Major Cyberattack Victims from the Last 60 Days: A Stark Reminder of Growing Threats

In an age where digital infrastructure underpins every aspect of life—from healthcare and education to retail and government—the past two months have been a wake-up call. Cybercriminals continue to escalate their campaigns, targeting both public and private organizations across the globe. Below, we highlight some of the most significant victims of cyberattacks from the last 60 days and what these incidents mean for cybersecurity moving forward.

🏥 Healthcare: A Sector Under Siege

Yale New Haven Health (USA)

In April 2025, Yale New Haven Health confirmed a data breach affecting 5.5 million individuals. Compromised data included Social Security numbers, medical record numbers, and patient information—underscoring the urgent need for robust data encryption and endpoint protection in healthcare.

DaVita Inc.

The dialysis provider DaVita Inc. fell victim to a ransomware attack by the Interlock group, which claimed to have stolen 1.51 TB of sensitive data. Although operations resumed quickly, the incident highlighted how even critical health infrastructure is vulnerable.

Frederick Health Medical Group

Nearly one million patients were impacted by a ransomware breach in Maryland. The attackers gained access to personal and clinical data, exposing the system’s weaknesses in network segmentation and incident response planning.

🛒 Retail & Enterprise: Disruption on a Massive Scale

Marks & Spencer (UK)

A devastating ransomware attack in late April crippled the iconic retailer’s digital operations. The Scattered Spider gang reportedly caused over £500 million in financial damage, showing how brand trust can evaporate almost overnight.

Hitachi Vantara

This IT services subsidiary of Hitachi suffered an Akira ransomware intrusion, temporarily shutting down multiple business functions. The breach is a potent reminder that even tech-savvy enterprises must stay ahead of evolving threat actors.

📡 Telecom: Customer Data in the Crosshairs

SK Telecom (South Korea)

South Korea's largest telecom provider experienced a malware-based breach that exposed data of up to 23 million customers. SK Telecom responded by offering free SIM card replacements—an expensive and reputation-damaging remediation effort.

MTN Group (Africa)

One of Africa's largest telecom providers reported unauthorized access to portions of its customer data infrastructure, prompting increased regulatory scrutiny.

🏛️ Public Sector & Utilities: Critical Infrastructure at Risk

South African Airways

On May 3rd, a cyberattack grounded digital operations of South Africa's flagship airline. While systems were quickly restored, the breach raised alarms over airline cybersecurity readiness.

Nova Scotia Power (Canada)

This Canadian utility reported a cybersecurity incident affecting its IT infrastructure on May 1st. While no customer data was reportedly compromised, the incident served as a reminder of how vital utility networks are to national stability.

Badajoz City Council (Spain)

The Spanish municipality was hit by ransomware in late April, shutting down public services and disrupting administrative functions for days. The response included suspending government deadlines and working offline.

🏫 Education

Baltimore City Public Schools (USA)

A February ransomware attack was made public in April, revealing a data breach affecting thousands of students and staff. The delayed disclosure emphasized the need for transparent breach reporting protocols in educational institutions.

Key Takeaways

1. No Sector Is Safe: From healthcare to retail, government to telecom, attackers are indiscriminate.

2. Data Is the New Gold: Most breaches involved the exfiltration of sensitive personal data.

3. Preparedness Is Crucial: Organizations with proactive security protocols, including zero-trust architecture, endpoint detection, and employee training, fared better.

4. SMBs Take Note: These incidents offer valuable lessons for smaller organizations. Cybersecurity isn’t optional—it’s foundational.

As threats grow in frequency and sophistication, businesses and public institutions must act with urgency. Regular risk assessments, employee training, advanced threat detection, and incident response planning are no longer best practices—they’re survival tactics.

If your business isn't already investing in cybersecurity infrastructure, now is the time to act.

Need help hardening your network or updating your security posture? Contact us at Cyber One Information Technology for a free consultation.

For more info visit www.CyberOneInfo.com

Contact Richard Medina, Certified Ethical Hacker https://www.linkedin.com/in/richme/