Editor's Message

Welcome to DBD. On March 8th, DBD celebrated it's 5th anniversary and PRiSM celebrated it's 2nd anniversary. Little did I know when I started both of these ventures just how much an impact they would have on my life and I'd like to thank each and everyone of you who have supported me over the years, with a special thanks to those individuals who have kindly shared their knowledge with me, and continue to do so. Thanks again for your support. Stay safe. :)

“Data Breaches Digest and its PRiSM portal provide Dentons Global Security Team with valuable insights into the ransomware landscape, from the latest incidents to trends over time, as well as the ability to customize visual analytics. Timely reports and tracking by Data Breaches Digest help inform cyber intelligence for the world’s largest law firm and thus our cybersecurity posture across more than 80 countries worldwide.”
Dentons Senior Analyst, Washington DC

Tuesday, 27 May 2025

Ransomware Operator Claims - Week 21 2025

Welcome to last week's ROC Report, an exclusive summary of Ransomware Operator's global victims that were claimed during the period between 19th May and 25th May 2025, kindly assisted by our partners.

For further analysis on these (and any historic) Ransomware Operator Claims, including the Victim Names and Industry Sectors attacked, please use our PRiSM application.

Download PDF



Data Source: Data Breaches Digest. Flag Icons created by Freepik and provided by Flaticon.

Posted by at
Labels:

Monday, 26 May 2025

Data Breaches Digest - Week 22 2025

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 26th May and 1st June 2025.


1st June

Coinbase hit by $400M data breach after Indian support staff bribed

Conti Ransomware Gang Exposed in Major Intelligence Leak

Fraudsters, murderers, students: who the GRU assembled a team of hacker provocateurs from and why it failed

Google Confirms Gmail Warning - How To Keep Your Email Account

GRU Hacker Unit Exposed After Journalists Access Unsecured Server

Indian call centre agents accused of leaking customer data in $400 million Coinbase hack

Motorway toll scams on the rise in France after holiday weekend

Nearly Three Years After Data Breach, T-Mobile Finally Begins Sending Settlement Payments, With Some Users Reporting They Received More Than Originally Expected

Ransomware 2.0 How AI-Powered Attacks Are Evolving

Where Did The Name 'Phishing' Come From?

31st May

19-year-old hacker breached Spain’s DGT, CNMC and more

Adidas issues warning to customers after details stolen in cyber attack

AI tools fuel surge in phishing, crypto scams and malware attacks

Australian businesses now have to fess up when they pay off ransomware criminals

Beware: Weaponized AI Tool Installers Infect Devices with Ransomware

Beware of Weaponized AI Tool Installers That Infect Your Devices With Ransomware

BitMEX Foils Lazarus Group’s Phishing Attempt, Uncovers Operational Lapses

BitMEX uncovers holes in Lazarus Group's operational security

Britain’s Companies Are Being Hacked

Data Breach Exposed 57K Healthcare System Patients' Info, Lawsuits Say

Exploit details for max severity Cisco IOS XE flaw now public

Interlock Ransomware Deploys New NodeSnake RAT in UK Attacks

Iowa County cyber attack response

Iowa County using outside vendor to restore services follow cyber-attack

LexisNexis Risk Solutions Data Breach Exposes 364,000 individuals personal Data

Massive data breach exposes 184 million passwords and logins

Merseyside Police warn public to be wary of phishing scams

Microsoft Reveals Techniques To Defending Against Advancing AiTM Attacks

Mysterious leaker GangExposed outs Conti kingpins in massive ransomware data dump

New Linux Flaws Allow Password Hash Theft via Core Dumps in Ubuntu, RHEL, Fedora

Ransomware attacks cost Philippine-based firms $500,000 each

Russian Cyberattack Targets Greek Logistics Partner of Nespresso

Serviceaide Facing Multiple Class Action Lawsuits Over 483K-Record Data Breach

Threat Actors Leverage Google Apps Script To Host Phishing Websites

Threats and harassment: How a “data entry” job turned out to be a “pig butchering” scam

Tycoon2FA Infra Used by Dadsec Hacker Group to Steal Office365 Credentials

U.S. Department of Justice (DoJ) Seizes 4 Domains Supporting Cybercrime Crypting Services in Global Operation

Urgent alert for Americans as 184 million passwords leak in major data breach - what you must do now

30th May

96% of IT pros say AI agents are a security risk, but they're deploying them anyway

184 Million Passwords Leaked in Massive Unencrypted Data Breach: Experts Warn of Global Fallout

184,000,000 Usernames and Passwords Exposed in Extraordinary Data Breach - Apple, Microsoft, Facebook, Google, Netflix, Instagram, Spotify, Discord, Roblox and PayPal Users Affected

Adidas Canada alerts customers of data breach

Adidas Hit by Major Data Breach, Millions Potentially Affected

AI agents have access to key data across the enterprise

AI-driven phishing attacks surge against Australian targets in 2024

Australia: Ransomware reporting rules require all businesses to do a risk assessment

Australian ransomware victims now must tell the government if they pay up

Better Together: How MFA and Strong Password Practices Can Help Bolster Security

BitMEX Thwarts Lazarus Group Phishing Attempt Targeting Crypto Users

Bradford Health Services discloses data breach

China-Linked Hackers Exploit SAP and SQL Server Flaws in Attacks Across Asia and Brazil

Chinese Phishing Service Haozi Resurfaces, Fueling Criminal Profits

CISA Urged to Enrich Known Exploited Vulnerabilities (KEV) Catalog with More Contextual Data

Comprehensive Ransomware Mitigation Strategies for 2025 Enterprises

ConnectWise Hit by Cyberattack; Nation-State Actor Suspected in Targeted Breach

Considering cybersecurity: 9 ways to protect your hospital

Countering Spear Phishing with Advanced Email Security Solutions

Credential phishing facilitated by Google Apps Script exploitation

Criminals defeat human intelligence with fake AI installers they poison with ransomware

Cyber Threats Masquerading as AI Tool Installers Deploy CyberLock, LuckyGh0$t, Numero

