Australian airline Qantas detected a cyberattack involving a third-party platform used by its contact center. The breach, publicly disclosed on July 2, 2025, potentially exposed personal data of up to six million customers.

A British IT worker has been sentenced to over seven months in prison after launching a retaliatory cyberattack against his employer’s network. Within hours of suspension, he began altering login names and passwords, disrupting internal operations.

A UK government website originally created for the Home Office’s 2022 “No Place to Hide” anti-encryption campaign has been hijacked to promote a payday loan scheme. The campaign was initially expected to target Facebook Messenger.

Qilin introduced a controversial new feature in its affiliate panel—a "Call lawyer" button. This feature is designed to provide affiliates with access to legal experts who can assist in ransom negotiations by advising on legal implications.

A cyber extortion group known as World Leaks has claimed responsibility for a significant data breach at Freedman HealthCare. The attackers allege they have exfiltrated 52.4 GB of sensitive data comprising 42,204 files.

In May 2024, cybercriminals breached NHS Professionals (NHSP), stealing its AD database. The attackers gained domain admin access and exfiltrated sensitive data, exposing critical security gaps.

Lee Enterprises, a prominent U.S.-based regional newspaper publisher, has confirmed a significant cybersecurity incident involving the unauthorized access and exfiltration of sensitive personal data belonging to approximately 40,000 individuals.

The Play ransomware group has adopted new tactics, including exploiting a critical vulnerability in SimpleHelp (CVE-2024-57727), and continues to evolve its methods to evade detection and maximize impact.

A recent wave of cyberattacks attributed to the threat actor Scattered Spider has targeted financial services and retail organizations across the United Kingdom and the United States.

A high-severity vulnerability (CVE-2025-47934) has been discovered in OpenPGP.js, a JavaScript implementation of the OpenPGP protocol. This flaw allows attackers to spoof both signed and signed-and-encrypted messages.