Welcome to DBD. On March 8th, DBD celebrated it's 5th anniversary and 
Dentons Senior Analyst, Washington DC
Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 5th May and 11th May 2025.11th May
23andMe customers notified of bankruptcy and potential claims - deadline to file is July 14th
Abergavenny affected in job centre data breach last year
Beware - These Ransomware Hackers Are Watching You Work
Edinburgh Council issues update after 'phishing attack' on schools during exams
Edinburgh schools cyber attack: Council says no data was compromised as pupils reset their passwords in school
‘Hello pervert’: the sextortion scam claiming to have videoed you
iClicker site hack targeted students with malware via fake CAPTCHA
Ledger restores control of Discord after hacker compromised moderator account
Majority of Indian websites hacked in Pakistani cyber attack
Phishing Campaigns Abuse MyStrikingly.com to Target Email and Web Hosting Accounts
Ransomware attacks in UAE increased 32% Year-on-Year in 2024 says UAE Cybersecurity Council
Ransomware Crisis Looms Over UK Retail Giants: National Cyber Security Centre (NCSC) Issues Urgent Alert
South Korea mandates lenders to verify customers to combat voice phishing
10th May
413,032 Americans Affected As Major Data Breach Leaks Customer Names, Social Security Numbers, Financial Records and More
AI is making phishing emails far more convincing with fewer typos and better formatting: Here's how to stay safe
Ascension reveals personal data of 437,329 patients exposed in cyberattack
Check Point Uncovers Sophisticated Phishing Campaign Using Microsoft CRM Platform
Cyber attack on Edinburgh’s schools and early years network
Cyber Attack on India Today: Pakistani Hackers Leak Indian Military Data on Dark Web
Cybercriminals have found a sneaky way of stealing tax accounts and even encrypted messages: here's what you need to know
DragonForce Behind Major UK Retail Cyberattacks: Co-op Confirms Data Breach
Edinburgh Council gives update after 'phishing attack'
Edinburgh schools targeted in cyber attack as pupils passwords reset
Edinburgh schools targeted in phishing attack that leaves pupils locked out of online accounts
Employee Monitoring Software Kickidler Weaponized in Sophisticated Ransomware Attacks
Fake AI video generators drop new Noodlophile infostealer malware
Germany Shuts Down eXch Over $1.9B Laundering, Seizes €34M in Crypto and 8TB of Data
Global Ransomware Developer Trial Starts in Brussels...Unprecedented Evidence Unveiled
Google Pays $1.375 Billion to Texas Over Unauthorized Tracking and Biometric Data Collection
Google will pay Texas $1.4 billion to settle privacy lawsuits
Hacker claims role in Star Health executive threat
Hamilton County Sheriff’s Office Allegedly Breached By Qilin Ransomware Group
Help for most remote Co-op stores after cyber attack left shelves empty
Major Data Breach Exposes Social Security Numbers, Financial Records and Much More
Major Indian websites hacked in successful cyber attack by Pakistan
New DOGE-Trolling Attacks Confirmed - $1 Trillion Payment Demanded
New Zealand: Fake cyclone alerts being used in phishing scams
Operation CyberShakti: Indian vigilante hackers’ cyber attack on Pakistan government websites
Pakistan Cyber Attack Results in Complete Collapse of Solar, Wind Power Grids in Indian State
Pakistan destroy 70% of India’s power grid in cyber attack
Pakistan Destroys Key Indian Military Sites, Launches Cyber Attack in Escalating Conflict
Pakistan launches major cyber attack on India: 26 key websites defaced and data leaked
Pakistan unleashes massive cyber attack against India; major sites hacked
Pakistani cyber attack hacks major Indian websites, leaks sensitive data on Dark Web
Red Alerts & Rippers: 2025’s Most Dangerous Hacker Crews Targeting India
Scotland's schools 'vulnerable' to phishing crime after THIRD attempt to break into education network saw pupils face exams chaos
Scottish schools hit by cyber attack as exam revision thrown into chaos
Scottish schools suffer phishing attack during exam period
Several job centres suffer data breaches claims Data Breach Claims UK
SK Telecom faces major fine over data breach
Sophisticated PhaaS Phish Toolkits are Now Generating Realistic Fake Phishing Pages
Thousands of pupils attend school on Saturday after online phishing attack
Thousands of pupils' reset passwords after schools targeted in cyber attack
UK warned cyber security efforts lag behind evolving threats
9th May
20 North Carolina districts emailed by “threat actors” related to PowerSchool data breach
160-Year-Old Haulage Firm Falls After Cyber-Attack: Director Issues Urgent Warning
7,000-Device Proxy Botnet Using IoT, EoL Systems Dismantled in U.S. and Dutch Operation
A cyber attack briefly disrupted South African Airways operations
A top Venture Capital (VC) firm says investor details were stolen in a data breach
AllTrust breach exposes data of over 160,000 people
Almost 100% of examined Solana memecoins are scams
Ascension says recent data breach affects over 430,000 patients
Bank Data Breach Blamed on Insider As Social Security Numbers, Account Information and Addresses of 43 Customers Exposed
Beware of the “Dance of the Hillary” video & “tasksche.exe ” file circulating online; Pakistan’s alleged cyber attack virus targets Indian users
Businesses Should Take a Lifecycle Approach to Device Security
California: Department of Justice says data breach exposed information on diocesan sex abuse survivors
Chinese hackers behind attacks targeting SAP NetWeaver servers
Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell
Crypto investor loses $0.5M to scammers, helps uncover industrial-scale crypto theft scheme
CVSS 10.0 Vulnerability Found in Ubiquity UniFi Protect Cameras
Cyberattackers Targeting IT Help Desks for Initial Breach
Cybercriminals Target Deel, Shopify, Marqeta, OmniFlex in Advanced Google Ads Phishing Scam
'Dance of the Hillary' Virus: Pakistan-Linked Cyber Attack Targets Indians - All You Need To Know
Data breach confirmed by Insight Partners
Edinburgh: Revision disrupted as cyber attackers target council
Edinburgh school networks targeted in phishing attack leaving students without access before exams