Cyberattacks on M&S and Co-op trigger shift in UK online shopping habits

Dadsec Hacker Group Uses Tycoon2FA Infrastructure to Steal Office365 Credentials

Dark Web Profile: NightSpire Ransomware

Data breach at Missouri Department of Conservation exposed employees’ personal information

Data Breach Exposes Sensitive Info of Over 364,000 Americans

DDoS incident disrupts internet for thousands in Moscow

Delinea Report finds 69% of organisations breached by ransomware over past year

Deloitte Allegedly Suffers Major Data Breach - Source Code and GitHub Credentials Reportedly Leaked

Deloitte Data Breach: Alleged Leak of Source Code & GitHub Credentials

Department of Conservation reports data breach involving HIPAA-protected information

Detecting Evolving Phishing Campaigns in 2025 Cyber Environments

EDDIESTEALER Malware Uses ClickFix CAPTCHA to Steal Browser Data Across All Platforms

Eight things we learned from WhatsApp vs. NSO Group spyware lawsuit

Evolving attacks by the UTG-Q-015 hacking operation detailed

Fake AI software installers are spreading ransomware

FBI Flags Philippines Tech Company Behind Crypto Scam Infrastructure

Germany doxxes Conti ransomware and TrickBot ring leader

Global phishing campaign powered by Nifty infrastructure

Google Apps Script abused to launch dangerous phishing attacks

Hackers are exploiting critical flaw in vBulletin forum software

Hospitals in Maine, New Hampshire limit services after cyberattack on Catholic health organization

How one wrong click can infect your entire device: Staying safe online in 2025

How to actually get your money back if a phishing scam catches you out

How to Put Humans at the Forefront of Retail Cyber Defense

Indonesian Nuclear Energy Regulator BAPETEN Allegedly Breached

Interlock ransomware: what you need to know

Lafayette Federal Credit Union data breach leads to multiple class action lawsuits

Latrodectus malware detected on over 44,000 IP addresses

‘Legal Aid Agency data breach enabled by fragility of IT systems’

LexisNexis data breach affected over 360,000 people

Mandatory Ransomware Payment Disclosure Begins in Australia

Mandatory ransomware reporting: great, but tell us what’s being learned

Massive Data Breach Exposes 184 Million Login Credentials from Major Tech Platforms

Massive data breach exposes over 184 Million passwords: Banks, social media, government platforms affected

Melbourne-based 3P Corporation breached by Space Bears ransomware

Melbourne-based financial services and advice firm hit with cyber attack

Microsoft Reveals Techniques for Defending Against Evolving Adversary-in-the-Middle (AiTM) Attacks

Missouri Conservation Department employees’ health information leaked in data breach

Missouri Department of Conservation reports data breach involving HIPAA-protected information

Most high-traffic email domains still vulnerable to phishing

Multiple payloads deployed via fake AI tool installers

NetBird malware spread in advanced finance exec-targeted spear-phishing

New Apache InLong Vulnerability (CVE-2025-27522) Exposes Systems to Remote Code Execution Risks

New ChatGPT Scam Infects Users With Ransomware: ‘Exercise Extreme Caution’

New EDDIESTEALER Malware Bypasses Chrome's App-Bound Encryption to Steal Browser Data

North Carolina Energy Provider Settles Data Breach Lawsuit

Nova Scotia Power saw the potential for a cyber attack, but did too little too late

Nova Scotia Power says it believes it knows who stole customer data

Palo Alto Networks Warns of Escalating Ransomware Tactics Driven by Sophisticated Threat Alliances

Plea agreement ties 19-year-old to PowerSchool data breach

Police takes down AVCheck site used by cybercriminals to scan malware

Practice Resources Agrees to $1.5 Million Data Breach Settlement

Privacy nightmare: Microsoft OneDrive gives AI chatbot full read access to user content

PureHVNC RAT distributed via job lures in new phishing attack

Ransomware attack on DataPost compromises personal data of 146 Income Insurance policyholders

Ransomware attack on Singapore vendor DataPost exposes data of income insurance customers

Ransomware, Rewritten: How AI Is Fueling Both Sides of the Fight

Safari Flaw Exploited by BitM Attack to Steal User Login Data

Security Leaders Share Thoughts on Kettering Outage

Serviceaide Data Leak Impacts Nearly 500,000 Catholic Health Patients

St. Cloud Alerts Residents to Potential Data Breach Following 2024 Cyber Incident

System Outage From an Apparent Interlock Ransomware Attack Disrupts Operations at Kettering Health

The hidden threat of ‘shadow AV’

Threat Actor Claims TikTok Breach, Puts 428 Million Records Up for Sale

Threat Actors Exploit Google Apps Script to Host Phishing Sites

U.S. and Global Law Enforcement Agencies Team Up to Smash Cybercrime Ring by Seizing Hacker Havens

U.S. Sanctions Funnull for $200M Romance Baiting Scams Tied to Crypto Fraud

UK allocates over £1 billion to bolster cyber and electromagnetic warfare capabilities

UK Ministry of Defence (MoD) Launches New Cyber Warfare Command

Unigaz Allegedly Targeted in MedusaLocker Ransomware Attack, Sensitive Data Leaked

US Banks Urge Securities and Exchange Commission (SEC) to Repeal Cyber Disclosure Rule

US blacklists Philippine tech firm accused of enabling global crypto scams

US Environmental Protection Agency Allegedly Breached, Over 100GB of Data Offered for Sale

US military IT specialist arrested for allegedly trying to leak secrets to foreign government

Using AI to outsmart AI-driven phishing scams

Victoria’s Secret reportedly victim of cyber attack, shuts down website

Victoria’s Secret takes website offline after security incident

Victoria’s Secret US Website Restored After Security Incident

Victoria’s Secret Website Down After Security Incident

Vietnam-linked hackers using fake AI video tools to spread malware

Why privacy in blockchain must start with open source

Why schools take a long time to report ransomware

29th May

9 Million FWD Vietnam Insurance Records Allegedly Exposed

$12M Vanishes in Crypto Heist Targeting Cork Protocol’s Depeg Market

69% of organisations hit by ransomware in the last 12 months

364,333 Americans At Risk As Data Giant Discovers Breach – Social Security Numbers, Names and Other Sensitive Info Stolen

