Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 28th April and 4th May 2025.30th April
75 zero-days seen in 2024 as nations, spyware vendors continue exploitation
China Hackers Used Trojanized UyghurEditPP App to Target Uyghur Activists
France directly calls out Russian military intelligence hackers
France Slams Russia’s APT28 for Four-Year Cyber-Espionage Campaign
Google is working on a security feature to disable USB data access
JPMorgan CISO Urges SaaS Security Reset
Mobile security is a frontline risk. Are you ready?
Nova Scotia Power cyberattack impacts customer billing accounts
Property renters targeted in simple Business Email Compromise (BEC) scam
Securing the invisible: Supply chain security trends
Spain and Portugal power outage triggers surge in phishing attacks
US House Approves Bill to Assess Security Threats Posed by Foreign-Made Routers
Why cyber resilience must be part of every organization’s DNA
29th April
44% of the zero-days exploited in 2024 were in enterprise solutions
70% of organisations are still under cyber-attack despite improved defences
97 zero-days exploited in 2024, over 50% in spyware attacks
'A whole season lost': How M&S cyber attack has hit hard - and what happens next
AI-powered, automated attacks have reached record numbers
Apple 'AirBorne' flaws can lead to zero-click AirPlay RCE attacks
CISA Adds Actively Exploited Broadcom and Commvault Flaws to Known Exploited Vulnerabilities (KEV) Database
CISA tags Broadcom Fabric OS, CommVault flaws as exploited in attacks
CISA warns about actively exploited Broadcom, Commvault vulnerabilities
Cyber espionage and spyware fuel zero-day attacks, Google warns
Cyber incident at Marks & Spencer suspected to involve Scattered Spider hackers
DDoS attacks jump 358% compared to last year
Empty shelves at M&S as store faces losses of 'millions each day' in wake of cyber attack
Endue Software Confirms Data Breach Affecting Multiple Providers
FBI offers $10 million reward for information on Chinese hacking group Salt Typhoon
France accuses Russian intelligence of repeated cyber attacks since 2021
France blames Russian military intelligence for years of cyberattacks on local entities
France ties Russian APT28 hackers to 12 cyberattacks on French orgs
Global crackdown on Russian crypto exchange Garantex fails as new platform pops up
Google Reports 75 Zero-Days Exploited in 2024 - 44% Targeted Enterprise Security Products
Government hackers are leading the use of attributed zero-days, Google says
Grinex exchange suspected rebrand of sanctioned Garantex crypto firm
Hackers ramp up scans for leaked Git tokens and secrets
Hacking group Scattered Spider linked to M&S cyber attack
Hitachi Vantara takes servers offline after attack with Akira ransomware
How $330M BTC Hacker May Have Doubled Down on Monero Derivatives
How higher education can protect student data from cyber siege
How Postal Code Data Impacts Cybersecurity, Privacy and Fraud Prevention
In first, France accuses Russian intelligence of repeated cyber attacks
Infostealers are super spreaders for ransomware attacks
Infostealers Harvest Over 30,000 Australian Banking Credentials
Investing in security? It’s not helping you fix what matters faster
JokerOTP Platform Linked to 28,000+ Phishing Attacks Dismantled
JokerOTP Platform With 28,000+ Phishing Attacks Dismantled
Kintetsu World Express hit by ransomware attack
Malaysia Dodged a Bullet in 2024. But Are We Ready for the Next One?
Malware Attack Targets World Uyghur Congress Leaders via Trojanized UyghurEdit++ Tool
Marks & Spencer (M&S): FTSE 100 shares start recovery after near-£700m cyber attack hit
Marks & Spencer (M&S) breach may have been a Scattered Spider ransomware attack
Marks & Spencer (M&S) cyber attack - what has happened?
Marks & Spencer (M&S) cyber attack that crippled stores is 'linked to gang of teenage hackers'
Marks & Spencer (M&S) cyberattack linked to Scattered Spider
Marks & Spencer (M&S) faces shortages of four household staples after massive cyber attack
Marks & Spencer (M&S) food deliveries to Ocado disrupted by cyber attack
Marks & Spencer (M&S) 'losing millions of pounds a day' after aftermath of cyber attack continues
Marks & Spencer (M&S) shoppers spot shortages on shelves as huge cyber attack continues to cause chaos
Marks & Spencer (M&S) shoppers warned of 'empty shelves' as cyber attack fallout continues
Marks & Spencer caught up in Scattered Spider ransomware attack
Marks & Spencer cyber attack: When will online orders return and what will happen next?
