Significant Breaches at Oracle and Marks & Spencer Highlight Cyber Risks
Significant Breaches at Oracle and Marks & Spencer Highlight Cyber Risks
On April 22, 2025, cybersecurity incidents at Oracle and Marks & Spencer revealed vulnerabilities in critical infrastructures. Oracle reported multiple breaches affecting its legacy environments, potentially exposing millions of files. While the main cloud infrastructure remained secure, attackers demanded ransom, prompting FBI investigations. Concurrently, Marks & Spencer faced a significant cyberattack that disrupted online transactions and deliveries, showcasing the relentless nature of cyber threats against established retailers. These events come amid a wave of phishing campaigns targeting email marketing platforms like Mailchimp and HubSpot, raising concerns about broader implications for businesses relying on these services. Additionally, Hertz has begun notifying customers of a massive data breach, potentially exposing sensitive personal information. Together, these incidents underscore an urgent need for organizations to bolster their cybersecurity defenses in an evolving threat landscape.
Also In Security Today
- Phishing Campaign: Major email marketing platforms, including Mailchimp and HubSpot, were hit by a phishing attack compromising numerous corporate accounts, highlighting risks for businesses reliant on their services. Source
- Hertz Data Breach: Hertz has started notifying customers regarding a significant data breach that may have exposed sensitive personal information, urging affected individuals to monitor their accounts. Source
- Ransomware Group Activity: The ransomware group "DragonForce" is evolving towards a cartel-like structure, enabling affiliates to exploit its infrastructure independently, indicating a shift in the cybercrime economy. Source