A third of UK fintechs put customers data at risk of cyber attack

Adidas Confirms Data Breach, Security Leaders Weigh In

Adidas data breach highlights supply chain risk for retailers

Adidas Data Breach Linked to Third-Party Vendor

Adidas faces major data breach, exposing customer data

Adidas issues password warning after data breach

AI is a Ticking Time Bomb for Your Data, Reveals New Report From Varonis

AI-fuelled scams & phishing soar in New Zealand

AI-powered ransomware surge despite fewer ransoms paid

Alleged Data Breach Affects Estonian Logistics Tracking Website tymap.app

Alliance Healthcare Italy Allegedly Targeted by Ransomware Attack

An Enterprise Playbook to Defending Against Volt Typhoon

Apple Safari exposes users to fullscreen browser-in-the-middle attacks

APT41 Leveraging Google Calendar for C2, Distributes TOUGHPROGRESS Malware

Australia: The businesses that must report ransomware payments

Carousell phishing scam leads to 40 cases and HK$4.6m loss, including HK$650K from throat lozenge fraud

Chief Financial Officers (CFOs) in the Crosshairs as Sophisticated NetBird Spear-Phishing Campaign Unfolds

China-linked hackers exploit Google Calendar in cyberattacks on governments

Chinese APT41 Exploits Google Calendar for Malware Command-and-Control Operations

CISOs prioritize AI-driven automation to optimize cybersecurity spending

ConnectWise breached in cyberattack linked to nation-state hackers

ConnectWise Confirms Hack, “Very Small Number” of Customers Affected

ConnectWise says nation-state attack targeted multiple ScreenConnect customers

Cork Protocol Hacked: Hacker Swaps $12M for Ethereum in Daring Move

Cybercriminals exploit AI hype to spread ransomware, malware

Cybercriminals Target AI Users with Malware-Loaded Installers Posing as Popular Tools

Cybersecurity Teams Generate Average of $36M in Business Growth

Czech Government Attributes 2022 Cyberattack to Chinese State-Backed APT31

Czech government holds China responsible for cyber-attack on Ministry of Foreign Affairs network

Czech Republic says China behind cyberattack on ministry, embassy rejects accusations

Data broker LexisNexis discloses data breach affecting 364,000 people

Data Protection Gap Analysis: Identifying Weak Spots Before Regulators Do

DragonForce Exploits SimpleHelp Flaws to Deploy Ransomware Across Customer Endpoints

DragonForce Ransomware Group Exploits MSP’s RMM Software in Attacks

Empowering machine learning for robust cyber-attack prevention in online retail: an integrative analysis

Estonia issues arrest warrant over major pharmacy data breach

Facebook and email users urged to change passwords after massive data breach uncovered

Fake Bitdefender website used to spread infostealer malware

Fake ChatGPT and InVideo AI Downloads Deliver Ransomware

Fullscreen BitM Attack Discovered by SquareX Exploits Browser Fullscreen APIs to Steal Credentials in Safari

Global ransomware victimization remains elevated

Global retail giant removes website and pauses all online orders after crippling cyber attack

'Haozi' Gang Sells Turnkey Phishing Tools to Amateurs

How CISOs can regain ground in the AI fraud war

Indonesia’s National University Admissions Body (SNPMB) Allegedly Suffers Major Data Breach

Infinox Allegedly Targeted in Ransomware Attack by Arkana Group

Interlock Ransomware deploys NodeSnake RAT to Establish Persistent Access to Corporate Networks

Iranian International Behind Robbinhood Ransomware Scheme Pleads Guilty

Is Victoria's Secret Facing A Data Breach? Company Responds After Online Shutdown

Israel: Shin Bet foils dozens of Iranian phishing attempts against senior officials

Israel: Shin Bet says it foiled 85 Iranian cyberattacks, including phishing attempts posing as Israeli official

Israel: Shin Bet thwarts dozens of Iranian cyberattacks

It took 17 minutes for an attacker to uncork $12M in crypto

LexisNexis data breach exposes 364,000 personal records

LexisNexis data breach exposes personal information

Major data leak hits Unimed, 14 Million patient-doctor messages exposed

Major international brand hit by data breach in South Africa

Malware Analysis Reveals Sophisticated RAT With Corrupted Headers

Massive Data Breach Exposes 184 Million Login Credentials

Massive data breach exposes 184 million passwords and logins

Massive data breach exposes 200 million passwords from tech giants

More Than 1.8 Million Individuals Affected by 2024 ALN Medical Management Data Breach

NATO condemns Chinese cyber attack on Czech ministry

Nearly 1 million ransomware detections in India in 2024, threats grow more aggressive

New Browser Exploit Technique Undermines Phishing Detection

New Malware Spotted Corrupts Its Own Headers to Block Analysis

New Russian-Linked Hacker Group ‘Void Blizzard’ Targets Western Critical Infrastructure

New Spear-Phishing Attack Targeting Financial Executives by Deploying NetBird Malware

New Spear-Phishing Campaign Targets Financial Executives with NetBird Malware

New Windows RAT Evades Detection for Weeks Using Corrupted DOS and PE Headers

North Korea’s Laptop Farm Scam: ‘Something We’d Never Seen Before’

Nova Scotia Power CEO one of 280K customers impacted by data breach

Novel NodeSnake RAT deployed in university-targeted Interlock ransomware intrusions

Online shopping safety warning to M&S shoppers following cyber attack

Over 90% of Top Email Domains Vulnerable to Spoofing Attacks

Over 100,000 WordPress Sites at Risk from Critical CVSS 10.0 Vulnerability in Wishlist Plugin

Over 200,000 Customers of French Dealership Auto-ici Allegedly Exposed in Data Breach

Over 184 million passwords from Apple, Google, Facebook, and Microsoft leaked online, claims researcher

