Ukrzaliznytsia
March 24, 2025
•[ cyberattack ]
Ukraine state railway restored online ticketing after major cyberattack that downed digital services.
Astral Foods
March 16, 2025
•[ cyberattack ]
Cyberattack caused week-long operational delays and financial losses at South African producer.
Harvest
March 14, 2025
•[ cyberattack ]
French outlet reported cyberattack and service reassurance communications to clients.
Uncle Henry’s
March 11, 2025
•[ ransomware, database deletion, extortion ]
On March 11 2025, Maine-based classified ads publisher Uncle Henrys suffered a ransomware-style attack that deleted its primary website database and took the site offline until April 15. Attackers demanded Bitcoin. Management stated only a few advertisement entries were copied and no personal data compromise was confirmed.
Szpital MSWiA (Ministry of Interior Hospital) Kraków
March 8, 2025
•[ ransomware, cyberattack, healthcare ]
Cyberattack on the Ministry of Interior hospital in Krakw encrypted administrative and medical IT systems, fully paralyzing patient care and access to records. Hospital departments began restoring systems by March 11, indicating ~3 days of disruption. No data exfiltration or perpetrator identified.
Toronto Zoo
March 5, 2025
•[ data leak, cyberattack ]
Zoo reported cyberattack with decades of visitor data stolen and leaked.
Czech Building Authority It System
March 5, 2025
•[ cyberattack, government ]
Authorities reported likely cyberattack impacting online system for building offices.
Polish Space Agency (Polsa)
March 2, 2025
•[ cyberattack, network intrusion, service disruption ]
The Polish Space Agency (POLSA) went offline after detecting a cyberattack that forced it to disconnect its internal network from the internet to contain the incident. National cybersecurity teams, including CSIRT NASK and CSIRT MON, were engaged to assist in investigating and restoring operations. While POLSA did not disclose specific details, internal sources suggested that email systems were compromised. As a member of the European Space Agency, POLSA temporarily suspended several digital services while ensuring containment, system recovery, and investigation into potential espionage or disruption motives behind the attack.
Real Academia Española
February 28, 2025
•[ ransomware, cyberattack ]
Spains language academy confirmed a ransomware attack affecting its systems.
Harbin Asian Winter Games Organizing Committee
February 7, 2025
•[ cyberattack, state-sponsored attack ]
China accuses US of launching 'advanced' cyberattacks, names alleged NSA agents
Hue Central Hospital – On-Demand and International Treatment Center
January 15, 2025
•[ ransomware, encryption, healthcare ]
In January 2025 the hospital information system of Hue Central Hospitals On-Demand and International Treatment Center was compromised, with around 500 GB of data encrypted and a ransom demanded for decryption; no public evidence of data exfiltration has been reported.
Ungava Tulattavik Health Centre (UTHC)
January 11, 2025
•[ cyberattack, data leak, healthcare ]
Ungava Tulattavik Health Center in Kuujjuaq (Nunavik, Quebec) disclosed it was the victim of a cyberattack in November 2025. The centre said the attack was blocked upon detection, but warned that files containing clinical and administrative information related to some people who use the health centre and some employees may have been stolen. The centre established a crisis unit, deployed enhanced surveillance/security tools, and worked with the Sret du Qubec, the Nunavik Regional Board of Health and Social Services, and Sant Qubecs Cyber Defence Operational Centre during the investigation. Officials advised users and employees to monitor bank accounts and watch for suspicious emails or calls while the incident response and review continued.
Ministry of Defence of Ukraine – Anti-Corruption Council election system
January 7, 2025
•[ DDoS attack, election interference, distributed denial-of-service ]
DDoS attack on Ukraines MoD online election for its Anti-Corruption Council. Over 1.1 million malicious requests blocked, including 300k from Belarus IPs. Attack attempted to disrupt voting but was contained the same day, and election integrity was maintained with ~101k Ukrainians successfully voting.
University Of Valladolid
January 1, 2025
•[ cyberattack, service disruption ]
Spanish university continued recovery efforts after January cyberattack impacting services.
​Electrica Group
December 9, 2024
•[ ransomware, cyberattack, energy sector ]
Electrica Group, a key player in the Romanian electricity distribution and supply market, is investigating a ransomware attack.
Wexford County Register of Deeds
November 5, 2024
•[ cyberattack, data loss, government ]
The Wexford County, Michigan, Register of Deeds office experienced a cyber incident on 2024-11-05. Access was shut off, systems went offline, and a small portion of documents (less than 5%) from a defined time period were not recoverable.
Moldova’s parliamentary email servers
October 17, 2024
•[ cyberattack, email security, election interference ]
Moldovas parliamentary email servers are hit by a cyberattack just ahead of the countrys presidential election and a referendum on joining the European Union.
Kuwait’s Health Ministry
September 25, 2024
•[ cyberattack, healthcare, system outage ]
The Kuwaits Health Ministry is recovering from a cyberattack that took down systems at several of the countrys hospitals, as well as the countrys Sahel healthcare app.
Florida’s Sumter County Sheriff’s Office
August 6, 2024
•[ ransomware, Rhysida ransomware attack, cyberattack ]
Floridas Sumter County Sheriffs Office confirms that it experienced a Rhysida ransomware attack.