Edinburgh schools hit by cyber attack targeting pupils as passwords reset
Edinburgh schools targeted by phishing attack ahead of exams
Elon Musk, Ronaldo, and Binance are the bait in Facebook’s latest scam
England and Wales's Legal Aid Agency reports potential data breach
Fake AI platforms deliver malware diguised as video content
Farewell to M&S – cyber attack cripples operations and leaves employees sleeping in the office
FBI and Dutch police seize and shut down botnet of hacked routers
FBI Sounds Alarm on Rogue Cybercrime Services Targeting Obsolete Routers
Finland: National Bureau of Investigation (NBI) suspects another person´s involvement in Vastaamo data breach
Florida bill requiring encryption backdoors for social media accounts has failed
Forsyth County Schools Warn Students, Staff About Hacker Threats
FreeDrain Phishing Attack Targets Users to Steal Financial Login Credentials
From GitLab to Global Chaos: Education Giant Pearson Hit by Cloud Data Breach
German operation shuts down crypto mixer eXch, seizes millions in assets
Germany takes down eXch cryptocurrency exchange, seizes servers
Google adds scam-fighting AI to Chrome: will detect malicious websites
Google Chrome to use on-device AI to detect tech support scams
Google Deploys On-Device AI to Thwart Scams on Chrome and Android
Google Expands On-Device AI to Counter Evolving Online Scams
Google Rolls Out On-Device AI Protections to Detect Scams in Chrome and Android
Hacker Behind Star Health Data Leak Claims Sending Death Threats to Company Executives
Hacker Targets Star Health with Death Threats After Major Data Leak
Hackers hijack Japanese financial accounts to conduct nearly $2 billion in trades
Half of South Korea Hit: SK Telecom’s Worst Data Breach in History
Hamilton County Sheriff’s Office allegedly hit by ransomware
How Security Has Changed the Hacker Marketplace
Hungary’s Biometric Laws Breach EU AI Act, Endanger LGBTQ+ Rights
India-Pakistan War Goes Digital: Your WhatsApp, Facebook, Telegram At Cyber Attack Risk; Here's How To Stay Safe
Initial Access Brokers Target Brazil Execs via NF-e Spam and Legit RMM Trials
Inside LockBit: Hack Reveals Secrets of World’s Most Notorious Ransomware Gang
Investigation ongoing after West Lothian schools targeted in cyber attack
Iowa County computer network was impacted by ransomware
Karachi Port Trust (KPT) official X account restored after Indian-origin cyber attack
Kaspersky State of Ransomware Report 2025: Global and Regional Insights for International Anti-Ransomware Day
Law Enforcement Takes Down Botnet Made Up of Thousands of End-Of-Life Routers
Legacy Login in Microsoft Entra ID Exploited to Breach Cloud Accounts
Legal Aid Agency (LAA) portal to remain offline following data breach
LockBit hacked: What does the leaked data show?
LockBit Ransomware Gang Breached, Secrets Exposed
LockBit ransomware gang hacked again
LockBit Ransomware Gang Hacked, Operations Data Leaked
LockBit ransomware group falls victim to hackers itself
LockBit Ransomware Group Hacked; Operations Database Leaked
Lockbit Ransomware Group Has Been Hacked
LockBit ransomware group hit by data breach, affiliate panel hacked and database dump leaked
LockBit Ransomware Group Reportedly Suffers Data Breach, Extortion Tactics Revealed
LockBit ransomware platform breached again
LockBit’s Own Medicine: Ransomware Kingpin Hacked, Secrets Spilled
Malicious npm Packages Infect 3,200+ Cursor Users With Backdoor, Steal Credentials
Mandiant links DragonForce ransomware attacks on UK retailers to UNC3944 tactics, highlighting links to RansomHub
Marks and Spencer cyber attack: How long will its online ordering be down - as it loses potentially more than £3m a day
Masimo reports cyber incident affecting production sites
Massive DDoS-for-hire network seized
Microsoft bans DeepSeek in offices due to data breach fears
Microsoft Dynamics 365 Customer Voice Phishing Scam
Middlesbrough school targeted in cyber security attack as parents warned about data breach
New Advanced Phishing Attack Exploits Discord to Target Crypto Users
New Mamona Ransomware Targets Windows Systems Using Abused Ping Command
Nomad Bridge Hacker Apprehended in Connection with $190 Million Heist
North Korean ‘IT worker scams’ take on female personas, expand to Europe, Japan
Only 11% of SMBs Are Utilizing AI-Powered Defenses
OpenText Report Shines Spotlight on Malware Infection Rates
Over 40 Hacktivist Groups Target India in Coordinated Cyber Campaign: High Noise, Low Impact
Pakistan Cyber Attack on India Amid India-Pakistan War: Unveiling the Digital Battlefield and Its Impact
Phishing attack on Edinburgh schools IT system on Friday
Phishing attack sees Edinburgh pupils locked out of online learning materials
Phishing Attack Uses Blob URIs to Show Fake Login Pages in Your Browser
Phishing scam: Facing a broken economy, Ghana's tech-savvy teens turn to fraud
Play Ransomware Deployed in the Wild Exploiting Windows 0-Day Vulnerability
Police dismantles botnet selling hacked routers as residential proxies
Popular employee monitoring software hijacked to launch ransomware attacks
PowerSchool Admits Ransom Payment Amid Fresh Extortion Demands
PowerSchool data breach leads to school extortion attempts
Ransomware: What the LockBit 3.0 data leak reveals
Ransomware attacks expose urgent risks for critical utilities
Ransomware attacks facilitated by Kickidler software
Ransomware group Lockbit appears to have been hacked, analysts say
Ransomware group LockBit faces breach, affiliate data exposed
Ransomware impacted Iowa County computer network, officials confirm
Ransomware Unveiled: How the LockBit Breach Exposes the Digital Extortion Economy
Remote Ransomware on the Rise
Russia’s COLDRIVER Hackers Evolve: “LostKeys” Malware Replaces Phishing in Strategic Attack
Russian Phishing Campaign Uses Fake CAPTCHA to Deliver Malware to Ukraine-Aligned Officials
Scotland: 'Get the people fed' say islanders hit by Co-op cyber attack
SK Telecom (SKT) could lose $5B from data breach fallout
South Korea: Government to announce findings in SK Telecom (SKT) data breach probe by end-June
Star Health Data Breach: Hacker ‘xenZen’ Takes Responsibility of Sending Death Threats, Bullets to CEO Anand Roy and CFO Nilesh Kambli
