By Ashwani Mishra, Editor-Technology, 63SATS
We have just entered the third month of 2025, and the year has already been a cybersecurity battleground.
From the WhatsApp spyware attack compromising user privacy to the PowerSchool breach affecting over 62 million students, cybercriminals are targeting both individuals and institutions. The U.S. Department of Defense, financial firms, and healthcare providers have also suffered massive breaches. Even airlines, investment firms, and military organizations weren’t spared.
This feature explores the 20 biggest data breaches of 2025, their impact, and the urgent need for stronger cybersecurity measures to protect personal and institutional data in an increasingly digital world.
Major Data Breaches of 2025 and counting
As cybercriminals evolve, so do their tactics, scale, and sophistication. The year 2025 has witnessed some of the biggest and most damaging data breaches in history, affecting government agencies, financial institutions, healthcare organizations, tech giants, and millions of individuals.
Here’s a quick glance into the 20 biggest data breaches this year.
1. WhatsApp Spyware Hack: When Encrypted Chats Aren’t Safe
Meta confirmed a highly sophisticated spyware attack on WhatsApp users, compromising journalists, activists, and civil society members. This breach, first reported by The Guardian, highlights the growing risk of surveillance software targeting secure messaging platforms.
Meta responded by calling for stricter regulations on spyware companies, but the attack has raised serious concerns about digital privacy and the safety of encrypted communication apps.
2. U.S. Department of Defense (DOD) Credentials Stolen
In a major cybersecurity failure, hundreds of compromised credentials belonging to U.S. Department of Defense (DOD) personnel were found for sale on the dark web. Attackers bypassed multi-factor authentication (MFA) using stolen session cookies, giving them potential access to classified military systems.
This breach underscores the rising threat of credential-based attacks and the urgent need for zero-trust security frameworks in government agencies.
3. 2.7 Billion IoT Records Exposed
A massive security lapse at Chinese IoT company Mars Hydro left 2.7 billion records exposed due to a misconfigured, non-password-protected database. The breach revealed passwords, IP addresses, and device IDs, making millions of smart devices vulnerable to hacking.
This highlights the dire need for stricter IoT security regulations and encryption of sensitive device data.
4. Ransomware Attack on HCRG Care Group
The Medusa ransomware gang targeted HCRG Care Group, stealing 2.275 TB of patient data. The hackers demanded ransom, threatening to sell or leak the stolen medical records.
As healthcare remains a prime target for ransomware, this attack emphasizes the need for robust cybersecurity in medical institutions to protect sensitive patient data.
5. PowerSchool Breach: 62 Million Students Affected
Education technology firm PowerSchool suffered a massive breach that affected millions of students and teachers across 18,000 schools. Hackers accessed grades, medical history, Social Security numbers, and restraining order details.
This is one of the largest student data breaches in history, exposing the vulnerabilities in digital education platforms.
6. Musk’s DOGE Data Leak: A U.S. Government Scandal
Elon Musk’s Department of Government Efficiency (DOGE) reportedly accessed classified U.S. government data, raising legal and ethical concerns. Over 100 federal officials have sued the agency for unauthorized access to sensitive personnel records.
This case has sparked debates on privatization and government cybersecurity.
7. One Million Patient Records Stolen from Community Health Center
A hacker infiltrated Connecticut-based CHC, stealing patients’ personal and medical information. The attack targeted addresses, diagnoses, test results, and insurance details, posing a major risk of identity theft.
8. Stalkerware Apps Leak Data of Millions
Popular spy apps—Cocospy, Spyic, and Spyzie—exposed users’ private messages, photos, and call logs due to a security flaw.
A researcher discovered the vulnerability, which also exposed 3.2 million email addresses of app customers, highlighting privacy concerns around digital surveillance tools.
9. DISA Breach: 3.3 Million Employee Records Stolen
DISA, a leading employee screening firm, suffered a breach exposing Social Security numbers, financial data, and government IDs of over 3 million individuals.
Cybercriminals exploited weak authentication protocols, proving that HR and background check companies are prime cybercrime targets.
10. Trimble Cityworks Vulnerability Exploited
A critical flaw (CVE-2025-0994) in Trimble Cityworks allowed hackers to access local government infrastructure data.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) urged agencies to apply emergency patches to prevent cyber-espionage.
11. GrubHub Data Breach
Hackers stole customer and driver details from GrubHub, exploiting a vulnerability in a third-party service provider.
This raises concerns about supply chain security risks in food delivery platforms.
12. North Korean Lazarus Group Targets LinkedIn Users
The Lazarus Group used fake LinkedIn job offers to infect job seekers’ devices with malware, stealing crypto wallet credentials.
Professionals are advised to verify job offers before downloading any “test projects” from unknown recruiters.
13. Angel One AWS Breach
Indian stockbroker Angel One suffered an AWS security breach, raising concerns over cloud security practices in financial firms.
14. Philippine Army Cyberattack
Hacking group Exodus Security allegedly breached military systems, exposing 10,000 personnel records.
The Philippine Army denied data theft but is investigating potential espionage threats.
15. Australian IVF Clinic Genea Breach
Hackers accessed sensitive patient data from Genea’s fertility clinics, compromising personal and medical information.
The healthcare sector remains a lucrative target for cybercriminals.
16. Insight Partners Data Breach
Private equity firm Insight Partners confirmed a targeted cyberattack on its systems.
This attack highlights the increasing threat to financial institutions managing high-value assets.
17. Zacks Investment Research Breach
A hacker leaked 12 million users’ financial data, impacting investors and traders.
This raises alarms over cyber risks in the financial services industry.
18. Arab Civil Aviation Organization (ACAO) Cyberattack
A breach at ACAO exposed aviation safety records, potentially jeopardizing international air travel security.
19. Casio UK Credit Card Theft
Casio’s online store was hacked, leading to credit card fraud.
This breach highlights e-commerce vulnerabilities.
20. Tata Technologies Ransomware Attack
Hackers targeted Tata Technologies, disrupting IT services across multiple industries.
The attack reinforces the urgent need for stronger cybersecurity in major enterprises.
