Topics: Fraud Management & Cybercrime, Fraud Risk Management, Ransomware Additional Coverage: SudamericaData Leak, RaccoonO365 Arrest, and Nefilim Case Update By Pooja Tikekar (@PoojaTikekar) • December 25, 2025 Image: Shutterstock/ISMG Every week, the Information Security Media Group provides a roundup of global cybersecurity incidents and data breaches. In this edition, a…
As hospitals globally grapple with the ongoing coronavirus pandemic, cybercriminals are intensifying their attacks on vulnerable healthcare institutions. The latest report from Palo Alto Networks reveals that threat actors are exploiting this crisis, targeting organizations at the forefront of pandemic response with ransomware and data-stealing malware. According to the report…
Recent CACTUS Ransomware Campaign Targets Qlik Sense Vulnerabilities A new ransomware campaign, identified as CACTUS, has been leveraging recently revealed security vulnerabilities within Qlik Sense, a cloud analytics and business intelligence platform. This operation has sparked significant concern among cybersecurity experts, marking the first known use of these vulnerabilities by…
Romania’s National Water Authority Faces Severe Ransomware Attack Romania’s national water authority, Romanian Waters (Administrația Națională Apele Române), is in the midst of recovery following a significant ransomware attack that commenced on December 20, 2025. The assault has severely compromised the agency’s operations, impacting around 1,000 computer systems, from workstations…
Recent federal contracting records reviewed indicate that the United States Customs and Border Protection (CBP) agency is advancing its use of small drones from experimental trials to standard surveillance mechanisms. This shift will expand CBP’s already extensive monitoring capabilities, which in some instances extend far beyond national borders, raising concerns…
Data Breach Notification, Data Security, Healthcare Ransomware Group Rhysida Claims to Have Leaked 3.7TB of Data From Maryland Hospital System Marianne Kolbasuk McGee (HealthInfoSec) • December 18, 2025 MedStar Health is alerting patients about a hacking incident involving compromised data. Ransomware group Rhysida claims to have obtained the entity’s stolen…
In a striking incident highlighting ongoing cybersecurity threats, the FBI has apprehended a Russian national accused of attempting to infiltrate a U.S. company’s computer network through dubious means. The individual, identified as Egor Igorevich Kriuchkov, 27, was arrested in Los Angeles after reportedly offering $1 million to an employee of…
Fraud Management & Cybercrime, Litigation, Ransomware Cybercrime Group Rhysida Continues to Feature Victims on Its Leak Site Marianne Kolbasuk McGee (HealthInfoSec) • December 16, 2025 Sunflower Medical Group has agreed to pay $1.2 million to resolve class action litigation following a ransomware attack attributed to the Rhysida group. (Image: Sunflower…
In a significant data breach, activist Emma Best has publicly released over 11,000 private messages from a Twitter group associated with WikiLeaks and its close supporters, dating from 2015 to 2017. This release has exposed the internal discussions of an organization known for disseminating confidential information. The exposed messages had…
