Welcome to DBD. On March 8th, DBD celebrated it's 5th anniversary and 
Dentons Senior Analyst, Washington DC
Welcome to this week's Data Breaches Digest, a catalogue of links concerning Data Breaches and Cyber Security that were published on the Internet during the period between 1st September and 7th September 2025.2nd September
Hackers Threaten Google with Ultimatum Following Data Breach Warning
1st September
Alleged Sale of Chinese Government Network Access Surfaces Online
Amazon disrupts Russian APT29 hackers targeting Microsoft 365
Amazon Disrupts Russian APT29 Watering Hole Targeting Microsoft Authentication
Amazon Stops Russian APT29 Watering Hole Attack Exploiting Microsoft Auth
Android Droppers Now Deliver SMS Stealers and Spyware, Not Just Banking Trojans
AT&T Allegedly Breached – Threat Actor Claims Live Access to Core Infrastructure of 24 Million Subscribers
Beware Of Efimer Trojans Targeting Organizations With Phishing Emails
Boards are being told to rethink their role in cybersecurity
Credit Bureau TransUnion Hit With Data Breach Affecting 4.4 Million People
Cybersecurity signals: Connecting controls and incident outcomes
Cyble Report Warns of Rising Ransomware Threats in India, Asia
Data breach at Clinical Diagnostics bigger than anticipated, 850K patients affected
ESET discovers PromptLock, the first AI-powered ransomware
Fake DocuSign emails spoof Apple Pay charges
Fresh AT&T data breach could impact 24M users, hackers claim
From MFA Adoption to Phishing Resilience: Your Hybrid Work Security Metrics Playbook
Global Hotels on Alert: Hackers Hijack Google Ads to Steal Hotel Logins in New Cyberattack
Google Sends Out Urgent Warning: 2.5 Billion Gmail Users Exposed
GPS jamming attack hits President of the European Commission Ursula von der Leyen’s plane, Russia suspected
Hacker suspected of trying to cheat his way into university is arrested in Spain
Hackers Abuse Legitimate Email Marketing Platforms to Disguise Malicious Links
Hackers are also going back to school - major campaign hijacks Google Classroom to hit targets
Hackers are using fake Zoom or Microsoft Teams invites to spy on all your workplace activity
Hackers Exploit Email Marketing Platforms to Deliver Hidden Malware
Hackers Exploit Google Classroom in Global Phishing Attack on 13,500 Organizations
High-Risk SQLi Flaw Exposes WordPress Memberships Plugin Users
Homeland Security Purges Federal Emergency Management Agency (FEMA) IT Department Over Cybersecurity Breach
How AI is Shaping the Future of Cybersecurity for Business in 2025
India Remains Among Top Targets Of Global Ransomware Groups
Kaspersky warns of phishing through fake university login pages targeting academia
Lotte Card confirms hacking attempt but denies data breach or ransomware infection
Major data breach at US credit card giant leaves millions of Americans at risk
Morocco Warns Gmail Users After Major Data Leak
National Cyber Security Centre (NCSC) stumbles upon new malware campaign involving PDF editors and manual finders
New Large-Scale Phishing Attacks Targets Hotelier Via Ads to Gain Access to Property Management Tools
North Korea’s APT37 deploys RokRAT in new phishing campaign against academics
North Korea’s ScarCruft Targets Academics With RokRAT Malware
Orange adds SMS safeguards after Belgian data breach
Phishing Campaign Exploits Ads to Breach Hotel Property Management Systems
Play Ransomware Allegedly Breaches All States Materials Group, Vanderpool Construction, Juggernaut, and Arboris
Qilin Ransomware Allegedly Breaches Biotechnology Firm PathoQuest, Leaks 147GB of Data
Ransomware attack on IT supplier disrupts hundreds of Swedish municipalities
Ransomware Attack on Pennsylvania’s Attorney General Office Disrupts Court Cases
Ransomware attack targeting Pennsylvania attorney general leads to case delays, takes down some critical internal systems
Ransomware attacks surge across Asia: Cyble warns India’s critical sectors at risk
Report Details How Cybercriminals Are Exploiting AI for Extortion, Fraud, and Ransomware
Russia 'sabotages European leader's plane in cyber attack'
Russian cyber attack forces down EU chief's plane
Salesloft Attacks Target Google Workspace
Santa Fe County Government Website Source Code Allegedly Leaked Online
ScarCruft Uses RokRAT Malware in Operation HanKook Phantom Targeting South Korean Academics
Silver Fox Exploits Signed Drivers to Deploy ValleyRAT Backdoor
South Korea: Banks ramp up AI defenses as government moves to make them liable for voice phishing losses
South Korea to tackle phishing crimes as annual losses reach $575 million
South Korean banks enhance AI defenses to combat voice phishing
Supply-chain attack hits Zscaler via Salesloft Drift, leaking customer info
The UK Government under pressure over secret data breach review
Threat actor profile: Interlock ransomware
UK Government Leads Global Fight Against Ransomware with Public Sector Payment Ban
Western Sydney University provides update after 10,000 hacked in cyber incidents
What a hacker attack! President of the European Commission Ursula von der Leyen’s plane was the victim of an Electronic Warfare (EW) attack
WhatsApp Patches Zero-Day, Zero-Click Flaw
WhatsApp urges all iPhone users to download 'critical' update to avoid cyber attack
When Browsers Become the Attack Surface: Rethinking Security for Scattered Spider
Zscaler data breach exposes customer info after Salesloft Drift compromise