Marks & Spencer cyber attack 'blamed on teenage hackers' with some shelves bare as retailer struggles to recover
Marks & Spencer cyber incident linked to ransomware group
Marks & Spencer hit by cyberattack
Massive Cyber Attack Rocks Iran Amid Mysterious Explosions
Meditation iOS app leaked over 100K users’ personal details
MFA Under Attack: AiTM Phishing Kits Abusing Legitimate Services
MTN Ghana Data Breach: A Wake-Up Call for Privacy Rights and Corporate Accountability
MTN was hit by ransomware attackers
New Gremlin Infostealer Distributed on Telegram
New WordPress Malware Masquerades as Plugin
Nova Scotia energy provider takes some servers offline following cyber incident
Numerous Dutch provinces and municipalities temporarily offline due to DDoS attack
One in five firms faces monthly email account attacks
Phorpiex Botnet Delivers LockBit Ransomware with Automated Tactics
Ransomware Attacks on Critical Infrastructure Surge, Reports FBI
ResolverRAT Targets Healthcare and Pharmaceutical Sectors Through Sophisticated Phishing Attacks
Retail giant M&S takes systems offline to deal with cyber incident
Scattered Spider Suspected in Major M&S Cyberattack
Scotland: Cyber-attack costs 'head for £1m'
SentinelOne Uncovers Chinese Espionage Campaign Targeting Its Infrastructure and Clients
SK Telecom cyberattack: Free SIM replacements for 25 million customers
SK Telecom offers new SIM cards to customers after revealing cyberattack
Some Marks & Spencer (M&S) shops hit by availability issues as cyber attack fallout continues
Some Marks & Spencer (M&S) stores left with empty shelves after cyber attack
Spain and Portugal power blackouts: was there a cyberattack?
The Growing Threat of Ransomware to the Manufacturing Sector
The state of intrusions: Stolen credentials and perimeter exploits on the rise, as phishing wanes
TikTok investigates claims of major data breach by hacker group R00TK1T
Ukraine's largest home improvement retailer disrupted by cyberattack
Urban Renewal Authority Data Breach Incident Prompts Update of Guidance on Cloud Computing by the Privacy Commissioner for Personal Data in Hong Kong
VeriSource data breach impacted 4M individuals
Verisource Services Increases Data Breach Victim Count to 4 Million
We’re under attack too! Cybersecurity firm shares its cyber warfare experience
What Is Device Code Phishing?
What’s worth automating in cyber hygiene, and what’s not
Zero-Day Exploitation Figure Surges 19% in Two Years
28th April
4chan restores site, blames lack of updated infrastructure for cyber attack
$16 billion: The amount of internet crime losses in 2024
19 APT Hackers Attacking Asia Company’s Servers by Exploiting Vulnerability & Spear Phishing Email
19 APT Hackers Target Asia-based Company Servers Using Exploited Vulnerabilities and Spear Phishing Email
A large-scale phishing campaign targets WordPress WooCommerce users
Africa’s largest mobile network operator MTN Group reports data breach
Ascension data breach impacts patients in 5 states, including Michigan
Baltimore City Public Schools hit with data breach
Barnstable Sheriff Employee On Leave After 'Data Breach'
Beyond the inbox: ThreatLabz 2025 Phishing Report reveals how phishing is evolving in the age of genAI
Blackouts in Spain and Portugal could be a cyber attack
BreachForums compromised in zero-day attack on "unpatched" software, new admin says
BreachForums Displays Message About Shutdown, Cites MyBB 0day Flaw
Britain's M&S Stops Taking Online Orders After Cyber Attack