Star Health hacker claims sending bullets and death threats to top executives
Star Health hacker says they sent death threats, bullets to India executives
Sweetwater County School District (SCSD) No. 1 Reports PowerSchool Hacker Attempting to Extort School Districts
The Co-op Confirms Significant Data Theft from an Apparent Dragonforce Ransomware Cyber Attack
The Growing Threat of Phishing and Social Engineering Attack and How to Defend Against Them
The industry speaks: International Anti-ransomware Day 2025
TheMoon Malware Targets Aging Routers, FBI Issues Alert
Three Russians, one Kazakhstani charged in takedown of Anyproxy and 5socks botnets
Toronto School Board Hit with Extortion Demand After PowerSchool Data Breach
UK cyber attack warning as crumbling defences put millions at risk
UK’s Legal Aid Agency Experiences Cyberattack
UN Launches New Cyber-Attack Assessment Framework
US surveillance watchdog says expanded use of facial recognition at airports should be voluntary
Valuable Information Leaked in LockBit Ransomware Hack
What is the 'Dance of the Hillary' Virus? All You Need to Know About the Pakistan-Linked Cyber Attack Targeting Indians
What your browser knows about you, from contacts to card numbers
Your password manager is under attack, and this new threat makes it worse: How to defend yourself
8th May
$20 Million Settlement Agreed to Resolve Fortra GoAnywhere Data Breach Multidistrict Litigation
30 London Job Centres struck by data breaches
60K Bitcoin addresses leaked as LockBit ransomware gang gets hacked
94% of Fortune 50 Firms Hit by Phishing Attempts
470 Ransomware Attacks in April 2025, Qilin Remains Dominant Followed by Silent & Crypto24
38,000+ FreeDrain Subdomains Found Exploiting SEO to Steal Crypto Wallet Seed Phrases
60,000 Bitcoin Wallets Leaked As LockBit Ransomware Hackers Get Hacked
A timeline of South Korean telco giant SKT’s data breach
Agenda Ransomware Group Upgraded Their Arsenal With SmokeLoader and NETXLOADER
Analysis of AI tools: 84% breached, 51% facing credential theft
Are your AI tools secure? New analysis reveals gaps among market leaders
At a Time of Armed Escalation Against India, Why a Digital Blackout Matters - and How to Do It
Backing up is the key for business in foiling hackers and ransomware attacks
Bartlesville schools confirm ransomware attack in network breach, investigation continues
Breaking down ransomware as a service
Chinese Hackers Flood Japan with 580 Million Phishing Emails Using ‘CoGUI’ Kit
CISA Warns of Cyberattacks Against Critical Oil and Gas Infrastructure
Cisco fixes max severity IOS XE flaw letting attackers hijack devices
Cisco Patches CVE-2025-20188 (10.0 CVSS) in IOS XE That Enables Root Exploits via JWT
Co-op 'diverts goods' to remote stores following cyber-attack to avoid shortages
Co-op forced to divert supplies to remote countryside shops to avoid communities being cut off after cyber attack
Co-op pauses deliveries of non-essential items amid cyber attack
Coalition sees decline in ransom demands, rise in Business Email Compromise (BEC) severity
'CoGUI' Phishing Kit Helps Chinese Hackers Target Japan
CoGUI Phishing Scam: 580 Million Emails Flood Inboxes Worldwide
Coinbase users keep losing tens of millions to scammers while exchange remains silent
Confusion Reigns as Threat Actors Exploit Samsung MagicInfo Flaw
Criminal investigation into cyberattack affecting 86 West Lothian schools continues
Criminal probe into West Lothian schools cyber attack continues as staff thanked for patience
CVE-2025-20188: Cisco Fixes 10.0-Rated Wireless Controller Flaw
Cyber attack disrupts operational systems at South African Airways
Cyber attack on Horizon Behavioural Health exposes personal information of nearly 50,000 patients
Data breach exposes LockBit ransomware gang
Data breach involving Baltimore Archdiocese bankruptcy case concerns Department of Justice (DOJ)
Data breach statistics at jobcentres obtained by Freedom of Information (FOI) request
Digital Wallets at Risk: Is Cyber Insurance Worth It?
DOGE Big Balls Ransomware Leverages Open-Source Tools and Custom Scripts for Multi-Stage Attacks
'Don't do crime, crime is bad' - Hack on ransomware gang LockBit exposes 59,975 Bitcoin addresses and thousands of victim negotiations
Double-extortion tactics used in PowerSchool ransomware attack
DragonForce Emerges as New Ransomware Cartel in 2025
Education giant Pearson hit by cyberattack exposing customer data
Empty shelves in Welsh supermarkets as cyber attack force branches to go 'cash only'
End-of-life routers hacked for cybercrime proxy networks
Estero-based rental car giant Hertz faces class-action lawsuits over data breach
Europol Issues Public Alert: ‘We Will Never Call You’ as Phone and App Scams Surge
Extensive credential theft conducted by new CoGUI phishing kit
Fake AI Tools Push New Noodlophile Stealer Through Facebook Ads
Fake Crypto Exchange Ads on Facebook Spread Malware
Global cybersecurity readiness remains critically low
Google links new LostKeys data theft malware to Russian cyberspies
Google Security Alert: Healthcare Professionals Urged to Stay Vigilant Amid Rising Phishing Threats
Hack to the future: cyber-crime goes multichannel
Hacker Finds New Technique to Bypass SentinelOne EDR Solution
Hacker group Anonymous SHUTS DOWN website of airline carrying out Trump deportations
Hacker Leaks Stolen LockBit Ransomware Operation Database
Hacker Reignites PowerSchool Breach, Targets Schools Despite Ransom Deal
Hackers aren't just targeting Fortune 500 - they're coming for you
Hackers breached LockBit, admins say they are back on track
Harrods Hit in Third Cyber Attack Targeting a UK Retailer
Healthcare workers regularly upload sensitive data to GenAI, cloud accounts
How agentic AI and non-human identities are transforming cybersecurity
How businesses can help protect themselves from cyber attack
How to prevent man-in-the-middle attacks in 2025
If we don’t take cybersecurity seriously, maybe AI will
iHeartMedia confirms data breach exposed sensitive customer and employee information
iHeartMedia Faces Class Action Lawsuit After Major Data Breach
iHeartMedia Faces Lawsuit Following Data Breach
Inferno Drainer reemerges with increased sophistication
Is the M&S cyber attack a buying opportunity for investors?