Palo Alto Networks Releases Unit 42 Ransomware Report

Pay up: Understanding Australia’s new ransomware reporting requirements

Pig butchering facilitator sanctioned for scamming Americans out of $200M, US Treasury says

Possible ransomware attack disrupts Maine and New Hampshire Covenant Health locations

Red teaming - why cybersecurity’s coolest job is basically Top Gun for hackers

Research Finds Training Produces Huge Reductions in Phishing Attack Success

Russia-linked hackers posing as journalists attempt to attack UK Defence Ministry

Russian-linked hackers posing as journalists targeted Ministry of Defence, government says

Salvation Army purportedly subjected to Chaos ransomware attack

Scammers impersonate New Jersey Motor Vehicle Commission (MVC) in phishing text scheme demanding fake traffic payments

Sheboygan Ransomware Breach Compromises Data of 67,000+ Residents

Singapore: At least 146 Income Insurance customers hit by ransomware attack on data handling firm

Singapore: Details of 146 Income Insurance policyholders compromised after cyber attack of external vendor

Some Victims of 2024 City of Sheboygan Data Breach Just Now Being Notified

South Africa under siege: Why cyber security must be a business imperative

Southeast Asian provider of ‘infrastructure laundering’ for scams is sanctioned by US

Spanish Police Dismantle Cybercriminal Network, Hacker ‘Alcasec’ and Former Secretary of State for Security Arrested

Sui Community Launches Vote on Recovering $162,000,000 in Stolen Crypto From Hacker

That LexisNexis Data Breach Was So Bad, It Might Lead to a Class-Action Lawsuit

Thousands of ASUS Routers Hijacked in Stealthy Backdoor Campaign

Thousands of ASUS routers infected with backdoor that survives firmware updates

Threat actors abuse Google Apps Script in evasive phishing attacks

Threat Actors Exploit Top Domain Zones for Cyber Attacks

Tiffany & Co. data breach affects South Korean customers

Two NHS trusts affected by cyber attack on mobile phone software

UChicago Medicine alerts 38,000 patients of data breach linked to third-party vendor

Unheard of: Chinese hackers use Google Calendar to control malware and steal data

US government sanctions tech company involved in cyber scams

US sanctions firm linked to cyber scams behind $200 million in losses

UTG-Q-015 Hackers Launch Massive Brute-Force Attacks on Government Web Servers

Victoria’s Secret Hit By ‘Security Incident’ After Attacks on UK Retailers

Victoria’s Secret takes down website after security incident

Victoria’s Secret temporarily takes website offline due to security issue

Victoria’s Secret website down as company investigates security incident

Victoria’s Secret Website Down After Security Incident

Victoria’s Secret website hit by cyber attack

Void Blizzard Hacker Group Escalates Cyber Attacks on NATO and Ukraine

What CISOs can learn from the frontlines of fintech cybersecurity

What The LockBit Data Breach Reveals About Its Inner Workings

Why ransomware attack simulation training is essential to prepare for cyberattacks

Your IT Infrastructure is Hybrid. So Why Not Your Security Model?

28th May

69% of Organizations Breached by Ransomware Over Past Year, Delinea Report Finds

251 Amazon-Hosted IPs Used in Exploit Scan Targeting ColdFusion, Struts, and Elasticsearch

38,000 UChicago Medicine patients affected by debt collector's data breach, officials say

364,000 Impacted by Data Breach at LexisNexis Risk Solutions

Adidas admits data breach after third-party hack

Adidas Admits Data Breach Following Third-Party Attack

Adidas confirms customer data stolen in third-party breach, but still no word if US or EU customers impacted

Adidas confirms customer data was accessed during cyber attack

Adidas Confirms Data Breach, Customer Contact Details Exposed

Adidas contacts customers who used this service after details stolen in cyber attack

Adidas Customer Data Stolen in Third-Party Attack

Adidas hit by cyber attack as customer contact details stolen

Adidas hit by cyber attack in which customer data compromised

Adidas Races to Contain Customer Service Data Breach

Adidas tells customers to look out for key message after cyber attack

Alleged Access to Over 70 of Dubai Corporations Offered for Sale

Amazon Spain Faces Alleged 5.1 Million User Data Leak

Apple blocked over $9 billion in App Store fraud in five years

Apple Blocks $9 Billion in Fraud Over 5 Years Amid Rising App Store Threats

Apple Stops 1.9M Risky Apps, Terminates 146K Fraud Accounts in 2024

APT41 malware abuses Google Calendar for stealthy C2 communication

Attack on LexisNexis Risk Solutions exposes data on 300k+

Attackers hit MSP, use its Remote Monitoring and Management (RMM) software to deliver ransomware to clients

Australia: Queensland law firm investigating breach by SafePay ransomware

Australian Telecom Superloop’s Portal Access Allegedly Offered for Sale

Beware of the weakest link in cybersecurity

Botnet hacks 9,000+ ASUS routers to add persistent SSH backdoor

Building a Whole School Approach to Cybersecurity

Businesses Face Identity Theft Too – Here’s How to Stay Ahead

Canada: Beware of scammers trying to cash in on Nova Scotia Power cyber attack

Canada: Federal privacy commissioner launches investigation into Nova Scotia Power data breach

Cetus Users Set for Full Refund as $260M Recovery Plan Passes Sui Community Vote

Chinese spies blamed for attempted hack on Czech government network

Co-op thanks customers for patience during cyber attack

Coca-Cola employee details spilled by Everest ransomware gang

Consumer data stolen in cyber attack, confirms Adidas

Crossroads Trading data breach results in multiple class action lawsuits

Crypto platform mulls 100% compensation after $223M hack

Customer data exposed in Adidas cyber attack

Cyber attack targets University Hospital Southampton

Cyber experts urge shoppers to add security feature to ‘all accounts’ following hacks on UK stores

Czech Republic Accuses China of Government Hack

Czech Republic Blames China-Linked APT31 Hackers for 2022 Cyberattack

Czechia blames China for Ministry of Foreign Affairs cyberattack

Dark Partners cybercrime gang fuels large-scale crypto heists

Data breach affects 38,000 UChicago Medicine patients

Data breach exposes passwords from Google and other tech giants

Data Breaches, Phishing Attempts, and Scams Surge in Q1 2025

Data broker giant LexisNexis says breach exposed personal information of over 364,000 people

