Editor's Message

Welcome to DBD. On March 8th, DBD celebrated it's 5th anniversary and PRiSM celebrated it's 2nd anniversary. Little did I know when I started both of these ventures just how much an impact they would have on my life and I'd like to thank each and everyone of you who have supported me over the years, with a special thanks to those individuals who have kindly shared their knowledge with me, and continue to do so. Thanks again for your support. Stay safe. :)

“Data Breaches Digest and its PRiSM portal provide Dentons Global Security Team with valuable insights into the ransomware landscape, from the latest incidents to trends over time, as well as the ability to customize visual analytics. Timely reports and tracking by Data Breaches Digest help inform cyber intelligence for the world’s largest law firm and thus our cybersecurity posture across more than 80 countries worldwide.”
Dentons Senior Analyst, Washington DC

Monday, 7 July 2025

Data Breaches Digest - Week 28 2025

Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 7th July and 13th July 2025.


7th July

5 Things To Know On The SafePay Ransomware Group

9 in 10 Australian firms still paying ransomware demands

Africa's largest pay TV operator facing fine for Nigeria data breach

AI will make cyber defence harder unless you think like a hacker

AiLock Ransomware Emerges with Hybrid Encryption Tactics: ChaCha20 Meets NTRUEncrypt

Amazon Prime Day or Crime Day? Over 1,000 Fake Amazon Domains Lure Prime Day Buyers

Are AI Chatbots Sending You to Phishing Sites?

AT&T Reaches $177M Deal Over 2019 and 2024 Data Breaches

Atomic macOS infostealer adds backdoor for persistent attacks

'Batavia' Windows spyware campaign targets dozens of Russian organizations

BERT Ransomware Group Targets Asia and Europe on Multiple Platforms

Beware of Bert: New ransomware group targets healthcare, tech firms

Block the payout, brace for impact: navigating the potential ransomware payment ban

BMW potentially tied up in third-party cyber attack

Brazilian Banks Lose $140M After Hacker Pays Employee Just $2,760 for Credentials

Catwatchful data breach exposes thousands in latest stalkerware scandal

Channel partners continue to suffer from ongoing Ingram Micro cyber attack

China exposes series of malicious foreign websites and IP addresses used by overseas hacker groups

Cierant Corp. Data Breach Exposes Sensitive PII and PHI

Cloud security maintains its position as top spending priority

Coinbase Hacker Buys 4,863 ETH in an Ethereum Accumulation Spree

Coinbase Hacker Moves Funds After 2 Months, Buys $12 Million of Ethereum (ETH)

Crypto scammers are now “quantum experts” targeting bitcoin users

Cyberattack deals blow to Russian firmware used to repurpose civilian drones for Ukraine war

Elematec Corporation Suffers Ransomware Attack by Devman Hacking Group

Employee gets $920 for credentials used in $140 million bank heist

Everything we know about the Ingram Micro cyber attack so far

Fighting ransomware should be a corporate mindset

Five teens arrested in elaborate phishing scam hitting ABN Amro clients

Four scams that target small businesses

Gardner Orthopedics Data Breach Affects 47,000 Patients

Glasgow planning portal back online as council awaits findings on cyber attack cause

Global cyber threat campaigns escalate as APT groups target critical sectors

Guam: Phishing scam costs GovGuam Retirement Fund over $300K

Hacker Behind $300M Coinbase Breach Buys Millions in Ethereum (ETH)

Hacker makes contact with Qantas

Hacker threatens to leak a rumoured huge cache of stolen Telefónica data

Hacker 'turf war' unfolding as Russian DragonForce ransomware gang drama could lead to 'double extortions,' making life even worse for potential victims

Hackers abuse leaked Shellter red team tool to deploy infostealers

Hackers Target Employee Credentials Amid Spike in ID Attacks

How businesses face scams, fraud, and data breach risks

How to protect your personal data now - Before the next big data breach hits

Hundreds of Malicious Domains Registered Ahead of Prime Day

Hunters International offers free decryptors as it ceases operations

Hunters International Shuts Down, Offers Free Decryptors as It Morphs Into World Leaks

Infostealers blamed for surge in identity attacks

Infostealers blamed for surge in identity attacks

Ingram Micro Australia Confirms Ransomware Attack, Working To Restore Systems To ‘Process And Ship Orders’

Ingram Micro Broke The First Rule Of Ransomware Communication

Ingram Micro Confirms Ransomware Attack

Ingram Micro confirms ransomware attack after days of downtime

Ingram Micro Confirms Ransomware Attack Behind Weeklong Outage

Ingram Micro Confirms Ransomware Attack, Distributor Still Offline

Ingram Micro confirms ransomware attack, internal systems affected and shut down

Ingram Micro confirms ransomware incident as cause of company-wide outage

Ingram Micro Confirms Ransomware Incident Impacting Internal Infrastructure

Ingram Micro Cyberattack: What Happened - and Could It Affect You?

