Weekly Cybersecurity Report | Week 27, 2025

As your dedicated cybersecurity services provider, Cyberone equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.

Weekly Cybersecurity Report | Week 27, 2025

 

Information security updates and events from the past week

1. Qantas airline under cyber attack: Hackers hacked into third-party system and extracted data of 6 million customers – suspected involvement of Scattered Spider

Australian airline Qantas announced that hackers hacked into a third-party company’s system and extracted customer data. The attack comes amid a wave of attacks by the Scattered Spider group on airlines.

Hackers broke into Qantas’ call center and from there into an external system that manages customer services.

The system contains data of 6 million customers

Qantas fears a large amount of information was stolen

According to Qantas, the data includes names, email addresses, phone numbers, dates of birth and frequent flyer club membership numbers.

Qantas reported to the Australian Cyber ​​Center, the Office of the Information Commissioner and the Federal Police. The company did not say whether it was working with external security companies.

2. US confirms: Our Cyber ​​Command helped in attacks on Iranian nuclear

The Pentagon revealed this week something that is usually kept secret, the US Cyber ​​Command was involved in the attacks on Iran’s nuclear facilities on June 21. This is the first time the US has openly admitted to using cyber tools in an attack against Iran.

General Dan Kane confirmed that the Cyber ​​Command supported Operation Midnight Hammer alongside other US commands.

Cyber ​​provided what they call a “cyber escort package” with digital teams.

The Pentagon did not elaborate on all the details, but confirmed that it carried out:

  • Shutting down Iranian air defense systems so that US aircraft could attack safely
  • Creating confusion elsewhere, such as power outages or communications collapses to distract attention
  • Gathering intelligence before the attack and monitoring Iranian responses in real time
  • Protecting US networks from attempted counterattacks.

This is the first official admission that the US is using offensive cyber tools in a major operation.

It shows that in today’s wars, cyber is not an add-on but a central part.

3. The International Criminal Court in The Hague has been hit by a sophisticated cyber attack, they say – the second attack in recent years

The International Criminal Court in The Hague announced that hackers have broken into its systems in a sophisticated attack. This is the second such attack against the court in recent years, and it has been launching a wave of attacks on international institutions.

Details of the attack:

  • Hackers broke into the court’s systems last week
  • The court’s security systems detected the hack and managed to stop it
  • The court is now examining the impact of the attack on all systems
  • It is unclear how the hackers broke in and whether they were able to steal information
  • A spokesman for the court declined to give further details

https://www.icc-cpi.int/news/icc-detects-and-contains-new-sophisticated-cyber-security-incident

4. Group Medusa ransomware claims to have hacked Sermo medical network with 1.5 million doctors

The Medusa ransomware group has announced a hack of the medical social network Sermo, a global platform with 1.5 million certified medical professionals in 150 countries. This would be the second cyberattack targeting the company.

Details of the alleged hack:

  • The Medusa ransomware group has released a statement about the hack of Sermo
  • The group mentions a ransom of $500,000
  • This is the second cyberattack against the company, the first was in April 2024

5. The Scattered Spider group continues to attack airlines – Hawaiian Airlines hit by a cyberattack attributed to the group

Hawaiian Airlines announced on Friday a cyberattack that affected its computer systems

The attack was discovered on June 23, according to the report to the American Stock Exchange

The company has reached out to authorities and cyber experts for help in investigating and handling the incident.

Response FBI:

  • The FBI issued a statement saying it is “actively working with airlines and industry to address this activity and help victims”
  • The FBI warned that Scattered Spider is targeting “large companies and their computer suppliers”
  • “Anyone in the aviation system, including trusted suppliers and contractors, could be at risk”

The coordinated attacks on several airlines show that Scattered Spider is moving to attack more critical infrastructure. The CISA agency has not yet responded to the events.

6. The hacker group “Anonymous” announced that it had hacked the servers of the international news agency Iran International.

They claim to have gained access to the agency’s secret emails, and that they are expected to publish sensitive information including documents, a list of employees, colleagues and contacts soon. According to them, Iran International operates under Israel and is not supported by the Iranian public. Anonymous also stated that the information will be transferred to security agencies.

7. Columbia University in New York has experienced a major computer outage following a cyberattack.

The outage knocked out key services such as email and CourseWorks, a learning platform used by students and faculty. At the same time, unusual images appeared on campus screens, including an image of President Donald Trump, but it is unclear whether they are related to the attack.

Muslim hackers claimed responsibility for the attack, but the university denied the claim.

The cybersecurity attacks highlighted in this report aren’t just incidents, they’re blueprints of the adversary’s arsenal. To protect your business you need the right partner. Cyberone is here to help! Check out our services.