A large-scale phishing campaign has been uncovered targeting customers of Aruba S.p.A. The campaign aims to steal sensitive login credentials and payment information by impersonating Aruba’s login and payment portals.

A ransomware attack by the Qilin cybercrime group in June 2024 targeted Synnovis, a pathology services provider for the NHS, resulting in the exposure of highly sensitive medical data of over 900,000 patients.

Francesco Nicodemo, a prominent Italian communications executive and political adviser, has been identified as the fifth Italian victim of Paragon’s Graphite spyware. He is among 90 individuals notified by WhatsApp of the targeting.

A major exploit targeting the decentralized finance (DeFi) protocol Balancer has resulted in the theft of over $120 million in cryptocurrency, with at least $99 million in ETH alone. The attack exploited faulty access control mechanisms.

A Russia-linked threat actor breached Ukrainian entities in mid-2025 using stealthy LotL techniques. The attackers leveraged legitimate administrative tools and minimal custom malware to evade detection while stealing sensitive data.

Svenska kraftnät, Sweden’s state-owned electricity transmission operator, has confirmed a data breach following claims by the Everest ransomware group. The threat actor claims to have exfiltrated approximately 280 GB of internal data.

SpaceX has disabled over 2,500 Starlink satellite internet kits that were being used by scam compounds in Myanmar. This action coincided with the Myanmar government’s raid on KK Park, where numerous Starlink devices were confiscated.

Multiple municipalities across US reported cyber incidents disrupting critical government services. Affected regions include Texas, Tennessee, Indiana, and Pennsylvania, with impacts ranging from court system outages to utility payment disruptions.

Two critical vulnerabilities—CVE-2025-30333 and CVE-2025-20362—affecting Cisco Adaptive Security Appliances (ASA) have triggered an emergency directive from CISA, requiring immediate patching by federal agencies.

A record number of “nationally significant” cyberattacks hit the United Kingdom last year, the National Cyber Security Centre (NCSC) is to announce on Tuesday as it publishes its annual review for 2024.