Data review shows nearly 68,000 people impacted by Sheboygan network breach, city says

Delinea report finds 69% of firms hit by ransomware last year

DragonForce attacks MSP and spreads ransomware to customers

DragonForce double-whammy: First hit an MSP, then use Remote Monitoring and Management (RMM) software to push ransomware

DragonForce Exploits SimpleHelp Flaws in Targeted MSP Ransomware Attack

DragonForce Ransomware Actors Exploits RMM Tools to Gain Access to Organizations

DragonForce ransomware hacks SimpleHelp RMM tool to attack MSPs

Estonia issues arrest warrant for Moroccan wanted for major pharmacy data breach

Everest ransomware gang has a new cash cow – the Middle East, and we’ll tell you why

Fake Bitdefender Site Spreads Trio of Malware Tools

Fake AI Video Tool Ads on Facebook, LinkedIn Spread Infostealers

Fall of LockBit, the Russian ransomware giant

Federal Trade Commission (FTC) Orders GoDaddy to Bolster Its Security After Years of Attacks

Flagship Bank Facing Alleged Ransomware Attack by Akira Group

From Infection to Access: A 24-Hour Timeline of a Modern Stealer Campaign

Fujipoly Ltd Allegedly Targeted by Spacebears Ransomware

GitHub becomes go-to platform for malware delivery across Europe

Gone phishing: the rise of retail cyber crime in four charts

Google warns of Vietnam-based hackers using bogus AI video generators to spread malware

Google, Facebook and Apple passwords exposed in massive data breach affecting 184 million users

Guilt admitted by RobbinHood ransomware attacker

Hacker Swaps $12M to Ethereum From Cork Protocol Attack

Hackers Exploit SimpleHelp RMM Tool to Deploy DragonForce Ransomware

Hackers say they’ve snatched data from the Salvation Army

Has There Been Another Roblox Data Breach?

How 'Browser-in-the-Middle' Attacks Steal Sessions in Seconds

Instagram Boss Warns of ‘Sophisticated’ Google Phishing Scam

Interlock ransomware gang deploys new NodeSnake RAT on universities

Iranian hacker admits role in Baltimore ransomware attack

Iranian Hacker Pleads Guilty in $19 Million Robbinhood Ransomware Attack on Baltimore

Iranian Man pleaded guilty to role in Robbinhood Ransomware attacks

Iranian man pleads guilty to ransomware attacks that targeted Baltimore, other US cities

Iranian national in US pleads guilty in Baltimore ransomware attack

Ivanti Vulnerability Exploit Could Expose UK NHS Data

Kettering Health ERs now fully operational, as system continues cyber attack recovery

Legal Aid Data Breach Leaks Millions of Sensitive Records, Ministry of Justice’s Poor Cybersecurity Practices Slammed

LexisNexis breach: Data broker hack exposed trove of sensitive information, including Social Security numbers

LexisNexis Data Breach Exposes Social Security Numbers and Personal Data of 364,000 Americans

LexisNexis Risk Solutions says 364,000 impacted by breach involving GitHub data

Major data leak exposes 1.6 Million Etsy, TikTok Shop customer emails

Malware Hidden in AI Models on PyPI Targets Alibaba AI Labs Users

Massive cyberattacks highlight the need for countries to increase investment in digital security

Massive Data Breach Exposes 184 Million Login Credentials: What to Do

Massive security blunder: Russian nuclear site blueprints exposed in public procurement database

MathWorks confirms ransomware attack amid ongoing outages

MATLAB With Over 5 Million Customers Suffers Ransomware Attack

MATLAB, Serving Over 5 Million Users, Hit by Ransomware Attack

Mediclinic targeted in alleged Everest ransomware attack

Mental Denial of Service: Narrative Malware and the Future of Resilience

Meta begins training AI using EU citizens’ data, but the fight’s not over yet

Microsoft Entra Design Lets Guest Users Gain Azure Control, Researchers Say

Microsoft exposes Laundry Bear targeting critical infrastructure

Microsoft OneDrive File Picker Flaw Grants Apps Full Cloud Access - Even When Uploading Just One File

Microsoft OneDrive Flaw Exposes Users to Data Overreach Risks

Mimo Hackers Exploit CVE-2025-32432 in Craft CMS to Deploy Cryptominer and Proxyware

More than $12 million stolen from crypto platform Cork Protocol

More than 40% of Fintech Breaches Linked to Third-Party Vendors

New Phishing Campaign Uses DBatLoader to Drop Remcos RAT: What Analysts Need to Know

New PumaBot botnet brute forces SSH credentials to breach devices

New PumaBot Botnet Targets Linux IoT Devices to Steal SSH Credentials and Mine Crypto

New Russian State Hacking Group Hits Europe and North America

NHS patient data at risk in major cyber attack

NHS trusts' data 'stolen' in cyberattack

NHS trusts hit by cyber attack, patient data feared stolen

Nova Scotia Power confirms ransomware attack, no ransom paid

One in four ransomware payers left with missing data

OneDrive File Picker Flaw Gives Apps Full Access to User Drives

Oregon becomes second state to ban sale of precise geolocation data

Over 200K fraudulent developers were kicked out of the Apple App Store last year

Over 360K exposed after Christmas hack at data analytics giant

OxBykes reports data breach caused by App misconfiguration

Phishing email impersonating Monterey County sheriff targets thousands, officials warn

Ransomware attack against Wisconsin city hits almost 67K

Ransomware attack disrupts MathWorks services, investigation ongoing

Ransomware gang claims cyberattack on Mediclinic, threatens data leak

RE/MAX deals with alleged 150GB data theft: Medusa ransomware demands $200K

Revenue Cycle Management Firm's Data Breach Total Soars

Robbinhood Ransomware Operator Charged for Attacking Government and Private Networks

Russia-linked hackers are attacking small businesses using fake Microsoft Entra pages

Russian hackers responsible for theft of personal data of tens of thousands Dutch police officers

Salvation Army suffers alleged ransomware attack

Security Gaps Are Leaving Firms Wide Open to Ransomware

SilentWerewolf Attack Combines Legitimate Tools with Code Obfuscation for Stealthy Infiltration

Sri Lanka: Pensions Department Hit By Ransomware Attack; No Data Loss Reported

Sri Lanka's Pensions Department Hit By Cloak Ransomware, 617GB Of Data Allegedly Leaked

Staggering data breach at New Jersey hospital impacts over 57,000. Are you one of them?

Sui network votes to hack the hacker who drained $220m from Cetus

Sygnia Uncovers North Korean Hacker Posing as Employee in Insider Cyberattack

The latest in phishing scams: stealing your information through fake online forms

The rise of AI-driven phishing attacks: A growing threat and the power of smarter defenses

The Salvation Army Allegedly Breached by Threat Actor Chaos

Top math software and services platform still offline following ransomware attack

UChicago Med confirms data breach of patient information

Ukraine tallies up Russian cyberattacks on local media since start of war

Victims react after data breach in Baltimore Archdiocese abuse case

Victoria’s Secret hit by outages as it battles security incident

Vietnam-Nexus Hackers Distribute Malware Via Fake AI Video Generator Websites

West Lothian Council acknowledges data loss from cyber attack

Who’s Afraid of Ransomware?

Worldwide Operation Shuts Down Hundreds of Ransomware Servers and Domains, Ending Key Attack Infrastructure

27th May

4.5% of breaches now extend to fourth parties

5 Largest Ransomware Attacks Ever Recorded

8.75 million hit by online threats in South Africa in Q1

94 billion browser cookies are being sold to hackers on Telegram

840k-patient per year hospital empire fights ransomware attack

67,947 Americans Warned as US City Data Breach May Have Exposed Names, Dates of Birth, Social Security Numbers and More

Adidas become latest victims of cyber attack as customers warned of data breach

Adidas confirms customer data stolen in cyber attack

Adidas Confirms Cyber Attack, Customer Data Stolen

Adidas Data Breach - Customer Data Exposed Via Third-Party Service Provider

Adidas Data Breach Exposes Customer Contact Info

Adidas Discloses Cyber-Attack, Customer Data Compromised

Adidas Falls Victim to Third-Party Data Breach

Adidas hit by major cyber attack as customer details exposed

Adidas loses customer data in latest cyber attack

Adidas says customer data stolen in cyber attack

Adidas Says Cyberattack Targeted Customers’ Personal Information, Credit Card Data Marked ‘Safe’ From Breach

Adidas warns cyber attack stole customer data

Adidas warns of data breach after customer service provider hack

Africa faces rising ransomware threat, warns Kaspersky

After Pahalgam Attack, How Pakistan Unleashed Cyber Terrorism On India

AI is perfecting scam emails, making phishing hard to catch

Akira Ransomware Group Claims Breach of Laboratorios Belloch, Exposing Sensitive Data

Alleged Data Breach at Bangladesh Road Ministry

Anti-Corruption Platform Ipaidabribe.com Allegedly Suffers Major Data Breach

Cash-strapped university facing a class action lawsuit over data breach

China accuses Taiwan-linked group of cyberattack on local tech company

China, Taiwan trade accusations over cyberattacks

Coca-Cola Denies Ultimatum: Everest Ransomware Group Dumps Employee Data Due to Unpaid Ransom

Coca-Cola Europacific Partners targeted in major data breach

Coca-Cola ignores ransom demand, hackers dump employee data

Coinbase Data Breach Exposes Crypto Founders: Security Risks and Trading Implications in 2025

Coinbase faces legal action following data breach impacting more than 69k customers

Cooper Health System data breach affects nearly 60,000 individuals

Cybercriminals Clone Antivirus Site to Spread Venom RAT and Steal Crypto Wallets

Data Breach at Alera Exposed Data of More Than 10,000 Individuals

Data breach at KBC Securities Services: financial information leaked to thousands of customers

DragonForce actors target SimpleHelp vulnerabilities to attack MSP, customers

DragonForce looking to usurp other ransomware gangs

DragonForce ransomware abuses SimpleHelp in MSP supply chain attack

DragonForce Ransomware Leveraged in MSP Attack Using RMM Tool

Dutch intelligence unmasks previously unknown Russian hacking group 'Laundry Bear'

Elit Avia allegedly targeted by ransomware gang, crew data leaked

Employees Searching Payroll Portals on Google Tricked Into Sending Paychecks to Hackers

Europol, as part of Operation Endgame 2.0, destroyed the infrastructure of hacker groups and paralyzed their operations

Everest Ransomware Leaks Coca-Cola Employee Data Online

FBI Warns about Silent Ransom Group Targeting Law Firms

FBI warns legal firms of Luna Moth extortion attacks where hackers will call their office

French ISP ‘Free’ 2024 Data Breach Exposed Almost 14 Million User Accounts

Germany raises alarm over Windows Server 2025 flaw rated 9.9/10

GitLab ‘Vulnerability Highlights the Double-Edged Nature of AI Assistants’

Global Cyber Raid: ₹190 Crore Ransomware Network Crushed Were You A Target?

Global data breach affects 184 million users, no damage reported in Pakistan

Governments Urge Organizations to Prioritize SIEM/SOAR Adoption

Guangzhou police attribute cyberattack on tech company to hacker group allegedly linked to Taiwan’s Democratic Progressive Party (DPP)

Hackers Are Calling Your Office: FBI Alerts Law Firms to Luna Moth's Stealth Phishing Campaign

Hackers Mimic OneNote Login to Steal Office365 & Outlook Credentials

Hackers steal Adidas customer data in cyber attack

Hackers Use Fake OneNote Login to Capture Office365 and Outlook Credentials

Hong Kong Monetary Authority (HKMA) Warns Public About Fraudulent Banking Websites and Phishing Scams

How CISOs can defend against Scattered Spider ransomware attacks

How Does External Attack Surface Management (EASM) Go Beyond Vulnerability Management?

