KAWA4096 is a newly identified ransomware strain that surfaced in June 2025. Its name, derived from the Japanese word for "river," reflects a thematic branding. The ransomware adopts stylistic elements from established groups.

BADBOX 2.0, a variant of the BADBOX malware family, has been discovered preinstalled on Android-based IoT devices, affecting over 1 million devices across 222 countries. This malware is embedded in device firmware, making it highly persistent.

Researchers have identified a campaign by the threat actor UNC6148 targeting SonicWall Secure Mobile Access (SMA) appliances. These appliances manage and secure access by mobile devices and are located at the edge of enterprise networks.

Italian authorities, in collaboration with French and Romanian law enforcement, have dismantled a Romanian ransomware group known as “Diskstation.” The group targeted victims in northern Italy, particularly in the Lombardy region.

A sophisticated threat campaign by UNC6148 is actively targeting fully patched but end-of-life SonicWall Secure Mobile Access (SMA) 100 appliances. The targeted appliances are fully patched but have reached end-of-life status.

A significant data exposure incident involving the Gladney Center for Adoption has revealed over 1.1 million sensitive records related to children, birth parents, adoptive families, and caregivers.

Compumedics and its subsidiary NeuroMedical Supplies suffered a ransomware attack in March 2025, compromising sensitive data of at least 320,404 individuals. The Van Helsing ransomware group claimed responsibility for the attack.

UK retail giant Co-op has confirmed a significant data breach that compromised the personal information of all 6.5 million of its customers. The breach is attributed to the cybercriminal group Scattered Spider.

An international law enforcement operation, codenamed 'Operation Elicius', dismantled the Romanian ransomware gang known as 'Diskstation'. The group encrypted the systems of several companies in the Lombardy region of Italy.

The vulnerability posed a significant privacy risk, potentially exposing sensitive user-generated content. Although Meta found no evidence of abuse, the flaw could have allowed unauthorized access to private AI interactions.