Japan organizations targeted by CoGUI phishing kit impersonating Amazon, Rakuten
Job centre in Watford among five Hertfordshire branches hit with data breaches
Just 5% of Enterprises Have Deployed Quantum-Safe Encryption
Kickidler employee monitoring software abused in ransomware attacks
Kremlin hackers deploy file-sniffing malware through fake CAPTCHAs
Large increase in breach data shared on underground forums
Legal Aid Agency (LAA) suffers data breach in latest UK cybersecurity incident
LockBit Breach: Hacker Leaks Over 60,000 Bitcoin Addresses, Credentials, and Logs
LockBit breach exposes 60,000 Bitcoin addresses, offers bounty for hacker’s identity
LockBit hacked: Crypto addresses, chat logs, ransomware builds, all compromised
LockBit ransomware Bitcoin addresses exposed
LockBit ransomware gang gets hacked, leak exposes negotiations with victims
LockBit Ransomware Gang Hacked, 60,000 Bitcoin Addresses Exposed
LockBit ransomware gang’s website compromised
LockBit Ransomware Group Breached: Internal Chats and Data Leaked Online
LockBit Ransomware Group Hacked, 60K Bitcoin Addresses Leaked
LockBit ransomware group hit by data breach
LockBit Ransomware Hacked: Database and Victim Chats Leaked
Lockbit Ransomware Hacked – Leaked Database Exposes Internal Chats
LockBit Ransomware Hacked, Insider Secrets Exposed
Lockbit Ransomware Hackers Got Hacked Again: Database, Plaintext Passwords Leaked
LockBit ransomware website hacked, database and Bitcoin keys leaked
LockBit’s Dark Web Domains Hacked, Internal Data and Wallets Leaked
Majority of cyber insurance ransomware claims are due to Business Email Compromise (BEC)
Malicious PyPi package hides RAT malware, targets Discord devs since 2022
Marks & Spencer (M&S) will have to fight to regain consumer trust after cyber attack
Marks & Spencer Hackers Tricked IT Workers Into Resetting Passwords
Ministry of Justice (MoJ) investigates after Legal Aid Agency hit by data breach
MirrorFace Targets Japan and Taiwan with ROAMINGMOUSE and Upgraded ANEL Malware
National Cyber Security Centre (NCSC): Resist Giving Into Ransomware Payment Urge
New alert issued as Action Fraud reveals staggering rise of extortion phishing email reports in March
New Campaign Targets HR Departments With False Resumes
New DOGE Big Balls Ransomware Using Open-Source Tools & Custom Scripts to Infect Victim Machines
North Carolina schools targeted for extortion again, months after PowerSchool data breach
North Carolina won’t renew PowerSchool contract after data breach, texts from ‘threat actors’
Novel scam spoofs CNN and impersonates Apple within one ad on X
Paid Off Once Already, PowerSchool Hacker Demands More Money
Paws off my data: iOS cat game leak exposes 450K users
Phishing Alert – Criminals are using social engineering to steal Wells Fargo customers’ banking information through fake messages
Phishing Kits Are Growing More Sophisticated; Focused on Bypassing MFA
Play Ransomware Zero-Day Attacks - US, Saudi Arabia Have Been Targeted
PowerSchool hack: School boards face new ransom demands months after leak
PowerSchool hackers try to extort money from schools, families after data breach
PowerSchool Paid a Hacker’s Ransom. Now Cyber Criminals Are Threatening Schools
PowerSchool paid a hacker’s ransom, but now schools say they are being extorted
PowerSchool Paid Ransom, Now Hackers Target Teachers for More
PowerSchool software provider admits ransomware attackers now extorting school districts
Protect Yourself From Cyber’s Costliest Threat: Social Engineering
Qilin beefs up arsenal with SmokeLoader, NETXLOADER payloads
Qilin Ransomware Ranked Highest in April 2025 with Over 45 Data Leak Disclosures
Ransomware costs ease but email-based attacks dominate, Coalition reports
Ransomware group Lockbit appears to have been hacked, analysts say
Ransomware hackers target a new Windows security flaw to hit businesses
Ransomware in retail
Ransomware reaches new heights: Inside the record-breaking surge of Q1 2025
Ransomware remains costliest cyber threat despite stabilisation
Ransomware remains most costly type of cyber attack despite claims stabilising
Ransomware still costly, but cyber claims down
Ransomware-as-a-Service (RaaS) Emerges as a Leading Framework for Cyberattacks
Ransomware-as-a-Service (RaaS) Evolved as a Predominant Framework for Ransomware Attacks
Russian Group Launches LOSTKEYS Malware in Attacks
Russian Hackers Using ClickFix Fake CAPTCHA to Deploy New LOSTKEYS Malware
Russian state-linked Coldriver spies add new malware to operation
Security Tools Alone Don't Protect You - Control Effectiveness Does
Shetland Islands: Deliveries to Co-op stores affected following cyber attack
SK Group chairman apologises for SK Telecom data breach
SK Telecom Faces Major Fine Over Data Breach
SMBs Know They’re At Risk, but Most Aren’t Embracing AI
SonicWall Patches 3 Flaws in SMA 100 Devices Allowing Attackers to Run Code as Root
SonicWall urges admins to patch VPN flaw exploited in attacks
South African Airways Suffers Cyberattack, Systems Restored Same Day
South Korea: Privacy watchdog chief signals substantial fine for SK Telecom (SKT) over data breach
Southeast Asian businesses face 400 ransomware attacks daily
Supply chain attack hits npm package with 45,000 weekly downloads
The many variants of the ClickFix social engineering tactic
The Rise of Ransomware – Strategies to Protect Your Systems
Top medical device maker Masimo confirms cyberattack, says products may be delayed
Top Ransomware Actors Actively Attacking Financial Sector, 406 Incidents Publicly Disclosed
Toronto District School Board (TDSB) Faces Ransom Demands After Data Breach
Toronto school district says data not deleted after ransom was paid to hacker
UK Cyber Essentials Certification Numbers Falling Short
UK Launches New Cybersecurity Assessment Initiatives to Drive Secure by Design
Understanding Ransomware Behavior: The Key To Ensuring Data Integrity
US Federal Agencies Alert on “Unsophisticated” Operational Technology (OT) Cyber-Threats
Venture Capital (VC) firm Insight Partners confirms personal data stolen during January hack
