By Ashwani Mishra, Editor-Technology, 63SATS
The World Economic Forum’s Global Cybersecurity Outlook 2025 revealed growing disparities in cybersecurity capabilities, with small organizations reporting a seven-fold increase in inadequate resilience since 2022. A breach at Gravy Analytics exposed 30 million sensitive location data points, raising privacy concerns. A cyberattack at Eindhoven University disrupted lectures and highlighted vulnerabilities in educational infrastructure.
In Central Asia, Russia-linked UAC-0063 used malware to target diplomatic entities. Meanwhile, Turks and Caicos is recovering from a ransomware attack that disrupted critical services. Lastly, Ashford Inc. faced SEC charges for misleading disclosures about a ransomware attack, stressing the importance of transparency in cyber incident reporting.
Widening Cybersecurity Gap Revealed by WEF Report
The World Economic Forum’s Global Cybersecurity Outlook 2025 highlights widening disparities in cybersecurity capabilities across businesses, sectors, and regions. Published on January 13, the report reveals a seven-fold increase in small organizations reporting inadequate cyber resilience since 2022, while large organizations saw such reports halved.
Geographically, 36% of respondents in Africa and 42% in Latin America lack confidence in their country’s ability to respond to critical cyber incidents, compared to just 15% in Europe and North America. The findings underscore the need for a more equitable and robust global cybersecurity framework amidst increasing geopolitical and cyber complexities.
Gravy Analytics Data Breach Threatens Global Privacy
A breach at Gravy Analytics, a major location data broker, has exposed sensitive location data from millions of smartphone users. The leaked dataset, shared by a hacker, includes over 30 million data points from apps like fitness, dating, and transit, with locations such as the White House and military bases identified.
Experts warn this data could enable detailed tracking of individuals, posing risks to both privacy and national security. Baptiste Robert, CEO of Predicta Lab, shared alarming maps, including data from Tinder users in the UK. This breach highlights the urgent need for stricter data privacy regulations to protect sensitive information.
Cyberattack Disrupts Dutch University Operations
A cyberattack forced Eindhoven University of Technology to cancel lectures and educational activities, creating disruptions as students prepared for exams. Detected on Saturday evening, the attack prompted the shutdown of the university’s network to contain suspicious server activity.
While IT staff maintain access to internal systems, facilities reliant on the network, such as email, WiFi, and canteen registers, remain offline. Investigations continue to determine the nature and scope of the attack, with no immediate evidence of stolen data. The incident highlights ongoing challenges faced by educational institutions in safeguarding their digital infrastructure.
Russia-Linked UAC-0063 Targets Central Asia with Malware
A cyber-espionage campaign linked to Russia-aligned UAC-0063 has targeted diplomatic entities in Kazakhstan and Central Asia. Using weaponized Microsoft Word documents, attackers deployed HatVibe and CherrySpy malware to gather intelligence on Kazakhstan’s diplomatic and economic activities.
The infection chain, termed “Double-Tap,” was uncovered by Sekoia in October 2024. HatVibe, a VBS backdoor, retrieves additional modules from command-and-control servers, while CherrySpy, a Python-based tool, enables deeper intelligence gathering. This campaign underscores the rising threat of state-sponsored cyber-espionage targeting strategic regions.
Turks and Caicos Recovering from Devastating Ransomware Attack
The government of Turks and Caicos is making progress after a ransomware attack disrupted critical operations, including welfare payments, tax collection, and motor vehicle services. The attack, reported in December, impacted the island’s revenue and payment systems.
While some systems have been restored, experts from the U.K. and neighboring islands are assisting in recovery efforts. Home to 50,000 residents, this British Overseas Territory continues to face challenges in rebuilding its digital infrastructure. The incident underscores the growing threat of ransomware on small governments and their economies.
Ashford Inc. Settles SEC Charges Over Misleading Cyber Incident Disclosures
The Securities and Exchange Commission (SEC) has charged Ashford Inc., an asset management company, for misleading investors about a ransomware attack in 2023. The attack compromised over 12 terabytes of sensitive data, including hotel guest information.
Despite knowing the extent of the breach, Ashford falsely stated in quarterly and annual reports that no customer data was exposed. The SEC alleged negligence and emphasized the need for transparency in reporting cyber incidents. The case highlights the importance of accurate cybersecurity disclosures in maintaining investor trust and regulatory compliance.
