Ransomware

Ingram Micro Suffers Data Breach Due to Ransomware Attack Information technology giant Ingram Micro has confirmed a data breach affecting more than 42,000 people, the result of a ransomware attack detected in July 2025. The company, a global B2B service provider and technology distributor with net sales of $48 billion in 2024, launched an investigation after detecting a cybersecurity incident in its internal systems. Incident Details and Compromised Data The attack, which took place between July 2 and 3, 2025, allowed an unauthorized third party to steal files from Ingram Micro’s internal repositories. The compromised files included employee and job applicant records with a wide range of personal information, such as: ...

Romania’s national water management authority, Romanian Waters (Administrația Națională Apele Române), confirmed being the victim of a ransomware attack during the weekend of December 20, 2025. According to the National Cybersecurity Directorate (DNSC), the incident affected approximately 1,000 computer systems in the central organization and in 10 of its 11 regional offices. Impact on IT and OT Systems The ransomware attack disrupted a variety of IT assets, including Geographic Information System (GIS) servers, databases, email and web services, Windows workstations, and domain name servers (DNS). ...

Multiple local authorities in London are dealing with a serious cybersecurity incident, it has recently emerged. The Royal Borough of Kensington and Chelsea (RBKC) and Westminster City Council (WCC) issued a statement saying they are responding to an incident identified on Monday morning. The incident has impacted several systems of both organizations, including telephone lines. Both entities have notified the UK Information Commissioner’s Office (ICO) and are collaborating with the National Cyber ​​Security Center (NCSC) for the response to the incident. ...

The third quarter of 2025 saw a significant increase in ransomware attacks, with an 11% increase in data breach publications compared to the previous quarter. According to a report from Beazley Security, only three ransomware groups were responsible for the majority of cases (65%), with the primary initial entry route being compromised VPN credentials. Dominant Ransomware Groups The three most prolific ransomware groups in the third quarter were Akira, Qilin, and INC Ransomware. These groups have demonstrated great operational capacity, contributing to the vast majority of reported incidents. ...