As your dedicated cybersecurity services provider, Cyberone equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.
Weekly Cybersecurity Report | Week 26, 2025
Information security updates and events from the past week
1 Nucor – American steel giant hacked
Nucor, the largest steel producer in North America, announced a cyberattack that caused production to stop at several facilities and information to be stolen from its systems.
Although the scope of the theft was described as “limited information,” the company hired external cyber experts and notified law enforcement.
The attack has not yet been attributed to any attack group.
2 Viasat – Chinese hackers penetrated sensitive communications infrastructure
Satellite company Viasat has become the target of a Chinese espionage group called Salt Typhoon. The breach exposed sensitive information, including communications infrastructure linked to the US government, but did not affect the service’s US subscribers.
This is the second time Viasat has been attacked – after a Russian hack that occurred during the Ukraine war.
3 Krispy Kreme – personal information stolen from around 160,000 customers
The Play ransomware group claimed responsibility for an attack carried out in November 2024 against the donut chain. The stolen information included ID numbers, driver’s license details and financial accounts.
The information was released after negotiations with the company failed.
4 Aflac – social engineering attack against the major insurance company
A sophisticated attack involved impersonating internal employees and led to access to sensitive information of customers, beneficiaries and employees – including health data and Social Security numbers.
The US hack is still under investigation, and the extent of the victims has not yet been determined. Reported.
5 Episource – Medical information of more than 5 million people exposed
An attack that took place at the beginning of the year resulted in the theft of sensitive medical information including diagnoses, tests, Medicare and Medicaid numbers, and dates of birth.
The company is working with law enforcement and updating affected patients.
6 Live broadcast in Iran interrupted – Hebrew messages on air
The central Iranian news network “Shebaa Haber” was hit by a sophisticated cyberattack that interrupted the live broadcast and presented content in Hebrew.
The incident indicates an increase in the transmission of propaganda messages through government media channels.
7 UBS and Pictet Bank – Security breach at an external provider
Approximately 130,000 employees of UBS and the Swiss bank Pictet were affected following a hack of the services company Chain IQ. The information that was stolen includes, among other things, the phone number of UBS CEO.
Both banks were quick to clarify: No customer data was exposed.
8 RADIX – Swiss healthcare institution attacked
Sarcoma ransomware group claims to have stolen 2 terabytes of medical data from Swiss foundation RADIX. An ultimatum has been set for payment by the end of July.
9 US confirms: Our Cyber Command helped in attacks on Iranian nuclear
The Pentagon revealed this week something that is usually kept secret: US Cyber Command was involved in the attacks on Iran’s nuclear facilities on June 21. This is the first time the US has openly admitted to using cyber tools in an attack against Iran.
What the Pentagon revealed:
– General Dan Kane confirmed that Cyber Command supported Operation Midnight Hammer alongside other US commands
– Cyber provided what they call a “cyber escort package” with digital teams
The Pentagon did not go into all the details, but confirmed that it carried out:
– Shutting down Iranian air defence systems so that US aircraft could attack safely
– Creating confusion elsewhere, such as power outages or communications collapses to distract attention
– Gathering intelligence before the attack and monitoring Iranian responses in real time
– Protecting US networks from attempted counterattacks
A former senior US military official said: “Cyber Command is no longer the young organization it was 15 years ago. Today it is an integral part of every military operation.”
This is the first official admission that the US is using offensive cyber tools in a major operation. It shows that in today’s wars, cyber is not an add-on but a central part.
Although Iran is strong in cyber, the Pentagon claims that it is still significantly weaker compared to the US and Israel.
The cybersecurity attacks highlighted in this report aren’t just incidents, they’re blueprints of the adversary’s arsenal. To protect your business you need the right partner. Cyberone is here to help! Check out our services.
