Khan & Associates CPA, Inc.
July 9, 2025
•[ unauthorized access, data leak ]
An unauthorized user accessed Khan & Associates CPAs Intuit tax filing software between July 916 2025, filing false federal and state tax returns and exposing clients PII including SSNs and bank data.
Undisclosed Florida orthopedic practice
July 8, 2025
•[ data leak, healthcare ]
Beckers reports a data breach affecting a Florida orthopedic practice; details on scope and vector limited.
Nymburk Hospital
July 8, 2025
•[ ransomware, extortion ]
Czech police investigating a cyberattack on Nymburk Hospital including extortion elements; disruption reported.
Healthcare Interactive
July 8, 2025
•[ data leak, hacked, phi ]
Healthcare Interactive reported that hackers accessed its network between July 812, 2025 and exfiltrated files containing extensive PHI/PIIincluding names, DOBs, SSNs, contact details, insurance enrollment IDs, diagnoses, provider names, lab results, medical images, treatment plans, and possibly claims datawith the breach detected around July 22; the attack vector wasnt disclosed but regulators were notified.
Venice Film Festival
July 7, 2025
•[ hack, leak ]
On July 7, 2025, unauthorized actors accessed and copied documents from the Venice Film Festivals servers, extracting personal data of attendees, including journalists and industry professionals. Systems were proactively isolated by the festivals IT team, and authorities were notified. There is no indication of data encryption, nor disruption of payment, booking, or ticketing systems. Notifications to affected individuals began around early August 2025.
City of Nuremberg
July 7, 2025
•[ cyberattack ]
Local reporting indicates the City of Nuremberg website suffered a cyberattack causing outages; noted as not the first time.
Woodlawn Health
July 5, 2025
•[ ransomware, malware, healthcare ]
Woodlawn Health in Rochester, Indiana suffered a ransomware attack starting July 5, 2025, which encrypted systems and disrupted clinical and administrative operations. Systems were gradually restored, and officials confirmed that some patient care was impacted. Investigations continue into whether personal or medical data was exfiltrated.
Axis Max Life Insurance (Max Financial Services)
July 5, 2025
•[ data leak ]
Max Financial disclosed its insurance subsidiary received notice of unauthorized access to customer data; investigation underway; details not disclosed.
Campaign: Incidents in Brazil's financial sector (roundup)
July 5, 2025
•[ Financial ]
Roundup article listing recent cybersecurity incidents impacting Brazils financial sector; logged as campaign-level entry.
U.S. federal judiciary CM/ECF & PACER systems
July 4, 2025
•[ hack, leak, government ]
The U.S. federal judiciarys electronic case filing systems (CM/ECF and PACER) were breached around July 4, 2025. Sensitive sealed dataincluding indictments, arrest warrants, and identities of confidential informantswas accessed across multiple district courts. Reports suggest possible theft of system source code and tampering with ~12 dockets. The precise volume of data stolen is unknown, but officials confirmed that a significant number of sealed case files were exposed.
PIX banking transaction system
July 4, 2025
•[ cybercrime, financial fraud ]
Police in Brazil arrested a suspect tied to a $100M+ banking hack scheme; article frames it as multi-bank cybercrime operation.
Louis Vuitton Korea
July 4, 2025
•[ data leak ]
Bloomberg-reported cyberattack resulted in customer data leak affecting Louis Vuitton Korea customers; details limited at disclosure.
Aeroméxico
July 4, 2025
•[ data leak ]
Criminal group ShinyHunters claimed responsibility for compromising Aeromxicos Salesforce or related cloud application environment around July 4 2025, exfiltrating approximately 172 GB of passenger data including contact and ID information. Aeromxico has not confirmed the intrusion or the volume of records exposed.
Clinical Diagnostics NMDL (Eurofins) lab systems
July 3, 2025
•[ hack, healthcare ]
A breach at the Clinical Diagnostics NMDL lab in Rijswijk compromised personal and medical data of women who participated in cervical cancer screenings; hackers accessed the data starting July 3, 2025, with notification to affected individuals beginning around August 11
University of Iowa Community HomeCare
July 3, 2025
•[ hack, healthcare ]
Cybercriminal gained unauthorized access to UI Community HomeCare computer system on July 3, 2025; systems restored within one business day but files containing patient information were viewed and copied.
Royal Health
July 3, 2025
•[ hack, healthcare ]
Data breach at Royal Health Inc. detected on or about July 3, 2025, where an unauthorized party accessed documents potentially containing full names and Social Security numbers. The breach was disclosed to the Massachusetts Attorney General and notifications began August 21. Compensation inquiries are underway under Levi & Korsinsky LLPs investigation.
Ingram Micro
July 3, 2025
•[ ransomware ]
SafePay ransomware attack on Ingram Micro shut down internal systems, website, and online ordering systems.
Avantic Medical Lab
July 3, 2025
•[ ransomware, data leak ]
Everest listed the lab June 10 and leaked 31 GB of patient files on July 3; contents include PHI, EOB files, and some financial details.
Undisclosed European telecommunications organisation
July 3, 2025
•[ espionage, malware, vulnerability exploitation ]
Darktrace reports a China-aligned espionage actor (Salt Typhoon) breached a European telecom by exploiting a Citrix NetScaler Gateway, deploying SnappyBee malware for persistence and data staging. Activity reflects classic intelligence collection rather than service disruption; defenders observed beaconing, credential access, and movement to support systems.
Columbia University
July 3, 2025
•[ data leak, hacktivism ]
University said a hacker with a political agenda broke into IT systems and stole targeted student data; no threat activity detected since June 24.
