https://www.tiktok.com/@cisomarketplace
A catastrophic cloud misconfiguration left one of the world's largest accounting firms vulnerable to complete database exfiltration In a breach that underscores the persistent danger of cloud misconfigurations, Ernst & Young (EY), one of the Big Four accounting giants, accidentally exposed a massive 4-terabyte SQL Server backup file
October 28, 2025 — Sweden's national power grid operator, Svenska kraftnät, has confirmed a significant data breach after the notorious Everest ransomware group claimed responsibility for an attack that compromised the organization's external file transfer systems. The incident marks another alarming escalation in cyberattacks targeting critical energy
Bottom Line Up Front: The September 2025 cyber attack on Jaguar Land Rover has officially become the UK's most financially devastating cyber event in history, with the Cyber Monitoring Centre estimating total damages between £1.6-2.1 billion (most likely £1.9 billion). The five-week production shutdown cascaded
The £300 million question: Can managed service providers survive being the breach point? In a move that sends shockwaves through the IT services industry, British retail giant Marks & Spencer has terminated its IT service desk contract with Indian tech powerhouse Tata Consultancy Services (TCS) following a devastating cyber attack
A comprehensive investigation into the wave of cyberattacks devastating mortgage lenders from 2023-2025 The American dream of homeownership has become a nightmare for tens of millions of consumers. Between October 2023 and October 2025, a relentless wave of cyberattacks has compromised the most sensitive financial data of over 47 million
Breaking: Third-Party Supplier Breach Compromises Boarding Pass Data for Entire Month of August 2025 October 26, 2025 - Dublin Airport has confirmed a significant data breach affecting potentially all 3.8 million passengers who traveled through the Irish capital's terminals during August 2025, following a cyberattack on aviation
October 26, 2025 Executive Summary Google is currently investigating a significant security breach involving a contractor who systematically exfiltrated nearly 2,000 screenshots and sensitive internal files over several weeks in October 2025. The compromised data includes critical information about Google Play Store infrastructure, security guardrails, and protective systems that
October 26, 2025 - Canadian toy retailer Toys "R" Us has confirmed a significant data breach affecting customer information after threat actors posted stolen records on the dark web in late July. The company waited nearly three months to notify affected customers, raising questions about disclosure timelines and
Healthcare Breach
October 2025 — SimonMed Imaging, one of the largest outpatient medical imaging providers in the United States, has confirmed that a January 2025 ransomware attack by the Medusa group compromised the protected health information of 1,275,669 individuals, marking one of the most significant healthcare data breaches disclosed this year.
Healthcare Breach
Montana State Investigation Launched as Third-Party Vendor Breach Impacts One-Third of State's Population October 26, 2025 — Blue Cross Blue Shield of Montana (BCBSMT) has become the latest healthcare organization to disclose a massive data breach affecting approximately 462,000 current and former members—nearly one-third of Montana'
Healthcare Breach
Connecticut's largest healthcare system reaches preliminary settlement in class action lawsuit after sophisticated March 2025 cyberattack Executive Summary In one of the most significant healthcare data breach settlements of 2025, Yale New Haven Health System (YNHHS) has agreed to pay $18 million to resolve class action litigation stemming
As October 2025 draws to a close, the cybersecurity landscape continues to be battered by an unrelenting wave of sophisticated attacks. From nation-state espionage campaigns to massive ransomware operations, organizations worldwide are facing unprecedented threats. Here's a comprehensive look at who's been targeted and what'