Latest Internet & Cybersecurity News
Romanian Water Authority and Energy Producer Targeted in Coordinated Holiday Ransomware Campaign
On December 26, 2025, Romania's Apele Române water authority and Oltenia Energy Complex, a major coal-based power producer, suffered ransomware attacks by the 'Gentlemen' group. The strikes disrupted ERP systems, email, and websites but spared operational technology, exploiting holiday reduced vigilance and critical infrastructure links. Analysts note the attackers targeted administrative IT layers supporting national energy and water systems.
Jaguar Land Rover (JLR) Hit by Ransomware via Third-Party Software Exploit
In 2025, Scattered Lapsus$ Hunters exploited vulnerabilities in third-party supplier software to deploy ransomware, crippling JLR’s production and logistics in the UK, Slovakia, and Brazil. The attack highlighted ongoing risks in supplier ecosystems and cloud platforms.
Production shutdowns underscored organizational exposure through shared digital infrastructure.
St. Paul, Minnesota Declares Emergency After Ransomware Disrupts City Services
In July 2025, the Interlock ransomware group attacked St. Paul, encrypting billing, emergency coordination, and citizen services systems, prompting a state of emergency. The breach compromised a shared network drive, severely impacting municipal operations.
It reflects trends in civic infrastructure disruptions.
ShinyHunters Breach Exposes TransUnion Data of 4.46 Million US Consumers
ShinyHunters, alongside Scattered Spider, targeted high-value integrations, exposing personal data of 4.46 million from TransUnion, plus Google, Workday, and others. The extortion campaign prioritized third-party CRM systems over single targets.
Over one million were also affected in Allianz Life's third-party CRM breach.
Neighbourly Data Breach: Stuff Files Court Injunction to Halt Dark Web Spread
New Zealand's Neighbourly site, owned by Stuff, suffered a major breach exposing names, emails, posts, messages, and GPS data now for sale on the dark web. The High Court accepted an injunction application to prevent further spread; the site was down on New Year's Day.
Experts warn GPS data poses life risks.
700Credit Breach Leaks Millions of SSNs via Third-Party API Exploitation
Detected October 25, 2025, attackers compromised a third-party partner in July, exploiting an API to extract consumer records including SSNs over weeks. South Carolina reported over 108,000 residents affected by January 2, 2026.
Lawsuits allege negligence in the auto finance data exposure.
Bitfinex Hack Convict Ilya Lichtenstein Released Early to Home Confinement
Ilya Lichtenstein, convicted for the 2016 Bitfinex hack exploiting multi-signature vulnerabilities, was released under the First Step Act. He and his wife laundered stolen bitcoin through mixing services and gift cards.
The case highlights persistent crypto exchange risks.
Covenant Health Cyberattack Exposes Nearly 500,000 Patients' Data
Initially reported as 8,000 affected, the May 2025 attack by Russian Qilin group stole data on 500,000 including SSNs, DOBs, and treatment info—852GB total. Covenant offers 12 months identity protection; Qilin leaked files after no ransom.
The breach far exceeded early estimates.
Bank Sepah Breach in Iran: 42 Million Customer Records Stolen
The Codebreakers collective stole 42 million records from Iran's Bank Sepah, leaking data after rejected ransom demands. This large-scale attack underscores regional cyber threats.
It contributes to 2025's pattern of massive data thefts.
UNFI Cyberattack Disrupts North American Food Supply Chain
United Natural Foods Inc. (UNFI) suffered a cyberattack disabling electronic ordering, causing widespread supply delays. The incident highlights operational technology and supply chain vulnerabilities.
It reinforces lessons for 2026 digital resilience.
Sedgwick Confirms Cyber Incident on Federal Contractor Subsidiary
On January 5, 2026, Sedgwick confirmed a cybersecurity incident involving its major federal contractor subsidiary and TridentLocker ransomware. Details on impact remain emerging.
This adds to ongoing enterprise breaches.