Major Ransomware Attack and High-Profile Hacks Dominate Cybersecurity News
Major Ransomware Attack and High-Profile Hacks Dominate Cybersecurity News
On February 24, 2025, a formidable ransomware attack known as the EncryptHub incident has compromised 618 organizations worldwide, utilizing spear-phishing and social engineering techniques to infiltrate systems. The attackers deployed custom infostealers targeting sensitive cryptocurrency information, including wallets and passwords, demanding ransom in stablecoins like USDT. This incident underscores the need for robust phishing defenses and security training across all levels of organizations.
In related news, the notorious Lazarus Group has orchestrated a massive $1.5 billion heist from Bybit’s Ethereum cold wallet, marking one of the largest cryptocurrency thefts to date. This attack exploited vulnerabilities in a developer's machine, demonstrating the sophistication of state-sponsored cybercrime.
Additionally, the US drug screening firm DISA reported a data breach affecting approximately 3.3 million individuals, with sensitive personal information compromised. In another alarming development, a breach linked to a Chinese IoT company exposed 2.7 billion records, highlighting critical vulnerabilities in IoT security. Organizations must prioritize data protection and bolster their defenses against such escalating threats.
Also In Security Today
- Bybit Hack: The Lazarus Group has stolen $1.5 billion from Bybit by compromising a developer's machine and manipulating transaction processes. Read more.
- DISA Data Breach: A major breach at the US drug screening firm DISA has affected around 3.3 million people, revealing sensitive personal data. More details.
- IoT Data Breach: A non-secured database owned by a Chinese IoT company has exposed 2.7 billion records, including passwords and device IDs. Learn more.