British retailer Marks & Spencer confirms a major data security incident
Citizen Lab says exiled Uyghur leaders targeted with Windows spyware
Cloudflare mitigates record number of DDoS attacks in 2025
Collaborating against ransomware: Insights from the Melissa Project
Common password misconceptions: myths vs facts
Criminals are pretending to be Microsoft, Google, and Apple in phishing attacks
Critical SAP NetWeaver flaw exploited by suspected initial access broker (CVE-2025-31324)
Cyber attack forces Marks & Spencer to suspend e-commerce
Cyber attack on online broadcaster Urban One compromised employees' data
Cyber attack on Onsite Mammography impacted over 350,000 patients
Cyber-espionage campaign found targeting exiled Uyghurs
Cybersecurity CEO Charged with Installing Malware on Hospital Computers
Darcula Phishing Kit Uses AI to Evade Detection, Experts Warn
DeFi Platform Loopscale Negotiates With $5.7M Exploit Hacker
DragonForce ransomware group announces its forming a hacking cartel
DragonForce ransomware group evolves new cartel business model
Earth Kurma Targets Southeast Asia With Rootkits and Cloud-Based Data Theft Tools
Everything we know about the M&S cyber attack that halted online orders
FBI Asks for Help Tracking Chinese Salt Typhoon Actors
Fog Ransomware Directory With Active Directory Exploitation Tools & Scripts Uncovered
Fog Ransomware Reveals Active Directory Exploitation Tools and Scripts
Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised
Half of Mobile Devices Run Outdated Operating Systems
Hitachi Vantara takes servers offline after Akira ransomware attack
Hong Kong Office of the Privacy Commissioner for Personal Data (PCPD) Publishes Investigation Findings on Oxfam Data Breach Incident
Inner workings of ToyMaker Initial Access Broker (IAB) examined
Interlock group claims major ransomware attack on renal care provider DaVita
Iran claims it stopped large cyberattack on country’s infrastructure
Iran repelled large cyber attack on Sunday
Iran repels large cyber attack on its infrastructure amid nuclear talks
Iran says it repelled 'extensive and complex' cyber attack
Iran says major cyberattack on infrastructure repelled
ISACA Highlights Critical Lack of Quantum Threat Mitigation Strategies
It only took two weeks for DeFi newcomer to lose $6 Million to hackers
JokerOTP Dismantled After 28,000 Phishing Attacks, 2 Arrested
Kelly Benefits data breach compromised over 250,000 individuals
KnowBe4 Releases Q1 2025 Phishing Report, With Internal Communications Dominating
Large-scale cyber Attack on Iran’s infrastructure foiled
Limestone District School Board (LDSB) schools restore phones, internet, and email after cyber attack
Loopscale: agreement with hacker, funds returned with a 10% bounty
Loopscale hacker in talks to return stolen crypto
Marks & Spencer (M&S): FTSE 100 shares continue to drop after cyber attack
Marks & Spencer (M&S): WFH staff locked out of systems amid cyber attack fallout
Marks & Spencer (M&S) betting on customer patience as cyber-attack threatens to ruin 2025’s strong start
Marks & Spencer (M&S) blocks hundreds of staff from system & resorts to pen and paper as cyber attack chaos stretches into second week
Marks & Spencer (M&S) blocks remote workers and halts online sales following suspected ransomware breach
Marks & Spencer (M&S) bosses issue 'stay at home' warning after huge cyber attack
Marks & Spencer (M&S) cyber-attack: when will orders be back, and is my data at risk?
