Szpital MSWiA (Ministry of Interior Hospital) Kraków
March 8, 2025
•[ ransomware, malware, healthcare ]
Cyberattack on the Ministry of Interior hospital in Krakw encrypted administrative and medical IT systems, fully paralyzing patient care and access to records. Hospital departments began restoring systems by March 11, indicating ~3 days of disruption. No data exfiltration or perpetrator identified.
Tata Technologies
March 6, 2025
•[ ransomware, data leak ]
Tata Technologies, a subsidiary of the Indian conglomerate Tata Motors, was struck by the ransomware gang Hunters International, which claims to have exfiltrated around 1.4 terabytes (730,000 + files) of data and is threatening public release unless a ransom is paid. Hackread The company had earlier disclosed a ransomware incident disrupting some IT assets and services, though client-deliveries were reportedly unaffected.
Farmer Bros Co.
March 6, 2025
•[ ransomware, data leak ]
Farmer Bros Co., a Texas-based coffee and foodservice manufacturer, experienced a ransomware attack beginning March 6 2025 that encrypted portions of its administrative network and exposed personal data of 14,460 individuals. FalconFeeds.io reported on June 23 2025 that the Chaos ransomware group claimed responsibility via its leak site; the company has not independently confirmed this attribution.
Penn-Harris-Madison School Corporation
March 3, 2025
•[ ransomware ]
Indiana school district reported ransomware network breach and service interruptions.
Rackray
March 3, 2025
•[ ransomware ]
Lithuanian data center provider suffered ransomware disrupting public cloud services
National Presto Industries
March 1, 2025
•[ ransomware, data leak ]
National Presto Industries disclosed a cybersecurity incident on March 6 2025 after the Interlock ransomware group claimed responsibility for an attack on March 1 2025. The company confirmed operational disruptions affecting manufacturing, shipping, and back-office systems. Interlock claimed to have stolen approximately 3 million files across about 450,000 folders from a subsidiary, though the company has not verified the data theft. No encryption has been confirmed in company statements or reporting.
Berkeley Research Group
March 1, 2025
•[ ransomware, data leak ]
BRG suffered a ransomware intrusion detected in March 2025 that led to data theft and encryption activity. Subsequent disclosures and DOJ statements indicate exposure of sensitive information relating to survivors involved in multiple Catholic diocesan bankruptcy cases; the firm engaged external responders and notified affected parties.
An Giang Central General Hospital
March 1, 2025
•[ ransomware ]
Hackers encrypted the virtualized server system of An Giang Central General Hospital, halting all operations and forcing a switch to manual recordkeeping; no data exfiltration was reported.
Real Academia Española
February 28, 2025
•[ ransomware ]
Spains language academy confirmed a ransomware attack affecting its systems.
Whitman Hospital & Medical Clinics
February 28, 2025
•[ ransomware ]
Hospital Reported Internal Electronic Systems Down Following Cyberattack; Care Continued With Delays.
City Of Fort St. John
February 25, 2025
•[ ransomware ]
Ransomware confirmed; data restored and most services back online.
Hometeamns
February 25, 2025
•[ ransomware ]
Ransomware hit Singapores HomeTeamNS; no evidence of data extraction.
Brydens Lawyers
February 25, 2025
•[ ransomware, data leak ]
Sydney law firm reported ransomware with alleged 600GB data leak under investigation.
Cleveland Municipal Court
February 23, 2025
•[ ransomware, data leak ]
Cleveland Municipal Court experienced a full shutdown beginning 2025-02-23 due to a Qilin ransomware attack that encrypted court systems and exfiltrated roughly 44 GB of data. Operations were halted for about 17 days. The attacker demanded $4 million and threatened to leak stolen court documents.
Invest Hong Kong
February 22, 2025
•[ ransomware, data leak ]
Follow-up coverage of InvestHK ransomware; checking possible client/staff info exposure; later update: no evidence of leakage.
LANIT Group
February 21, 2025
•[ ransomware ]
On 2025-02-21, LANIT Group, a major Russian IT service provider, suffered a cyber incident that encrypted portions of its internal infrastructure and prompted a national warning to financial institutions using its subsidiaries. Authorities confirmed encryption and service isolation but no verified data exfiltration.
HCRG Care Group
February 20, 2025
•[ ransomware, data leak ]
Medusa ransomware group claimed theft of ~2.275 TB from HCRG and demanded $2m by Feb 27, leaking sample files; HCRG says containment measures are in place and services remain operational; reports indicate exposure of sensitive medical, personal and financial records
the private provider (contractor) supplying NHS services
February 20, 2025
•[ ransomware, data leak ]
A private provider serving the NHS was hit by ransomware, disrupting network operations and potentially exposing patient or internal data, causing service interruptions in NHS operations dependent on it.
Supreme Administrative Court of Bulgaria
February 20, 2025
•[ ransomware, data leak ]
RansomHouse used White Rabbit ransomware against Bulgarias Supreme Administrative Court on Jan 27, encrypting ~140 computers; group posted employee-related files as proof of data theft. Court remained operational via paper processes; investigation into data leakage ongoing.
Raymond Lifestyle Ltd
February 20, 2025
•[ ransomware ]
Raymond reported a cybersecurity incident on Feb 20, 2025 that impacted some IT assets. In its Q4 FY25 results on May 13, the firm cited the ransomware attack and weak demand as factors weighing on total income and profit, indicating a disruptive event without confirmed exfiltration details.
