On July 8, 2025, Marks & Spencer (M&S) confirmed a ransomware attack orchestrated by the DragonForce gang, initiated through a sophisticated social engineering impersonation attack in April 2025. M&S Chairman Archie Norman revealed to the UK Parliament’s...
Supply chain cyberattacks struck global technology distributor Ingram Micro on July 3, 2025, via a devastating ransomware attack by the SafePay group, a prolific operation that emerged in late 2024. The attack disrupted critical systems, including the AI-powered...
On July 1, 2025, a joint advisory from CISA, FBI, NSA, and the Department of Defense Cyber Crime Center (DC3) warned of escalating Iranian cyber threats targeting U.S. critical infrastructure sectors, including energy, water, healthcare, and defense. Triggered by...
A significant data breach struck Nucor Corporation, North America’s largest steel producer and recycler, on May 13, 2025, when hackers gained unauthorized access to its IT systems, stealing a “limited” amount of data. The attack prompted Nucor to...
The Scania breach, disclosed on May 28, 2025, targeted the Scania Financial Services division’s “insurance.scania.com” application, exposing sensitive data. The attacker, alias “hensi,” used stolen credentials from an external IT partner,...
In a stark warning for Linux users, two critical Linux escalation exploits, identified as CVE-2025-6018 and CVE-2025-6019, were uncovered on June 18, 2025, threatening major Linux distributions with the potential for attackers to gain full root privileges. Discovered...