Venture Capital (VC) giant Insight Partners confirms investor data stolen in breach
Wave of tech layoffs leads to more job scams
West Lothian cyber attack investigation continues
Why ransomware is here to stay
Windows Common Log File System (CLFS) zero-day leveraged in Play ransomware attacks
Yet another SonicWall SMA100 vulnerability exploited in the wild (CVE-2025-32819)
Your old router is likely to hide cybercriminals – FBI urges replacing it
7th May
94% of Fortune 50 Companies Have Employee Identity Data Exposed by Phishing Attacks
160-Year-Old Firm Closed Following Ransomware Attack
A Breach, an Apology, and a Pledge to Change: SK Chairman Breaks Silence on Telecom Cyberattack
Actively exploited FreeType flaw fixed in Android (CVE-2025-27363)
Alvin Independent School District data breach exposed personal information of over 47,000 individuals
Ascension reports data breach linked to former service provider
Breached Passwords? Account Takeover (ATO) Attacks Might Be Next
Britain to face more cyberattacks as AI adoption grows, minister says
California man pleads guilty in AI tool scam that led to major Disney data breach
Chaos at the Co-op as cyber-attack leaves shop chain struggling to send supplies to remote stores
CISA warns of hackers targeting critical oil infrastructure
Clash between Meta and NSO ends in $168 million defeat for spyware firm
Click-Free Credential Theft: Microsoft Telnet Exploit Bypasses Prompts in Trusted Zones
ClickFunnels Investigates Breach After Hackers Leak Business Data
Clothing Retailer Todd Snyder Penalized $345,178 Over Consumer Privacy Failures
Co-op apologises to far north shoppers for stock shortages following cyber attack
Co-op cyber attack boosts sales for independent retailers
Co-op cyber attack leaves Scottish island shop shelves empty
Co-op cyber attack leaves Scottish stores shelves empty
Co-op issues fresh update to customers following cyber attack
Co-op reroutes stock to rural stores amid cyber attack disruptions
Co-op says customer data has been breached amid ongoing criminal cyber attack
Co-op shuts down systems after sophisticated cyber attack
Co-op store deliveries in Jersey impacted by UK cyber attack
CoGUI phishing platform sent 580 million emails to steal credentials
Critical Langflow Vulnerability (CVE-2025-3248) Actively Exploited, Warns CISA
Crypto AI agents can be tricked into giving away their money, study finds
Cyber attack on M&S should be 'wake-up call', minister warns
Cyber-attacks Cost UK Businesses £64 Billion A Year
CYFIRMA warns of Gunra ransomware surge targeting critical infrastructure using double extortion, data exposure
DDoS attacks surge by 88% in March, Spain emerges as top target
DDoS-for-Hire Empire Dismantled as Poland Arrests Four, U.S. Seizes Nine Domains
DDoS-for-Hire Network Dismantled in International Operation
Despite ransom payment, PowerSchool hacker now extorting individual school districts
Digital welfare fraud: ALTSRUS syndicate exploits the financially vulnerable
Europol Shuts Down Six DDoS-for-Hire Services Used in Global Attacks
Europol, Poland Bust Major DDoS-for-Hire Operation, Arrest 4
Google Rolls Out May 2025 Android Security Bulletin, Fixes 46 Vulnerabilities Including CVE-2025-27363
Hacker Exploits AI Art Tool to Steal 1.1TB of Disney Data
Hackers Claim To Steal Files From App Used by Trump Adviser
Hackers exploit OttoKit WordPress plugin flaw to add admin accounts
How cybersecurity services help stop ransomware attacks
In fear of cyberattacks, India shuts down access to two top exchanges
Inferno Drainer Returns, Stealing Millions from Crypto Wallets
Israeli NSO Group Fined $168M for Pegasus Spyware Attack on WhatsApp
Japanese businesses are being bombarded with millions of phishing messages
Jury orders NSO Group to pay $168 million to WhatsApp for facilitating Pegasus hacks of its users
Legal Aid Agency warns law firms of potential data breach
LockBit ransomware gang hacked, victim negotiations exposed
Marks & Spencer (M&S) Sees Dip in Consumer Trust Following Cyber-Attack
Masimo hit by massive cyberattack as it sells audio brands Denon, Polk to Samsung
Medical device giant Masimo says cyberattack is limiting ability to fill customer orders
Medical device maker Masimo warns of cyberattack, manufacturing delays
Meta suit against Israel's NSO offered rare insight into world of cyberespionage
Ministry of Justice (MoJ) investigating 'data breach' at Legal Aid Agency
Most cyber insurance claims stem from Business Email Compromise (BEC), fraud, report says
"Nationally Significant" Cyber-Attacks Have Doubled, UK’s National Cyber Security Centre (NCSC) Reports
New alert issued as Action Fraud reveals staggering rise of extortion phishing email reports in March
North East public urged to beware of online extortion attempts
NSO Group fined $167M for spyware attacks on 1,400 WhatsApp users
NSO Group Fined $168M for Targeting 1,400 WhatsApp Users With Pegasus Spyware
NSO Group Hit with $168m Fine for WhatsApp Pegasus Spyware Abuse
Oettinger Brewery gets hit by ransomware attack
OttoKit WordPress Plugin with 100K+ Installs Hit by Exploits Targeting Multiple Flaws
Over 1.1 million user files leaked following huge data breach at top jobseeker platform
Passkeys Set to Protect GOV.UK Accounts Against Cyber-Attacks
Personal data of top executives easily found online
Peru denies ransomware breach amid Rhysida gang claims
Phishing Attacks Surged in Q1 2025
Phishing schemes getting more sophisticated thanks to AI
Play ransomware affiliate leveraged zero-day to deploy malware
Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day to Breach U.S. Organization
Play ransomware exploited Windows logging flaw in zero-day attacks
Play Ransomware Group Used Windows Zero-Day
Poland arrests four in global DDoS-for-hire takedown
Police takes down six DDoS-for-hire services, arrests admins
PowerSchool hacker now extorting individual school districts
PR TIMES Reports Potential Data Breach Exposing 900,000 Records
Proof-of-Concept (PoC) exploit for SysAid pre-auth RCE released, upgrade quickly!
