November 2025: Gainsight and the Oracle EBS Breach
Stuart Glover
November saw a wave of attacks exploiting a zero-day vulnerability in Oracle E-Business Suite (EBS). Auto parts maker LKQ and the University of Pennsylvania were among the victims of the…
Cyber Attacks
December 2025: Coupang and SoundCloud Finish the Year
The year ended with two massive consumer data breaches. South Korean e-commerce giant Coupang reported that a former employee had leaked the personal information of 34 million customers. Meanwhile, SoundCloud…
January 2025: The VPN Zero-Day Crisis Hits Nominet
The year began with a massive exploitation of zero-day vulnerabilities in Ivanti and SonicWall VPN products. One of the most high-profile victims was Nominet, the UK’s domain registry. Attackers linked…
February 2025: Bybit and the $1.5 Billion Crypto Heist
In mid-February, the Bybit cryptocurrency exchange fell victim to what is now cited as the largest crypto theft in history. Hackers, believed to be the Lazarus Group, exploited a third-party…
March 2025: Aviation Grounded by Collins Aerospace Breach
March saw the aviation industry thrown into chaos after a ransomware attack targeted Collins Aerospace’s vMUSE platform. This software is essential for passenger check-in and boarding at airports worldwide. The…
April 2025: Marks & Spencer and the UK Retail Wave
Retail giant Marks & Spencer (M&S) was the face of a coordinated ransomware campaign in April. The Scattered Spider group exploited Active Directory credentials to paralyze M&S online ordering and…
May 2025: The Insider Threat at Coinbase and Coca-Cola
May shifted the focus toward internal vulnerabilities. Coinbase revealed that hackers had bribed overseas support agents to facilitate account takeovers, highlighting a disturbing trend of “Recruitment as a Service” by…
June 2025: The 16 Billion Credential “Mega-Leak”
In June, researchers uncovered a staggering dataset of over 16 billion login credentials hosted openly online. While not a single breach of one company, it was an aggregation of data…
July 2025: The SalesLoft-Salesforce SaaS Domino Effect
July was defined by the “SolarWinds moment for SaaS.” A breach at the sales-engagement platform SalesLoft allowed ShinyHunters to exploit OAuth integrations with Salesforce. This granted attackers access to the…
August 2025: Jaguar Land Rover Production Paralyzed
In one of the most economically damaging attacks of the year, Jaguar Land Rover (JLR) was forced to shut down global production lines for five weeks in August. A ransomware…
September 2025: Asahi Brewing Global System Failure
Japanese brewing giant Asahi reported a total “system failure” across its global operations in September. The cause was quickly confirmed as a coordinated ransomware attack that had infiltrated industrial control…
October 2025: Red Hat GitLab and the 570GB Leak
The Crimson Collective threat group claimed a major victory in October by exfiltrating 570GB of data from Red Hat-managed GitLab servers. The breach affected numerous high-profile customers, including Nissan, whose…