Ingram Micro faces ongoing disruption after holiday weekend ransomware attack

Ingram Micro hit by ransomware attack

Ingram Micro Hit by Ransomware Attack, Systems Taken Offline

Ingram Micro Hit by SafePay Ransomware Attack

Ingram Micro investigating ransomware attack

Ingram Micro ransomware attack sees supply chain in disarray

Ingram Micro says ongoing outage caused by ransomware attack

Ingram Micro Scrambling to Restore Systems After Ransomware Attack

Ingram Micro struggles to restore services after ransomware breach

Ingram Micro Working Through Ransomware Attack by SafePay Group

International Criminal Court (ICC) Suffers Sophisticated Cyber Attack During NATO Summit

Iran-Aligned Hacking Group Targets Middle Eastern Governments

IT company Ingram Micro says ransomware targeted internal systems

IT Giant Ingram Micro Reveals Ransomware Breach

Italian arrest of alleged Chinese hacker tests Rome’s geopolitical balancing

Krispy Kreme data breach sparks class action lawsuit

Linux contains dangerous secure boot flaw: hackers can bypass it with a USB stick

LogoKit Phishing Kit Used in Government, Banking and Logistics Attacks

Louis Vuitton Korea’s data breach exposes customer information

Malaysia: Beware of phishing emails impersonating The Star

Malware Surge Hits Android: Adware, Trojans and Crypto Theft Lead Q2 Threats

Manufacturing Security: Why Default Passwords Must Go

Mysterious 'cybercriminal' makes contact with Qantas a week after the data of SIX MILLION customers was stolen

Nearly 300,000 people were impacted by cyberattack on Nova Scotia Power

Nearly Half of Companies in the UAE Opt to Pay the Ransom, Sophos Report Finds

New alert warns Canadians of spike in phantom hacker scams draining bank accounts by fraudsters spoofing government and bank officials, police, Amazon and credit agencies

New Batavia spyware targets Russian industrial enterprises

New Phishing Attack Impersonates Department for Work and Pensions (DWP) to Steal Credit Card Information from Users

New technique detects tampering or forgery of a PDF document

Nigeria Data Protection Commission (NDPC) fines Multichoice ₦766 million for data breach

Nigeria Data Protection Commission (NDPC) slams MultiChoice ₦766 million fine for privacy breach

Official probe finds SK Telecom's security failures led to massive data breach

Ongoing Phishing Campaign Utilizes LogoKit for Credential Harvesting

Over 26 million resumes exposed in top CV maker data breach - here's what we know

Over 1,000 Fake Domains Imitating Amazon Prime Day Created to Target Online Shoppers

Over 3,000 Virginia county employees impacted by April ransomware incident

Phishing campaigns involving Spanish Top-Level Domains (TLDs) surge, report finds

Phishing platforms, infostealers blamed as identity attacks soar

Potential cyber criminal contacts Qantas after private data of up to six million Australians stolen in hack

‘Potential’ hacker contacts Qantas over data breach

Qantas contacted by ‘potential cyber criminal’ after customer data breach

Qantas Contacted by Potential Cybercriminal Following Data Breach

Qantas contacted by suspected cyber criminal but airline won’t confirm if hacking ransom demanded

Qantas cyber attack: 'Potential' hacker contacts airline over data breach

Qantas is being extorted in recent data-theft cyberattack

Qantas says suspected cybercriminal has made contact after major data breach

Ransomware Attack Halts Ingram Micro Operations

Ransomware in 2025: More Attacks, Bigger Targets, Fewer Confirmations

Ransomware-related data compromise disclosed by IdeaLab

Remote monitoring tools: IT lifesavers or hacker gateways?

Researchers Share CitrixBleed 2 Detection Analysis After Initial Hold

SafePay ransomware attack behind Ingram Micro disruption

SatanLock Ransomware Ends Operations, Says Stolen Data Will Be Leaked

Scattered Spider’s Pre-Attack Infrastructure Exposed: 500+ Phishing Domains Mimic Enterprise Logins

Security researchers discover dangerous malware that's small, fast, can work locally, and doesn't need a master command - here's what you need to know

SEO Poisoning Campaign Targets 8,500+ SMB Users with Malware Disguised as AI Tools

Significant data breach prompts penalties for SK Telecom

Stop Ransomware in Its Tracks with Exfiltration Prevention

Survey Surfaces Myriad Small Business Security Challenges

TAG-140 Deploys DRAT V2 RAT, Targeting Indian Government, Defense, and Rail Sectors

Teléfonica victim of a new data breach, hacker claims

What we know about SafePay, the Ingram Micro attackers

XWorm RAT Deploys New Stagers and Loaders to Bypass Defenses

Your Personal Data May Be Exposed in a Future Data Breach. Here's What to Do About It Now

Posted by at
Labels: