{"id":10070,"date":"2025-08-18T13:53:29","date_gmt":"2025-08-18T10:53:29","guid":{"rendered":"https:\/\/cyberone.bg\/?p=10070"},"modified":"2025-11-10T13:37:33","modified_gmt":"2025-11-10T10:37:33","slug":"weekly-cybersecurity-report-week-33-2025","status":"publish","type":"post","link":"https:\/\/cyberone.bg\/en\/weekly-cybersecurity-report-week-33-2025","title":{"rendered":"Weekly Cybersecurity Report | Week 33, 2025"},"content":{"rendered":"

As your dedicated cybersecurity services provider,\u00a0Cyberone<\/a><\/strong>\u00a0equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.<\/p>\n

Weekly Cybersecurity Report | Week 33, 2025<\/h2>\n

Information security updates and events from the past we<\/u><\/strong>ek<\/u><\/strong><\/p>\n

    \n
  1. \n

    Advanced Ransomware Campaign \u2013 Charon Group in the Middle East<\/strong>
    \n<\/strong><\/h3>\n

    The ransomware group Charon<\/strong> conducted a targeted campaign in the Middle East against both business and public sectors. Advanced techniques typically associated with APT groups were observed, including BYOVD (Bring Your Own Vulnerable Driver)<\/strong> to disable EDR systems. This reinforces the growing notion of blurred lines between criminal cybercrime operations and state-backed activity.<\/li>\n

  2. \n

    Hacktivist Operations Against Israeli Targets \u2013 SiegedSec
    \n<\/strong><\/h3>\n

    During the week, reports indicated an expansion of SiegedSec\u2019s \u201cFourth Operation\u201d<\/strong> campaign. The hacktivist group claimed to have leaked data stolen from Israeli companies including Israir, Bezeq, and Cellcom<\/strong>. Some of the material was distributed via Telegram, although not all of the information has been independently verified. The incident aligns with the group\u2019s recent pro-Palestinian activities<\/strong>.<\/li>\n

  3. \n

    United States \u2013 Cyberattack on the Pennsylvania Attorney General\u2019s Office
    \n<\/strong><\/h3>\n

    The website, email systems, and phone lines of the Pennsylvania Attorney General\u2019s Office<\/strong> were disrupted early in the week due to a cyberattack. Services were gradually restored after several days. Authorities are investigating whether the incident was a ransomware attack.<\/li>\n

  4. \n

    BlackSuit Ransomware Group Takedown \u2013 $1 Million Seized
    \n<\/strong><\/h3>\n

    Authorities in the U.S. and Europe<\/strong> conducted a joint operation against the ransomware group BlackSuit<\/strong>, seizing servers, taking down domains, and confiscating approximately $1 million in cryptocurrency<\/strong>. The group had been responsible for dozens of ransomware attacks against critical U.S. organizations since 2022.<\/li>\n

  5. \n

    Norway \u2013 Pro-Russian Hackers Breach Hydropower Dam
    \n<\/strong><\/h3>\n

    Hackers linked to Russia infiltrated the control systems of a Norwegian dam<\/strong>, triggering a controlled opening of floodgates that released over 1.9 million gallons of water<\/strong>. No physical damage was reported, but the incident highlighted severe vulnerabilities in critical infrastructure<\/strong>.<\/li>\n

  6. \n

    Poland \u2013 Water Supply Attack Foiled
    \n<\/strong><\/h3>\n

    Polish authorities reported successfully thwarting a cyberattack<\/strong> targeting water supply systems in a major city. The intrusion was detected and blocked before causing disruptions. Poland continues to invest billions in cybersecurity to protect vital infrastructure.<\/li>\n

  7. \n

    United Kingdom \u2013 Sensitive Data Breach at Aviation Contractor
    \n<\/strong><\/h3>\n

    Inflite<\/strong>, a contractor at Stansted Airport, experienced a breach in which data from around 3,500 individuals<\/strong> was leaked. Victims included Afghan refugees, former government ministers, and military personnel. The UK government has launched a formal investigation.<\/li>\n

  8. \n

    Global Intelligence Assessments \u2013 Akira, PXA Stealer, and CERT-UA Warnings<\/strong><\/h3>\n