A massive data breach has compromised the personal information of approximately 7.4 million Paraguayan citizens. The stolen data includes names, ID card numbers, dates of birth, professions, and certificates.

Mainline Health Systems has begun notifying 101,104 individuals of a data breach stemming from a ransomware attack that occurred in April 2024. The breach compromised sensitive data including Social Security numbers.

The ransomware group Play has claimed responsibility for a cyberattack on Dairy Farmers of America, the largest dairy cooperative in the U.S. The attack disrupted multiple manufacturing plants and allegedly resulted in the theft of sensitive data.

Anubis, a ransomware-as-a-service (RaaS) group that emerged in December 2024, has claimed responsibility for a significant data breach involving Disneyland Paris. The group alleges it exfiltrated 64GB of sensitive data.

A record-breaking DDoS attack has been reported, peaking at an unprecedented 7.3 Tbps. The attack, which lasted just 45 seconds, was designed to overwhelm the target’s infrastructure with a massive volume of junk traffic.

CoinMarketCap identified a supply chain vulnerability that allowed attackers to inject a malicious wallet drainer script into its homepage. The attack exploited a third-party API used to load a doodle image.

BitoPro, a Taiwanese cryptocurrency exchange, suffered a cyberattack on May 8, 2025, resulting in the theft of approximately $11 million in digital assets. The attack has been attributed to the North Korean state-sponsored Lazarus Group.

Tonga’s Ministry of Health has suffered a ransomware attack that has crippled its National Health Information System, affecting hospital operations and public access to medical services.

The ransomware group Kairos has claimed responsibility for stealing 1.94 TB of sensitive data from the Taos County government in New Mexico. The group issued a 7-day ultimatum, threatening to sell or publicly release the data if a ransom is not paid.

A significant cyberattack has disrupted Russia’s Mercury platform, a critical component of the country’s Federal State Information System for Veterinary Surveillance (VetIS). The platform was taken offline.