Marks & Spencer (M&S) Faces Major Fallout From Cyber Attack
Marks & Spencer (M&S) Instructs Warehouse Agency Staff to Stay Home Amid Ongoing Cyber Incident
Marks & Spencer (M&S) is forced to halt online sales for a fourth day as agency staff are told to stay home after cyber attack
Marks & Spencer (M&S) market value falls £700 million amid cyber attack
Marks & Spencer (M&S) online orders suspended for fourth day due to cyber attack
Marks & Spencer (M&S) pauses deliveries of some food items to Ocado after cyber-attack
Marks & Spencer (M&S) staff ‘checking chillers frequently’ over fears defrost alarms impacted in cyber attack
Marks & Spencer (M&S) tells agency staff to work from home following cyber attack
Marks & Spencer (M&S) tells agency warehouse staff to stay at home after cyber attack
Marks & Spencer (M&S) tells hundreds of agency workers to stay home as retailer grapples with cyber attack chaos
Marks & Spencer (M&S) tells workers to stay home after cyber attack saw it suspend online orders
Marks & Spencer (M&S) warehouse workers told not to come to work following cyberattack
Marks & Spencer breach linked to Scattered Spider ransomware attack
Marks & Spencer cyber attack: M&S agency staff told to stay at home as disruption continues
Marks & Spencer hit by £800m blow as shoppers left waiting for refunds and online orders frozen for fourth day
Marks & Spencer still unable to accept online orders more than a week after cyber attack
Marks and Spencer (M&S) customers in limbo as cyber attack chaos continues
Massive power blackout in Spain, France and Portugal: causes investigated, hacker attack not excluded
Media firm Urban One confirms data breach after cybercriminals claim February attack
Microsoft Recall Returns: Security Improves but Issues Remain
Microsoft Rolls Recall Out to General Public After Privacy Backlash
Monero Price Surge Likely Attributable to Large Hack
Monero’s XMR soars as suspected hacker purchases $330m
More than 31K impacted by Baltimore City Public Schools hack
Most critical vulnerabilities aren’t worth your attention
MTN confirms customer data breach, core systems unaffected
MTN Ghana confirms 5,700 customers affected by data breach
Nearly 50% of mobile devices run outdated operating systems
Nova Scotia Power investigating cyber attack
Nova Scotia Power investigating cyber attack on parts of its network
Oregon Department of Environmental Quality (DEQ) won’t say if ransomware group took employee data in cyberattack
Over 1,200 SAP NetWeaver servers vulnerable to actively exploited flaw
Over 30,000 individuals impacted in Baltimore City Public Schools data breach
RansomHub Ransomware Deploying Malware to Compromise Corporate Networks
Ransomware Attack on Frederick Health Medical Group Affects 934,000 Patients
Ransomware attacks are getting smarter, harder to stop
Ransomware Defense Playbook for CISOs in 2025
Ransomware threat increasing but median pay-offs decreasing, report says
Record $16B lost to cybercrime in the US, FBI report reveals
Researchers Note 16.7% Increase in Automated Scanning Activity
Security breach exposes identities of British special forces soldiers
Shoppers turn to womenswear fashion alternatives as M&S cyber attack saga continues
Single line of code could brick iPhones by sending malicious notifications
SK Telecom begins SIM card replacement after data breach
SK Telecom Hit by Cyber Attack
SK Telecom shares plunge after data breach due to cyberattack
Solana’s Loopscale Strikes Deal with Hacker to Recover $5.8M Stolen Funds
South Korea's SK Telecom begins SIM card replacement after data breach
Spain investigates power blackouts as possible cyber attack
Spanish water utility Aigües de Mataró confirms a major customer data breach
The government’s ransomware payment ban: what are the wider implications?
The setting Gmail users need to change to protect from phishing, avoid losing account
Threat Actors Increasingly Utilize Ransomware as a Service Boosted by EDR Killers
Threat Actors Leverage Access to Valid Accounts via Phishing Attack
Two former High Point students sue university over data breach
U.S. Department of Health and Human Services (HHS) Fines Neurology Practice $25K for Ransomware Attack
UK Government Set to Ban SIM Farms in European First
Urban One Hit by Ransomware: Employee Data Leaked
Uyghur Diaspora Group Targeted with Remote Surveillance Malware
VeriSource cops to 4 million accounts lost in 2024 data breach
VeriSource now says February data breach impacts 4 million people
Verizon’s 2025 Data Breach Investigations Report Notes Alarming Cyberattack Surge Through Third Parties
Verizon’s Data Breach Report Findings ‘Underscore the Importance of a Multi-Layered Defense Strategy’
WooCommerce phishing campaign uses fake patch to lure victims into installing backdoors
WooCommerce Users Targeted by Fake Patch Phishing Campaign Deploying Site Backdoors
WooCommerce users targeted with fake security vulnerability phishing campaign
Yale New Haven Health says nearly 5.6M patients affected by data breach