Over Half of Victims Refused to Pay Cybercriminals

Ransomware Payments Dropped By 35%, As Victims Refusing To Pay

Ransomware Payments Plummet Despite Catastrophic Hacks in 2024

Ransomware Payments Plunge 35% as More Victims Refuse to Pay

Reducing ransomware recovery costs in education

Russia disappearing from the internet: cloaking digital presence brings strategic cyberwarfare advantage

San Francisco-Marin Food Bank says hackers stole 60,000 customers' personal details

Scammers Use Fake Facebook Copyright Notices to Hijack Accounts

Scotland: Health board remains 'vigilant' over cyber attacks

Security validation: The new standard for cyber resilience

Sky ECC encrypted service distributors arrested in Spain, Netherlands

South African Weather Service hard at work to restore systems after cyber attack

Students suing Education Department worry data Department of Government Efficiency (DOGE) has accessed could be used for immigration enforcement

TeamViewer's CISO on Thriving After Russian Cyber-Attack

The Evolving Ransomware Threat: Challenges and Innovations

UK Military Fast-Tracks Cybersecurity Recruitment

UK’s secret Apple iCloud backdoor order is a global emergency, say critics

US: Man Gets 20 Years for $37 million Crypto Heist

Was Cisco Just Hit By Ransomware? What Happened And What To Do

‘We Don’t Negotiate with Terrorists’: Ransomware Strategy in Modern Cybersecurity

XE Hacker Group Exploits VeraCore Zero-Day to Deploy Persistent Web Shells

Zimbra Releases Security Updates for SQL Injection, Stored XSS, and SSRF Vulnerabilities

Thursday, 6 February 2025

Data-Leaking Ransomware Report - January 2025

Welcome to last month's DLR Report, an exclusive presentation of Data-Leaking Ransomware Operator's Global and US Victims that were claimed between 1st January and 31st January 2025.


DBD discovered and researched 606 Global Ransomware Victims over 81 Countries and Islands, including 276 US Ransomware Victims over 45 States and Districts, claimed by 49 Data-Leaking Ransomware Operators in January 2025.

DBD also discovered and researched 1 New Active Ransomware Operator called GD LockerSec in January 2025.

Download PDF



Data Source: Data Breaches Digest.