Qilin cements leadership in ransomware attacks
Ransomware Attackers Leveraged Privilege Escalation Zero-day
Ransomware claims dipped slightly in 2024, cyber insurer says
Researchers Uncover Malware in Fake Discord PyPI Package Downloaded 11,500+ Times
Scottish schools targeted in ransomware attack as hackers continue to cause havoc across UK
Shelves left completely EMPTY at Scottish stores after supermarket giant hit by cyber attack
South African Airways says cyberattack disrupted operational systems
SpyCloud Analysis Reveals 94% of Fortune 50 Companies Have Employee Data Exposed in Phishing Attacks
State of ransomware in 2025
SysAid Patches 4 Critical Flaws Enabling Pre-Auth RCE in On-Premise Version
The Security Reason You Should Keep All Cameras On In Team Meetings
Tulsi Gabbard’s leaked password is used by thousands of people
UK Cyber Insurance Claims Second Highest on Record
UK Government Warns Retail Attacks Must Serve as a “Wake-up Call”
UK spies see ‘direct connection’ between Russian cyberattacks and sabotage plots
Ukrainian National Extradited from Spain to Face Conspiracy to Use Ransomware Charge
Unsophisticated Hackers Targeting ICS/SCADA Systems
'Unsophisticated' hackers targeting systems used by oil and gas industry, CISA says
West Lothian Council schools hit by cyber-attack
West Lothian Council Suffering ‘Suspected Criminal Ransomware Cyberattack’
West Lothian Schools Deal With Ransomware Incident
Why cyberattacks on UK supermarkets are likely to continue
6th May
A massive Chinese phishing cartel unveiled: 2 million SMSes sent daily
A ‘Ransomware Cartel’ Causes Chaos
Agentic AI and ransomware: get ready for the next threat evolution
Alleged Nomad Bridge Hacker Arrested and Faces US Extradition
Almost Half a Million People Impacted by Massive Data Breach
An airline carrying out deportation flights has been hacked
App Used by Trump Adviser Suspends Services After Hack Taking ’15-20 Minutes’
Babuk ransomware deployed via “Bring Your Own Installer” EDR evasion
Beware: Wappalyzer Firefox add-on could be stealthy Trojan spyware
Beyond the hook: How phishing is evolving in the world of AI
‘Bring Your Own Installer’: New Ransomware Attack on SentinelOne
California fines clothing retailer, orders changes in privacy business practices
ClickFix Scam: How to Protect Your Business Against This Evolving Threat
Co-op attack 'not impacting Channel Islands data'
Co-op boss breaks silence over ‘extremely distressing’ cyber attack after shoppers’ private details stolen
Co-op card machines working again following cyber attack
Co-op card payments and availability in stores hit by cyber attack
Co-op confirms data breach exposed sensitive customer information
Co-op confirms 'significant disruption' after 'highly sophisticated' cyber attack
Co-op faces delivery delays and empty shelves as cyber attack escalates
Co-op hit by ‘sustained’ and ‘malicious’ cyber attack
Co-op is left with empty shelves after supermarket was hit by cyber attack which stole 20 million customers' personal data
Co-op issues update to customers after 'data breach'
Co-op rushes to fix contactless payment issue in some stores amid cyber-attack fallout
Co-op rushes to fix issue at 200 stores across UK after major cyber attack
Co-op shelves lie empty as shoppers scramble for essentials following 'malicious cyber attack'
Co-op shops stop taking card payments amid cyber attack
Critical Langflow Flaw Added to CISA KEV List Amid Ongoing Exploitation Evidence
Critical Langflow RCE flaw exploited to hack AI app servers
Darcula PhaaS: 884,000 Credit Card Details Stolen from 13 Million Global User Clicks
Darcula Phishing as a Service Operation Snares 800,000+ Victims
Darcula Phishing Empire Exposed: 884,000 Cards Stolen in Global Scam
Darcula Phishing Scam Claims 800K+ Victims
Delivery delays and empty shelves at Co-op after cyber attack
Department of Work and Pensions (DWP) data breach exposed as it leaks disabled people’s personal email addresses
Disney Hacker Busted After AI Tool Scam Exposed - 1.1TB of Data Stolen in Massive Cyber Breach
DragonForce Ransomware: Redefining Hybrid Extortion in 2025
DragonForce Ransomware Hits Harrods, Marks and Spencer, Co-op & Other UK Retailers
DragonForce Ransomware Targets Major UK Retailers, Including Harrods, Marks & Spencer, and Co-op
Exploited: Vulnerability in software for managing Samsung digital displays (CVE-2024-7399)
Fake Social Security Administration (SSA) Emails Trick Users into Installing ScreenConnect RAT
Federal Trade Commission (FTC) Findings Show That Consumers Lost 470 Million to Text Scams
Framlingham College 'acts swiftly' after targeted cyber attack
German beer powerhouse allegedly hit by ransomware, internal documents at stake
Google fixes actively exploited FreeType flaw on Android
Hacker breaches Signal client used by the US government in just half an hour
Hackers Exploit Samsung MagicINFO, GeoVision IoT Flaws to Deploy Mirai Botnet
Harrods’ Cyberattack: Cybersecurity Leaders Weigh In
Have Cyber Insurance? The Preferred Victims Of Ransomware Attackers
Horizon Behavioral Health Falls Victim to Ransomware Attack
How cybercriminals exploit psychological triggers in social engineering attacks
Initial Access Brokers Play a Vital Role in Modern Ransomware Attacks
Inside DragonForce, the Group Tied to M&S, Co-op and Harrods Hacks
Intensified Luna Moth callback phishing aims for data extortion
Kelly Benefits data breach compromised over 410,000 individuals
Linux wiper malware hidden in malicious Go modules on GitHub
Look Out for This Social Security Scam That Gives Hackers Full Access to Your Computer
Man hacks Disney employee, stealing 1.1TB of company data
Marks & Spencer (M&S) and Co-op cyber attack report suggests cause
Marks & Spencer (M&S) and Co-op cyber attack update as shoppers hit with empty shelves, payment issues and meal deals chaos
Marks & Spencer (M&S) cyber attack: Shoppers warned it could take months to recover as online orders still suspended
Marks & Spencer (M&S) halts meal deals amid ongoing cyber attack disruption
Marks & Spencer (M&S) halts several meal deals following ongoing cyber attack issues
Marks & Spencer (M&S) suspends meal deals across supermarket stores after cyber attack
Marks & Spencer cyber attack: Everything we know so far - and what has happened at Co-op and Harrods
Massive “Darcula” Credit Card Theft Operation Uncovered
Massive data breach exposes over half a million records from Ticket to Cash platform
Microsoft Dynamics 365 Customer Voice Phishing Scam
Microsoft Warns Default Helm Charts Could Leave Kubernetes Apps Exposed to Data Leaks
Morphing Meerkat phishing tool mimics hundreds of brands
Multiple iHeartRadio stations breached in December
Myanmar militia group emerges as North Korea's scammer competitor
New Cloud Vulnerability Data Shows Google Cloud Leads in Risk
New Investment Scams Use Facebook Ads, RDGA Domains, and IP Checks to Filter Victims
Newly emergent Gunra ransomware examined
NSO Group must pay more than $167 million in damages to WhatsApp for spyware campaign
Online orders still paused and spaces on shelves – what we know about the M&S cyber chaos
Pakistan: Government Issues Urgent Cyber Threat Alert Over Suspected Indian Phishing Attacks
Pakistani hacker groups target Indian defence institutions amid rising tensions
Popular Instagram Blogger’s Account Hacked to Phish Users and Steal Banking Credentials
Qilin Becomes Top Ransomware Group Amid RansomHub Uncertainty
RansomHub outage prompts reduced ransomware incidence in April
Ransomware Attacks Declined in April - Why?
