By Ashwani Mishra, Editor-Technology, 63SATS
Cyberattacks surged globally, with India emerging as the top target for hacktivist attacks, accounting for 13% of incidents in 2024. Ransomware attacks hit a record high in February, with 821 victims, driven by CL0P’s aggressive tactics.
In the U.S., Mission, Texas, declared a state of emergency after a crippling cyberattack, while the FBI warned corporate executives of an extortion scam by criminals posing as BianLian Group. Chicago Public Schools suffered a student data breach, and Presto Industries faced supply chain disruptions due to a cyberattack. These incidents highlight the growing sophistication and impact of cyber threats worldwide.
India Tops Global Hacktivist Attack List in 2024
India has emerged as the most targeted nation for hacktivist cyberattacks, accounting for 13% of global incidents, according to the High Tech Crime Trends Report 2025 by Group-IB. The country surpassed Israel, which faced 7% of attacks, highlighting a growing cybersecurity crisis. In the Asia-Pacific region, India bore nearly half—49.3%—of all hacktivist attacks.
Experts warn that these escalating cyber threats could have severe implications for national security, businesses, and critical infrastructure. The report underscores the rising frequency and sophistication of cyberattacks in India, signaling the urgent need for stronger defenses.
Ransomware Hits Record High in February 2025
Ransomware attacks surged to historic levels in February 2025, surpassing all previous records, according to Cyble’s latest threat intelligence report. The spike was driven by ransomware groups publishing victim data on dark web leak sites (DLS) to coerce payments. February’s attacks surged over 50% higher than the previous record from May 2023, when 544 victims were recorded.
Notably, CL0P ransomware alone accounted for 267 victims, pushing the month’s total to 821 breaches—a staggering new high. Cybersecurity experts warn that ransomware gangs are escalating their extortion tactics, making robust cyber defenses more critical than ever.
Texas City Declares Emergency After Cyberattack
The city of Mission, Texas, has declared a state of emergency following a cyberattack that crippled municipal IT systems. Officials confirmed that critical city data was compromised, prompting immediate shutdowns. While emergency services remained functional, reports suggest police databases, including license plate and driver’s license lookups, were affected.
Mayor Norie Gonzalez Garza urged Texas Governor Greg Abbott to declare a broader state of disaster as the city works to restore systems. Mission, home to over 87,000 residents, is now grappling with the attack’s impact on government operations, security, and public services.
FBI Warns of BianLian Group’s Data Extortion Scam
The FBI has issued a warning about a new data extortion scam targeting corporate executives. Cybercriminals posing as the BianLian Group are mailing fraudulent letters demanding $250,000 to $500,000 in ransom, threatening to leak sensitive corporate data if payments aren’t made.
The letters, labelled “Time Sensitive – Read Immediately,” include QR codes linked to Bitcoin wallets to facilitate payments. The FBI’s March 6 alert (I-030625b-PSA) urges businesses to remain vigilant, verify threats, and avoid engaging with cybercriminals. This non-negotiable ransom tactic marks a shift in cyber extortion strategies, further complicating corporate cybersecurity defenses.
Chicago Public Schools Data Breach Affects Students
A cyberattack on Cleo, a technology vendor for Chicago Public Schools (CPS), led to unauthorized access to student records. CPS confirmed on February 8 that current and former student data—spanning back to 2017-2018—was compromised. Exposed information includes names, dates of birth, gender, and student ID numbers.
Although financial and health data weren’t accessed, students enrolled in Medicaid programs had their Medicaid ID numbers leaked. CPS continues its investigation, assuring families that no misuse of data has been detected yet. This breach underscores the growing risk of cyberattacks on the education sector.
Cyberattack Disrupts Presto’s Supply Chain
National Presto Industries, a leading home appliance brand, has reported a cyberattack that disrupted its manufacturing and shipping operations. In a filing with the SEC, the company revealed that a system outage, beginning March 1, has impacted supply chain logistics and back-office functions.
While temporary measures have been implemented, the Wisconsin-based manufacturer of air fryers and pressure cookers is still working to restore full operations. The incident highlights the increasing vulnerability of consumer goods companies to cyber threats, as attacks on supply chains continue to grow in frequency and sophistication.
