Woodlawn Health
July 5, 2025
•[ ransomware, malware, healthcare ]
Woodlawn Health in Rochester, Indiana suffered a ransomware attack starting July 5, 2025, which encrypted systems and disrupted clinical and administrative operations. Systems were gradually restored, and officials confirmed that some patient care was impacted. Investigations continue into whether personal or medical data was exfiltrated.
Axis Max Life Insurance (Max Financial Services)
July 5, 2025
•[ data leak ]
Max Financial disclosed its insurance subsidiary received notice of unauthorized access to customer data; investigation underway; details not disclosed.
Campaign: Incidents in Brazil's financial sector (roundup)
July 5, 2025
•[ Financial ]
Roundup article listing recent cybersecurity incidents impacting Brazils financial sector; logged as campaign-level entry.
U.S. federal judiciary CM/ECF & PACER systems
July 4, 2025
•[ hack, leak, government ]
The U.S. federal judiciarys electronic case filing systems (CM/ECF and PACER) were breached around July 4, 2025. Sensitive sealed dataincluding indictments, arrest warrants, and identities of confidential informantswas accessed across multiple district courts. Reports suggest possible theft of system source code and tampering with ~12 dockets. The precise volume of data stolen is unknown, but officials confirmed that a significant number of sealed case files were exposed.
PIX banking transaction system
July 4, 2025
•[ cybercrime, financial fraud ]
Police in Brazil arrested a suspect tied to a $100M+ banking hack scheme; article frames it as multi-bank cybercrime operation.
Louis Vuitton Korea
July 4, 2025
•[ data leak ]
Bloomberg-reported cyberattack resulted in customer data leak affecting Louis Vuitton Korea customers; details limited at disclosure.
Aeroméxico
July 4, 2025
•[ data leak ]
Criminal group ShinyHunters claimed responsibility for compromising Aeromxicos Salesforce or related cloud application environment around July 4 2025, exfiltrating approximately 172 GB of passenger data including contact and ID information. Aeromxico has not confirmed the intrusion or the volume of records exposed.
Sentinel Security Life and Atlantic Coast Life
July 4, 2025
•[ unauthorized access, personally identifiable information, social security numbers ]
Sentinel Security Life Insurance Co. and Atlantic Coast Life Insurance Co. disclosed a cyber incident involving unauthorized access that occurred between April 7 and April 15, 2025. The companies reported that personally identifiable information associated with policyholders, beneficiaries, and other individuals connected to the firms may have been exposed. Potential data elements cited in reporting include names, Social Security numbers, taxpayer identification numbers, financial account information, dates of birth, medical records, and health insurance details; the companies stated they were unaware of misuse at the time of reporting.
Canada Goose
July 4, 2025
•[ data leak, third-party breach, customer records ]
In February 2026, a data breach allegedly containing data relating to Canada Goose customers was published publicly. The data contained 920k records with 582k unique email addresses and included names, phone numbers, IP addresses, physical addresses and partial credit card data, specifically card type and last 4 digits. Canada Goose advised that the data "appears to relate to past customer transactions" and stated that it originated from a breach at a third party in August 2025. The most recent transaction date in the data is July 2025.
Clinical Diagnostics NMDL (Eurofins) lab systems
July 3, 2025
•[ hack, healthcare ]
A breach at the Clinical Diagnostics NMDL lab in Rijswijk compromised personal and medical data of women who participated in cervical cancer screenings; hackers accessed the data starting July 3, 2025, with notification to affected individuals beginning around August 11
University of Iowa Community HomeCare
July 3, 2025
•[ hack, healthcare ]
Cybercriminal gained unauthorized access to UI Community HomeCare computer system on July 3, 2025; systems restored within one business day but files containing patient information were viewed and copied.
Royal Health
July 3, 2025
•[ hack, healthcare ]
Data breach at Royal Health Inc. detected on or about July 3, 2025, where an unauthorized party accessed documents potentially containing full names and Social Security numbers. The breach was disclosed to the Massachusetts Attorney General and notifications began August 21. Compensation inquiries are underway under Levi & Korsinsky LLPs investigation.
Ingram Micro
July 3, 2025
•[ ransomware ]
SafePay ransomware attack on Ingram Micro shut down internal systems, website, and online ordering systems.
Avantic Medical Lab
July 3, 2025
•[ ransomware, data leak ]
Everest listed the lab June 10 and leaked 31 GB of patient files on July 3; contents include PHI, EOB files, and some financial details.
Undisclosed European telecommunications organisation
July 3, 2025
•[ espionage, malware, vulnerability exploitation ]
Darktrace reports a China-aligned espionage actor (Salt Typhoon) breached a European telecom by exploiting a Citrix NetScaler Gateway, deploying SnappyBee malware for persistence and data staging. Activity reflects classic intelligence collection rather than service disruption; defenders observed beaconing, credential access, and movement to support systems.
Columbia University
July 3, 2025
•[ data leak, hacktivism ]
University said a hacker with a political agenda broke into IT systems and stole targeted student data; no threat activity detected since June 24.
Louis Vuitton
July 2, 2025
•[ data leak ]
Louis Vuitton confirmed multiregion customer data breach. No payment data impacted. Undisclosed amount of data was stolen.
C&M Software (service provider to Banco Central ecosystem)
July 2, 2025
•[ insider threat, compromised credentials, financial theft ]
Attackers allegedly bought an employee's credentials for ~$2,700 to access C&M systems and steal BRL 800M from connected institutions; part converted to crypto and laundered.
Deutsche Welthungerhilfe (WHH)
July 2, 2025
•[ ransomware, data leak ]
RaaS group listed WHH and offered stolen data for sale; WHH shut down affected systems, involved police and DPA, and refused to pay.