How well do you know your remote IT worker?

Iranian Man Pleads Guilty to Role in Baltimore Ransomware Attack

Iranian national admits to Greenville City Hall ransomware attack

Iranian pleads guilty to launching Baltimore ransomware attack, faces 30 years behind bars

Iranian pleads guilty to RobbinHood ransomware attacks, faces 30 years

Jordan’s major bank data stolen, claim hackers

Kettering Health radiation oncology back to treating patients after cyber attack

Kettering Health says radiation oncology is back online after ransomware attack

'Kisses from Prague': The fall of a Russian ransomware giant

Law Firms Warned of Silent Ransom Group Attacks

Legal Practice Board of Western Australia confirms Dire Wolf ransomware attack

Major hack exposes 184 million Apple and Google accounts: Change your passwords NOW

Malicious Machine Learning Model Attack Discovered on PyPI

Marks & Spencer (M&S) cyber attack latest as customers warned of scam emails

Marks & Spencer (M&S) cyber attack probe looks at possible IT helpdesk hack, online fashion still 'weeks away' from return

Marlboro-Chesterfield Pathology breach affected over 235,000 patients

Massive 47GB Data Breach Exposes Millions Of Passwords For Google, Netflix And More

MathWorks, Creator of MATLAB, Confirms Ransomware Attack

MATLAB developer bringing systems back online following ransomware attack

MATLAB developer confirms ransomware attack behind service outage

Meta wants to use your content to train its AI, and no GDPR will stop it

Microsoft, Dutch security agencies lift veil on Laundry Bear cyber espionage group

More than 184 million passwords exposed in massive data breach - Apple, Google, Microsoft and more

Nationwide Recovery Service Data Breach Victim List Grows

Nearly 70,000 impacted by ransomware attack on Sheboygan, Wisconsin

Nearly 280,000 impacted by Nova Scotia Power ransomware hack

New Jersey hospital hack exposes patients’ personal details

New Russian Cyber Threat ‘Laundry Bear’ Hits Western Targets

New Self-Spreading Malware Infects Docker Containers to Mine Dero Cryptocurrency

New York Department of Motor Vehicles (DMV) warns of latest fraudulent text message scam. What to do if you're targeted

Nova Scotia Power confirms it was hit by ransomware attack but hasn’t paid the ransom

Operation ENDGAME cracks down on ransomware

Pakistan’s National Cyber Emergency Response Team (CERT) warns after massive global data breach affecting 180 million users

Pakistanis Asked to Change All Social Media Passwords after Data Theft

Pakistanis Urged To Immediately Change All Passwords After Massive Global Data Breach

Palo Alto Networks Report Identifies Evolving Ransomware Tactics in Asia Pacific

Planned Parenthood Patients File Lawsuits Over Laboratory Services Cooperative Data Breach

Preparing for the UK's Cyber Security and Resilience Bill

Preparing your organisation for a potential ransomware payment ban

Ransomware attack on MATLAB developer MathWorks - licensing center still locked down

Ransomware attacks on banks: trends and prevention strategies

Regulator has closed case in fundraising platform after data breach

Robbinhood ransomware: Iranian man pleads guilty to cyber crime that cost US government millions

Russia-Affiliated Void Blizzard Impersonates European Defense & Security Summit in Phishing Emails

Russia-Linked Hackers Target Tajikistan Government with Weaponized Word Documents

Russian hackers behind attacks on police, NATO, Dutch intelligence says

Russian Hackers Breach 20+ NGOs Using Evilginx Phishing via Fake Microsoft Entra Pages

Russian hospital programmer gets 14 years for leaking soldier data to Ukraine

Russian Laundry Bear cyberspies linked to Dutch Police hack

SafePay ransomware hits over 235K Marlboro-Chesterfield Pathology patients

Scam email imitating Dallas’ planning department asks for thousands of dollars in fees

Securing Healthcare: Safeguarding Patient Care and Privacy Through Agile Cyber Strategies

South Korea expands data breach investigation to KT and LG Uplus

Taiwan's Democratic Progressive Party (DPP) authorities found organizing cyberattacks against Guangzhou tech company

Threat Actors Use Fake DocuSign Notifications to Steal Corporate Data

United Airlines Faces Alleged Data Breach 272 Million Records Exposed

Unsophisticated Actors, Poor Hygiene Prompt Critical Infrastructure (CI) Alert for Oil & Gas

US Government Launches Audit of NIST’s National Vulnerability Database

US law firms facing Luna Moth ransomware threat

Vulnerabilities found in NASA’s open source software

Warning issued to anyone who gets Marks and Spencer (M&S) e-mails after cyber attack

What Is Anti-Ransomware? Why Detection Alone Won’t Stop the Next Attack

What will be the impact of Operation Endgame?

Why app modernization can leave you less secure

Why Quiet Expertise No Longer Wins Cybersecurity Clients

Word to the wise: Beware of fake Docusign emails

26th May

$2.5M Gone in Hours - Victim Hit Twice in Sophisticated Stablecoin Phishing Scam

$2.5 Million Vanishes in Double Crypto Phishing Scam

$4.4 Million Settlement Agreed to Resolve WellNow Urgent Care Data Breach Litigation

52% of Security Operations Center (SOC) Teams Are Overworked, New Report Shows

Adidas confirms customers data breach

Adidas Confirms Data Breach Impacting Customers Who Interacted with Help Desk in Turkiye

Adidas Confirms Data Breach of Customer Information

Adidas next retailer hit by cyber attack

AI forces security leaders to rethink hybrid cloud strategies

AI, Ransomware, and IoT Dominate Kaspersky’s Cybersecurity Outlook for META Region

