Friday, May 16th, 2025
Cybersecurity Week in Review (16/05/25)
Fashion giant Dior discloses cyberattack, warns of data breach
House of Dior, the French luxury fashion brand commonly referred to as Dior, has disclosed a cybersecurity incident that has exposed customer information.
Marks & Spencer Confirms Customer Data Stolen in Cyberattack
UK retailer Marks & Spencer (M&S) has revealed that the personal information of its customers, including telephone numbers, home addresses, and dates of birth, was stolen in a recent cyberattack on the company.
Source: https://www.darkreading.com/threat-intelligence/marks-spencer-confirms-customer-data-stolen
Hackers behind UK retail attacks now targeting US companies
Google warned today that hackers using Scattered Spider tactics against retail chains in the United Kingdom have also started targeting retailers in the United States.
Australian Human Rights Commission leaks docs to search engines
The Australian Human Rights Commission (AHRC) disclosed a data breach incident where private documents leaked online and were indexed by major search engines.
Steel giant Nucor Corporation facing disruptions after cyberattack
A cybersecurity incident on Nucor Corporation’s systems, the largest steel producer in the U.S., forced the company to take offline parts of its networks and implement containment measures.
Insight Partners Data Breach: Bigger Impact Than Anticipated
Nearly three months ago, global venture capital and private equity firm Insight Partners confirmed it had fallen victim to a data breach. Now, details are emerging, and it says that based on the ongoing investigation, the affected data may include fund, management company, and portfolio information, banking and tax information, and the personal information of current and former employees.
Source: https://www.darkreading.com/threat-intelligence/insight-partners-data-breach-bigger-impact
Nation State-Actors Attacking Healthcare Institutions to Sabotage IT & OT Systems
The healthcare sector faces an unprecedented surge in cyberattacks from nation-state actors seeking to disrupt critical IT infrastructure and operational technology (OT) systems.
Source: https://cybersecuritynews.com/nation-state-actors-attacking-healthcare-institutions/
Twilio denies breach following leak of alleged Steam 2FA codes
Twilio has denied in a statement for BleepingComputer that it was breached after a threat actor claimed to be holding over 89 million Steam user records with one-time access codes.
Attackers Lace Fake Generative AI Tools With ‘Noodlophile’ Malware
An attacker is offering supposed generative AI tools to users in Facebook groups, only to give them malware once they upload their media to the fraudulent “tool.”
Source: https://www.darkreading.com/endpoint-security/attackers-fake-generative-ai-tools-malware
Ascension says recent data breach affects over 430,000 patients
Ascension, one of the largest private healthcare systems in the United States, has revealed that the personal and healthcare information of over 430,000 patients was exposed in a data breach disclosed last month.
Contact Us
The data you supply here will not be added to any mailing list or given to any third party providers without further consent. View our Privacy Policy for more information.