March 2025: Iranian hackers conducted ongoing cyber espionage campaigns against government entities in Iraq and telecommunications in Yemen. Attackers used custom backdoors and novel command-and-control methods like hijacked emails and backdoors to gain access. March 2025: A network of front companies linked to a Chinese tech firm targeted recently laid-off U.S.

December 8, 2025 - Shamoon, a modular computer virus, was used in 2012 in an attack on 30,000 Saudi Aramco workstations, causing the company to spend a week restoring their services. Wiper – In December 2011, the malware successfully erased information on hard disks at the Oil Ministry's headquarters. Stuxnet, a malicious computer worm believed to be a jointly built American-Israeli cyber weapon.

3 days ago - In this article, Infosecurity has set out the top ten cyber-attacks of 2025, which have been decided based on factors such as data loss, recovery costs, real-world impacts and wider geopolitical implications.

July 14, 2025 - U.K. retailer Marks & Spencer was one of several retailers impacted by a cyberattack linked to Scattered Spider The breach affected online shopping, inventory management, and exposed customer data, including payment details, though the company ...

The common patterns that emerged among recent cyberattacks include escalating vulnerabilities, expanding remote-work exposure, and rising ransomware-as-a-service operations. Yes, outdated or unpatched software remains a major vulnerability, with many recent attacks exploiting neglected updates.

4 days ago - We have listed major cybersecurity and data breach attacks in leading companies.

1 week ago - DoorDash, the popular app for ordering ... a recent data breach. A social-engineering scam was the culprit. The company’s response claims that there is no indication that any fraud or identity theft have occurred. Scope: Unspecified but included customers, employees, and partners. Data exposed: Names, phone numbers, email addresses, and physical addresses. ... Key lesson: Cybersecurity education and awareness are crucial to preventing these attacks...

Almost every month in 2024 came with its own shattering cybersecurity headline. We round up 10 of the biggest cyber attacks, data breaches and ransomware attacks from the year gone by.

May 3, 2022 - The attack accelerated a massive internal overhaul of Sony's data security practices and served as a stark public lesson on the vital importance of salting and hashing passwords before storage. ... In September 2014, JPMorgan Chase, one of the largest banks in the US, disclosed that cyberattacks compromised accounts of over 76 million households and 7 million small businesses.

The definitive list of all cyber attacks, ransomware attacks and data breaches that make news headlines every day - updated every month

3 weeks ago - Nevertheless, every now and again, news of a large attack emerges, with the August 2021 DDoS affecting one of Microsoft’s Azure cloud hosting customers in Europe a good illustration of what’s still possible. At 2.4tbps, this was the second biggest ever recorded (Google recently said it suffered a 2.54tbps UDP attack in 2017, still the largest publicly admitted), with short bursts of traffic over a 10-minute period.

If September 2025 proved anything, it’s that no industry is safe from the relentless wave of cyber crime. In just one month, we witnessed attacks on Jaguar Land Rover (JLR) and Stellantis shaking the automotive sector.

October 6, 2025 - What are the most recent cyber attacks of 2024? PurpleSec's researchers provide their expert analysis on the latest cyber attacks and breaches.

That same month, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the flaw to the Known Exploited Vulnerabilities (KEV) catalog... Jan 09, 2026 Email Security / Threat Intelligence · Russian state-sponsored threat actors have been linked to a fresh set of credential harvesting attacks targeting individuals associated with a Turkish energy and nuclear research agency, as well as staff affiliated with a European think tank and organizations in North Macedonia and Uzbekistan.

August 12, 2025 - Organized cybercrime and APTs (2010s) — Next came a barrage of ransomware attacks such as CryptoLocker and WannaCry. Nations and other groups began using advanced persistent threats (APTs) to infiltrate systems while staying undetected and stealing data over time. Moreover, hackers exploited vulnerabilities in IoT devices to gain unauthorized access or control networks. Modern threats (2020s) — Recent years have seen the bar to cybercrime lowered.

June 30, 2025 - From leaked credentials and telecom breaches to attacks on healthcare and cloud services, the trend is clear: cyber risk is not slowing down. In this blog, we highlight the five biggest data breaches of 2025 so far, what was compromised, and what businesses can learn from these high-profile incidents.

Beyond the cost of a breach or attack, to illustrate this building and ongoing cyber onslaught, let’s examine 12 high-profile cyberattacks from the past 15 years. The following cyberattacks occurred during the emergence of AI and automation technologies entering the mainstream. More importantly, they show that there’s no reason to rest on your laurels. In late 2024, it was announced that the US had suffered what many experts believe to be the biggest telecoms hack in history.

Cyberattacks and data breaches during the first half of 2024 have included the ransomware attacks against Change Healthcare and CDK, as well as data theft and extortion attacks targeting Snowflake customers.

2 days ago - Qilin, active since 2022, is known for targeting large organizations and has recently allied with LockBit and DragonForce. The Habib Bank attack adds to a series of major financial breaches this year, showing the growing threat ransomware poses to global banking institutions. (Cybernews)

The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Multi-State Information Sharing & Analysis Center (MS-ISAC) are releasing this joint CSA to disseminate known LockBit 3.0 ransomware IOCs and TTPs identified through FBI investigations as recently as March 2023. ... The Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) released joint CSA on Royal ransomware used by threat actors. Attacks have spread across numerous critical infrastructure sectors including, but not limited to, manufacturing, communications, healthcare and public healthcare (HPH), and education.