Alleged 500GB Data Leak Impacts Chinese Industrial Gas Giant Messer Group

Asia-Pacific region experiences 13% growth in cyber-attacks

BIOS under attack: hackers increasingly focus on boot threats

Cellcom hit by major cyber attack, disrupting voice and text services

Chevrolet retailer in Brazil allegedly hit by cyberattack

Chinese Hackers Exploit Cityworks 0-Day to Hit US Local Governments

Chinese Hackers Exploit Cityworks Flaw to Target US Local Governments

Coinbase Breach Explained: Bribed Support Agents, Stolen Data and a $20M Bounty

Coinbase faces another data breach lawsuit claiming stock drop damages

Coinbase Faces Class Action Lawsuit Over Data Breach and UK Regulatory Violations

Cooper Health System Data Breach Affects Almost 60,000 Individuals

Crypto investor loses $2.6M in stablecoins in double phishing scam

Crypto Investor Suffers $2.6 Million Loss in Stablecoins Through Sophisticated Double Phishing Scam

Cyber attack to cost Marks & Spencer (M&S) £300 million, operations disrupted through July

Data Breach Fallout: Coinbase Sued Over Hidden UK Regulator Deal

Data breach hits over 180 million users globally, including Pakistan

Electricity supply emerges as prime cyber attack target

Energy provider confirms ransomware attack and data breach

EsSalud Peruvian Health Insurance Data Allegedly Leaked Online

Europol, as part of Operation Endgame 2.0, destroyed the infrastructure of hacker groups and paralyzed their work

FBI warns law firms they’re being targeted by hackers

Former employees pursue class action over ‘concealed’ data breach at Interior Health

Fraud conviction overturned for DeFi exploiter behind $114M Mango Markets manipulation

Global Law Enforcement Cripples Ransomware Infrastructure

Hacker Steals $223 Million From Crypto Platform Cetus

Hackers Breach Indonesia's Perludem Site to Promote Online Gambling

Hackers just hit a $5 Billion hospital empire, demand ransom

Hackers steal $2.6M in double crypto phishing scam

Hacktivism Reborn: How a Fading Cyber Threat Has Become a Modern Battleground

Here’s how you can protect yourself from being scammed with deepfakes

How to Avoid Common Crypto Scams and Phishing Attacks in 2025

Hundreds demand compensation following SK Telecom data breach that affected millions

Impersonating Meta, Powered by AppSheet: A Rising Phishing Campaign Exploits Trusted Platforms to Evade Detection

India Meteorological Department (IMD) restricts access to weather data over fear of cyber attack

Investigation into SK Telecom data breach expands to KT, LG Uplus

Investor Sues Coinbase Over Stock Slide Tied to Data Breach and $4.5 Million Financial Conduct Authority (FCA) Fine

Kaspersky Identifies Evolving Ransomware and Cybersecurity Trends in META Region

Luxury aviation services firm allegedly breached, staff details leaked

Major AT&T leak exposed 31 Million records, hackers claim

Major data breach as 184 million Apple, Netflix, Google logins leaked

Marks & Spencer (M&S) boss issues major cyber attack update after online orders paused

Marks & Spencer (M&S) hack may have been caused by security issues at Indian IT giant Tata Consultancy Services

Marks and Spencer chief gives online ordering update after 'cyber incident'

Marlboro-Chesterfield Pathology data breach impacted 235,911 individuals

Massive Data Breach Exposes 184 Million Login Credentials

Massive Global Data Breach Compromises 184 Million Google, Microsoft, and Social Media Accounts

Massive global data breach exposes over 180 million user accounts

Mumbai Advertising Firm Hit by Ransomware Attack, Hackers Demand Bitcoin

National Institute of Standards and Technology (NIST) Introduces New Metric to Measure Likelihood of Vulnerability Exploits

National Institute of Standards and Technology (NIST) proposes new metric to gauge exploited vulnerabilities

Nigeria, South Africa among countries with escalated online threats in Q1 2025

No Power Outage, Just a Data One: Nova Scotia Hit by Ransomware Surge

Nova Scotia Power confirms data breach, customer information compromised

Nova Scotia Power Confirms Ransomware Attack - 280k Customers Affected

Nova Scotia Power Confirms Ransomware Attack, 280k Notified of Data Breach

Nova Scotia Power confirms 'sophisticated' ransomware attack

Over 70 Malicious npm and VS Code Packages Found Stealing Data and Crypto

Over 180 million users’ passwords, login credentials stolen in massive data breach, says national cyber security body

Pakistan: National Cyber Emergency Response Team (PKCERT) issues urgent warning following massive social media data breach

Phishing attacks exploit AppSheet to mimic Meta & evade defences

Phishing Tactics Are Evolving - Here’s How Cybercriminals Are Getting Smarter

Probe into SK Telecom data breach expands to KT, LG Uplus

Ransomware a leading cause of U.S. health data breaches

“Reject all” cookies button must be present and visible, German court says

Researchers Drop Proof-of-Concept (PoC) for Fortinet CVE-2025-32756, Urging Quick Patching

Salesforce hack at largest Coca-Cola bottler

Scammers Use Fake Ledger Letters to Steal Crypto Wallet Info

SilverRAT Source Code Leaked Online: Here’s What You Need to Know

Sophisticated Hacker Group TA-ShadowCricket Attacking Government & Enterprise Networks

Staying one step ahead of ransomware attacks in 2025

Street-Level QR Phishing: Cybercriminals Take Social Engineering to the Real World

TA-ShadowCricket: Sophisticated Hacker Group Targeting Government and Enterprise Networks

This dangerous new phishing scam spoofs a top Google program to try and hack Facebook accounts

Tiffany confirms data breach in South Korea following Dior incident

Trojanized Version of Popular Password Manager KeePass Distributed Via Malicious Search Ads, Fueled Extended Campaign of Ransomware Attacks

U.S. Banking Associations Petition Securities and Exchange Commission (SEC) to Rescind Cyber Breach Reporting Mandate

UK, US Police Target Ransomware Gangs In Latest Action

Unsecured database leak exposes 184 million login records from major technology platforms

What happens when a business is targeted by a cyber attack?

Why layoffs increase cybersecurity risks

Zscaler ThreatLabz 2025 Phishing Report: Phishing Evolves With GenAI

Posted by at
Labels:
Subscribe to: Posts (Atom)