Ransomware Attacks on Food & Agriculture Industry Surge 100% – 84 Attacks in Just 3 Months
Remote Code Execution (RCE) flaw in tool for building AI agents exploited by attackers (CVE-2025-3248)
Samsung MagicINFO 9 Server RCE flaw now exploited in attacks
Several Indian Defence Websites Hacked, Pakistani Group Claims Responsibility
Singapore: At least $172,000 lost in phishing scams targeting POSB customers since April
SK Telecom registers more than 24 million users in USIM Protection Service after data breach
Smishing: The growing threat of SMS based phishing
Smishing Triad Upgrades Tools and Tactics for Global Attacks
South African Airways (SAA) hit by cyber attack
South African Airways suffers cyber attack, disrupting services
Texas School District Notifies Over 47,000 People of Major Data Breach
This dastardly phishing attack has stolen nearly a million credit cards - here's how to stay safe
This hacker group is posing as IT helpdesk workers to target enterprises – and researchers warn its social engineering techniques are exceptionally hard to spot
Threat Actor Evades SentinelOne EDR to Deploy Babuk Ransomware
Threat Actors Bypass SentinelOne EDR to Deploy Babuk Ransomware
Top ticket resale platform hit by data breach - over 500,000 customer records leaked online
Two Hacks, One Empire: The Cyber Assaults Disney Didn’t See Coming
UK Legal Aid Agency investigates cybersecurity incident
UK Retail Chains Targeted by Ransomware Attackers Claiming Data Theft
UK’s National Cyber Security Centre (NCSC) Offers Security Tips as Co-op Confirms Data Loss
Update ASAP: Google Fixes Android Flaw (CVE-2025-27363) Exploited by Attackers
US Charges Yemeni Man for Black Kingdom Ransomware Attacks
Warning to 1,800,000,000 Gmail users after ‘sophisticated’ password hack
West Lothian schools hit by ransomware cyberattack
What a future without CVEs means for cyber defense
What it really takes to build a resilient cyber program
5th May
7 ways to lock down your phone's security - before it's too late
10 passkey survival tips: Prepare for your passwordless future now
2024 Sets Record for Healthcare Data Breaches
A hacker stole data from TeleMessage, the firm that sells modified versions of Signal to the U.S. government
A whopping 94% of leaked passwords are not unique - will you people ever learn?
Agencies Lean Into Zero Trust and Phishing-Resistant Authentication
Alleged Black Kingdom hacker indicted over massive Exchange Server breach
Anonymous hacks GlobalX, Trump airline of choice for ICE deportations
Apache Parquet Java Vulnerability CVE-2025-46762 Exposes Systems to Remote Code Execution Attacks
Are You Too Reliant on Third-Party Vendors for Cybersecurity?
Australian Retailers Warned By Minister After Massive UK M&S Ransomware Attack
Azerbaijan blames Russian state hackers for cyberattacks on local media
Billions of Gmail users at risk with new phishing scam - here’s how to spot it
Blogger inspires cyber pros to fight bots with “zip bombs”
Britain to warn companies cyber security must be 'absolute priority'
California Man Will Plead Guilty to Last Year’s Disney Hack
CBS affiliate purportedly compromised by Lynx ransomware gang
Chat App Used by Trump Admin Suspends Operation Amid Hack
Chinese Group TheWizards Exploits IPv6 to Drop WizardNet Backdoor
Cleveland, Tennessee, debt collections agency faces fifth federal lawsuit after data breach
Co-op admits data breach in cyberattack after DragonForce claims responsibility
Co-op crisis deepens as it admits UK customer data stolen in cyberattack - up to 20 million people possibly affected, here's what we know
Co-op cyber attack leaves 20 MILLION customers at risk of scams for years to come, experts say
Co-op shuts down systems as CEO apologises for 'extremely distressing' data breach
Commvault CVE-2025-34028 Added to CISA KEV After Active Exploitation Confirmed
Coweta County Schools becomes latest victim of ransomware attack
Cyber attack alert: Pakistan cyber force claims breach of Indian Defence Institutions websites
Cyber attacks from Pakistan target Indian defence websites amid escalating tensions
Cyber Forces Unleash Alleged Data Breach on Indian Military Systems
Cyberattacks Targeting US Increased by 136%
Cybersecurity Firm Hacks Ransomware Group, Alerts Potential Victims
Darcula PhaaS steals 884,000 credit cards via SMS phishing texts
Data breach: SK Telecom suspends new subscriber sign-ups
Data breach at Southern Arkansas Tech University exposes personal information of students and employees
Data breach hits online ticket resale platform
Data Breach Was Ransom Attack, Cobb County, Georgia, Confirms
DragonForce claims Co-op cyber attack as retailer confirms customer data loss
Federal prosecutors indict alleged head of Black Kingdom ransomware
Food and agriculture face ransomware attack surge
Germany Most Targeted Country in Q1 2025 DDoS Attacks
GlobalX, Airline for Trump’s Deportations, Hacked
GlobalX, airline used for Trump deportations, gets hacked
Gmail phishing attacks increasing, passkey upgrade recommended
Golden Chickens Deploy TerraStealerV2 to Steal Browser Credentials and Crypto Wallet Data
Gunra Ransomware’s Double‑Extortion Playbook and Global Impact
Hacker behind $190m DeFi exploit from 2022 arrested in Israel
Hacker breaches TeleMessage system used by US officials, raising security concerns
Hacker stole data from company selling government version of Signal
Hackers hijack New York Post X account, target crypto subscribers
Hackers launch ‘serious’ attacks against Georgia school district, New Mexico university
Hackers Selling SS7 0-Day Vulnerability on Hacker Forums for $5000
Hackers Use Pahalgam Attack-Themed Decoys to Target Indian Government Officials
