By 63SATS Cybertech News Desk
Russian-backed hackers breached NATO and Dutch police, while MathWorks reported a ransomware attack. China and Taiwan traded cyberattack accusations, and Chinese hackers infiltrated Commvault’s cloud systems. Sheboygan, Wisconsin, faced a ransomware breach affecting 67,000 residents, while payroll fraudsters used SEO poisoning to target employee deposits.
Apple blocked $2 billion in App Store fraud, and India issued a critical Microsoft security alert. Additional highlights include TikTok-based malware campaigns, database tool exploitation, and high-profile hacks like Migos’ Instagram and Indore’s pharma lab ransomware, reflecting escalating global cyber risks.
Russia-Backed Hackers Breach NATO, Dutch Police
Dutch intelligence uncovered a Russian state-backed group, Laundry Bear, behind 2024 cyberattacks targeting NATO, Dutch police, and European networks. The group, operating undetected until September 2024, stole sensitive police data. Authorities warn these attacks signal a larger international cyber threat, underscoring rising geopolitical cyber risks tied to Russian-backed hacker operations across Europe.
MathWorks Hit by Ransomware, Service Disrupted
MathWorks, the maker of MATLAB and Simulink, confirmed a ransomware attack disrupting IT systems and causing service outages. Serving over 5 million users globally, the Massachusetts-based software firm notified U.S. federal authorities. This attack highlights the growing ransomware threat against major software providers and the wider operational risks impacting global engineering and tech industries.
China-Taiwan Cyber Feud Escalates
Chinese officials blamed Taiwan’s Democratic Progressive Party for hacking a mainland tech firm, intensifying cross-strait cyber tensions. Taiwan’s National Security Bureau countered, accusing China’s Communist Party of spreading disinformation to cover its own cyberattacks. Both sides allege information warfare, reflecting deepening digital hostilities between the rivals over control of global cyber narratives.
Chinese Hackers Breach Commvault Cloud Systems
A Chinese state-backed hacking group breached Commvault’s Microsoft Azure-hosted cloud systems, raising alarms over potential U.S. government and corporate data exposure. While U.S. cybersecurity agencies have not named the group, the breach underscores increasing concerns about China’s cyber operations targeting critical cloud infrastructure supporting sensitive corporate and national operations.
Sheboygan Ransomware Attack Hits 67,000 Residents
Sheboygan, Wisconsin, warned nearly 67,000 residents after a ransomware attack in October 2024 stole Social Security numbers, IDs, and license plate data. Claimed by the Chort gang, the attack was investigated until May 2025. While emergency services stayed functional, city officials are now working with law enforcement to improve cybersecurity measures.
Payroll Fraud Uses SEO Poisoning, Hits Mobile Devices
ReliaQuest uncovered a payroll fraud scheme using SEO poisoning and fake login pages to steal employee credentials and reroute direct deposits. The attackers masked their activity using compromised home routers and mobile networks, evading traditional security. This campaign highlights the growing risk of mobile-focused cyberattacks exploiting overlooked weaknesses in organizational defenses.
Apple Blocks $2 Billion in App Store Fraud
Apple reported blocking $2 billion in App Store fraud in 2024, preventing scams like deceptive apps and fraudulent transactions. Over five years, Apple has stopped $9 billion in fraudulent activity. The company terminated suspicious developer and customer accounts and blocked millions of stolen credit cards, underscoring its focus on marketplace security.
India Issues Urgent Microsoft Security Alert
India’s CERT-In issued a critical cybersecurity warning for Microsoft products, highlighting vulnerabilities in Windows, Office, and Azure that risk remote code execution, data theft, and denial-of-service attacks. Even non-Windows systems using Microsoft services are vulnerable. Authorities urge immediate action to prevent potential ransomware attacks and large-scale operational disruptions.
Cisco: Only 7% of Indian Firms Cyber Ready
Cisco’s 2025 Cybersecurity Readiness Index shows only 7% of Indian firms are fully prepared for modern cyber threats, up from 4% last year. Despite rising awareness, companies face increasing risks from AI, hyperconnectivity, and sophisticated attacks, putting operational stability, customer trust, and reputational standing at stake without stronger defenses.
Russia Mandates Tracking App for Foreigners
Russia passed a new law requiring all foreign nationals in Moscow to install a government tracking app, collecting location, fingerprints, and residential data. Starting September 2025, foreigners must notify authorities of residence changes within three days. Officials claim it will reduce migration-related crimes, raising international surveillance and privacy concerns.
Hackers Use TikTok to Spread Stealer Malware
Trend Micro reports cybercriminals using AI-generated TikTok videos to distribute stealer malware like Vidar and StealC. Disguised as pirated software activations, these attacks trick users into running malicious commands. Experts warn social media is increasingly weaponized to spread malware, highlighting the need for vigilance on trending platforms.
Hackers Exploit Database Tools in Stealth Attacks
Cyber experts warn attackers are leveraging legitimate database tools like DBeaver, Navicat, and sqlcmd to extract sensitive data, bypassing malware detection. Third-party breaches rose 6.5% in 2024, with retail, tech, and healthcare among the top targets. The trend underscores the growing challenge of identifying subtle, tool-based cyber intrusions.
Migos’ Instagram Hacked, Solana Exec Data Leaked
Hackers breached hip-hop group Migos’ Instagram, leaking IDs and passports tied to Solana co-founder Raj Gokal and demanding a 40 bitcoin ransom. The account’s bio was changed to promote meme coin scams, and posts stayed live for 90 minutes. The incident highlights rising social media risks targeting crypto leaders.
India Meteorological Department Tightens Cybersecurity
The India Meteorological Department (IMD) has boosted cybersecurity after detecting suspicious access from Pakistani and Afghan IPs. Previously open weather systems now require passwords and firewalls. While crucial for national defense, the move has frustrated independent meteorologists who relied on open access for real-time weather data analysis.
Indore Pharma Lab Hit by Ransomware Attack
Hackers targeted Indore’s Choksi Laboratories, locking systems and encrypting data. IT head Nitin Khore discovered a ransom note demanding payment to prevent data leaks. Two suspicious email addresses were linked to the attack. General Manager Vishal Tiwari filed a police complaint, and investigators are probing security vulnerabilities.
Adidas Confirms Data Leak via Vendor Breach
Adidas confirmed a data breach exposing consumer contact details through a third-party customer service provider. Although no passwords or payment data were compromised, the company launched an investigation with cybersecurity experts. Adidas’ swift response highlights the growing importance of vendor security amid increasing third-party cyber risks.
Nova Scotia Power Ransomware Hits 280,000 Customers
Nova Scotia Power disclosed a ransomware attack that compromised data for 280,000 customers, including billing details and bank account information for autopay users. Detected in April 2025, the breach did not impact power operations. Notably, the company refused to pay the ransom, reflecting a tough stance against extortion.
Researcher Uncovers Massive Credentials Leak
Cybersecurity researcher Jeremiah Fowler discovered an unsecured online database containing over 184 million login credentials, spanning services like Google, Apple, Facebook, and banks. The massive, unencrypted trove poses global security risks, underscoring the urgent need for companies to audit third-party systems and secure sensitive customer data effectively.
