Ascension, one of the largest private healthcare systems in the U.S., has disclosed a data breach affecting 437,329 individuals. The breach originated from a third-party vendor compromise, potentially linked to Clop ransomware

Ransomware groups Qilin and Hunters International are abusing Kickidler, a legitimate employee monitoring tool used by over 5,000 organizations across 60 countries, to conduct stealthy reconnaissance and credential harvesting.

A supply chain attack has compromised the npm package rand-user-agent, which averaged 45,000 weekly downloads. Although deprecated, the package remained popular, making it an attractive target for attackers.

Insight Partners, a global venture capital and private equity firm managing over $90 billion in assets, has confirmed a data breach following a cyberattack on January 16, 2025.

The LockBit ransomware gang has suffered a major breach after its dark web affiliate panels were defaced and replaced with a link to a MySQL database dump. This breach exposes sensitive operational data and further damages LockBit’s reputation.

Microsoft has confirmed that the April 2025 security update (KB5055523) is causing authentication issues on domain controllers running Windows Server 2016, 2019, 2022, and 2025.

Hitachi Vantara, a subsidiary of Hitachi, experienced a ransomware attack attributed to the Akira ransomware group on April 26. The incident disrupted several internal systems, prompting the company to take servers offline as a containment measure.

Marks & Spencer (M&S) suffered a ransomware attack attributed to the Scattered Spider threat group. The attack caused significant operational disruptions, including outages in contactless payment systems and online ordering.

Cloudflare has reported a record-breaking surge in DDoS attacks, mitigating 21.3 million attacks in 2024—a 358% year-over-year (YoY) increase—and already handling 20.5 million attacks in Q1 2025 alone.

Baltimore City Public Schools notified tens of thousands of employees and students of a data breach following an incident in February when unknown attackers hacked into its network.