How CISOs can talk cybersecurity so it makes sense to executives
How Kraken Exposed North Korean Hacker Posing as Job Applicant
India’s defence portals face cyber-attack, Pakistan group claims to have hacked many websites
Israeli authorities arrest Nomad Bridge hacker, approve extradition to US
Japanese freight company Kintetsu World Express reports major data security incident disrupting daily operations
Kelly Associates Data Breach Exposes 410,000+ Users Personal Data
Kelly Benefits confirms an attack affecting nearly half a million
Kelly Benefits December data breach impacted over 400,000 individuals
Kraken Catches North Korean Hacker Posing As ‘Steven Smith’ Applying for Job at Crypto Exchange
Kraken Dodges A Bullet From A North Korean Hacker
Luna Moth extortion hackers pose as IT help desks to breach US firms
Marks and Spencer lacked business continuity plan amid ongoing cyber attack chaos, M&S insider claims
Microsoft finds default Kubernetes Helm charts can expose data
Myanmar militia leader sanctioned by US over cyber scam connections
National Cyber Security Centre (NCSC): ‘Cyber incidents on UK retailers are a wake-up call’
National Cyber Security Centre (NCSC) Warns of Ransomware Attacks Targeting UK Organisations
National Cyber Security Centre (NCSC) Warns UK Retailers After Spate Of Cyberattacks
New "Bring Your Own Installer" EDR bypass used in ransomware attack
Nomad Hacker Suspect Arrested in Israel to Be Extradited to US
North Korean Hacker Tries to Breach Kraken Platform by Submitting Job Application
North Korean Hacker Tries to Infiltrate Kraken Through Job Application
Nova Scotia Power hit by major data breach, compromising customer personal information
Over 400,000 hit in massive employee benefits data breach - Social Security numbers and more exposed
Pakistan Cyber Attack Targets India’s Defense Institutes
Pakistan cyber groups' hack attempt at defence sites, personnel info compromised
Pakistan-backed APT36 hackers used the Pahalgam terror attack as bait in a phishing campaign
Pakistan-based hacker groups claim cyberattack on India, multiple defence websites hit amid soaring tensions over Pahalgam attack
Pakistan-based hacker group claims cyberattack on Indian defence institutions
Pakistan-Based Hackers Breach Indian Defense Websites In Fresh Cyber Attack
Pakistan-based hackers target Indian defense websites, claim massive data breach
Pakistani hacker group accessed Indian defence websites
Peru denies it was hit by ransomware attack following Rhysida claims
Pro-Russian hacker group behind attack on Romanian government websites during election day
Ransomware Attack Hits Coweta County Schools Cancels SAT Testing in Atlanta Suburb
Ransomware Attack on Dialysis Company DaVita Disrupts Operations and Exposes Sensitive Patient Data
Ransomware attacks decline in April 2025, healthcare sector sees uptick
Ransomware Attacks Fall in April Amid RansomHub Outage
Ransomware Attacks See Steep Decline in April
Ransomware Group Claims Attacks on UK Retailers
Ransomware Groups Allegedly Breach IT Networks, Stealing Data from UK Retailers
Ransomware Is Rampant in 2025: 6 Quick Tips That'll Protect Your Data
Ransomware is still a thing because we’re making it easy for the hackers
Ransomware spike exposes cracks in cloud security
Russian hackers claim responsibility for cyber-attack on Romanian president’s election day
Russian hackers target Romanian state websites on election day
Russian-linked Nebulous Mantis targets NATO, critical infrastructure with RomCom RAT
Scattered Spider linked to the recent Marks & Spencer (M&S) ransomware attack
Signal Clone Used By Trump Officials Reportedly Breached - Hacker Says It Took 20 Minutes
Signal clone used by Trump’s security adviser hacked
SK Telecom halts new sign-ups amid nationwide USIM data breach response
SK Telecom halts new signups after cyberattack, scrambles to replace SIMs
SK Telecom suspends new subscriber sign-ups as part of data breach response measures
Someone Reportedly Hacked the Messaging App Mike Waltz Was Seen Using
Tech site says Signal-like app used by Trump adviser was hacked
TeleMessage, a modified Signal clone used by US government officials, has been hacked
TeleMessage, a Signal clone the Trump administration uses, has been hacked
TeleMessage, the Signal-esque app used by the Trump administration, has been hacked
Texas Health and Human Services adds 30K+ to data breach that spans nearly four years
The modified Signal app used by Mike Waltz was reportedly hacked
The Signal messenger clone used by the Trump administration has been hacked
TikTok Fined €530m Over Transfers of European User Data to China
Trump Administration Playing Truth or Dare with EU-US Data Privacy Framework
UK retailer Co-op takes network offline after detecting an attempted cyber attack
UK retailers under cyber attack: Co-op member data compromised
UK shares security tips after major retail cyberattacks
Ukrainian Extradited to U.S. Over Global Ransomware Scheme Using Nefilim Strain
Unofficial Signal app used by Trump officials investigates hack
Unseen Breach: How a Hacker Unlocked Secret Chats of U.S. Officials Through Flawed TeleMessage Encryption
Urgent warning for millions of Co-op customers after cyber attack
US: Survey ranks Indiana No. 2 for ‘phishing’ victims
'Venom Spider' Targets Hiring Managers in Phishing Scheme
Via Credit Union data breach exposed customers’ personal information, class action alleges
Warning to all 1.8 billion Gmail users over password hack: 'You have seven days to act'
Why External Attack Surface Management (EASM) Projects Fail: Three Pitfalls to Avoid
Why Secure Document Management Matters Against Cybersecurity Threats
Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi
