The UK Foreign Office has confirmed a cyberattack, first reported in October, but details remain unclear. Officials state that while there is speculation about Chinese involvement and potential data theft, they assert that no individuals are at risk from the breach.

Spain's Ministry of Science has partially shut down its IT systems following a cyberattack claim by a hacker group. The breach reportedly involved sensitive data, and the ministry is currently assessing the situation while suspending administrative procedures.

SoundCloud confirmed a cyberattack that compromised data from 20% of its users, including email addresses and public profile information. The company quickly contained the breach and is enhancing its security measures to prevent future incidents. Misconfigurations caused temporary issues for some users on VPNs, but SoundCloud is working to resolve them.

The French Soccer Federation suffered a cyberattack that compromised member data, including names and contact information. The breach was traced to a compromised account, which has since been disabled and secured. The federation has filed a complaint regarding the incident.

A security audit of ClawHub found 341 malicious skills, primarily linked to a single campaign called ClawHavoc. These skills disguise themselves as legitimate tools but deliver trojans capable of stealing sensitive information from users. The attack leverages common installation practices to bypass security measures.

Ukrainian Defense Forces were attacked by a charity-themed malware campaign delivering backdoor malware called PluggyApe, likely linked to the Russian threat groups Void Blizzard and Laundry Bear. The campaign used deceptive messages to lure victims into downloading malicious files disguised as documents. CERT-UA warns that mobile devices are increasingly targeted due to their weaker security.

The U.S. Congressional Budget Office confirmed a cyberattack by a suspected foreign hacker, potentially exposing sensitive data. The agency has taken steps to contain the breach and is investigating while continuing to operate despite some congressional offices halting communications.

WestJet is investigating a cyberattack that disrupted access to its internal systems and app, affecting user logins. The airline has activated specialized teams in collaboration with law enforcement to address the breach while ensuring safety and protecting sensitive data. Although some services have been restored, it remains unclear whether the incident was a ransomware attack or a precautionary shutdown of systems.

Asahi Group Holdings has suspended operations in Japan due to a cyberattack that affected its ordering, shipping, and customer service activities. The company is currently investigating the incident, which has not yet confirmed any exposure of personal data, and is working to restore normal operations.

An Oregon agency has announced that hackers successfully stole sensitive data during a recent cyberattack. The breach has raised concerns about the security of personal information and the measures being taken to protect it moving forward.

Conduent, a major American business services and government contractor, confirmed that client data was stolen during a cyberattack in January 2025. The breach involved personal information of individuals associated with the company's clients, though there are currently no indications that the data has been made public. Conduent is assessing the impact of the breach and informing clients as necessary.

SK Telecom has reported a significant cyberattack that has compromised customer USIM data, potentially allowing attackers to carry out further malicious activities. The incident raises concerns about the security measures in place for protecting sensitive personal information in the telecommunications sector.

Education giant Pearson was hit by a cyberattack that allowed threat actors to steal customer and corporate data, primarily consisting of "legacy data." The breach was facilitated by an exposed GitLab Personal Access Token, which gave attackers access to internal systems and cloud services, resulting in significant data theft affecting millions of individuals. Pearson has confirmed the incident and is enhancing their security measures but has not disclosed details about the ransom or the extent of customer impact.

A significant cyberattack has targeted a major grocery chain, disrupting operations and raising concerns about the security of the company's systems. The incident highlights the growing threat of ransomware and the vulnerabilities within the retail sector. Investigations are ongoing to assess the full impact and prevent future attacks.

Malaysia's Prime Minister announced that the country rejected a ransom demand following a cyberattack on the Kuala Lumpur International Airport. The attack, which disrupted airport operations, was effectively addressed without conceding to the demands of the hackers. Authorities are investigating the incident further to enhance cybersecurity measures.

A new spear-phishing campaign, dubbed "Venom Spider," is targeting hiring managers and recruiters by masquerading as job seekers. The attackers exploit the necessity for HR staff to open email attachments, delivering a backdoor malware known as "More_eggs" to compromise systems and gather sensitive information.

Bouygues Telecom has suffered a significant cyberattack, compromising the personal data of approximately 6.4 million customers. The breach involved unauthorized access to sensitive information, prompting the company to notify affected individuals and take steps to secure their systems.

Telecom giant Orange has issued a warning about potential disruptions due to an ongoing cyberattack that is impacting its operations. The company is actively working to mitigate the effects and ensure service continuity for its customers.