As your dedicated cybersecurity services provider, Cyberone equips you with timely and in-depth information about current cyber attacks. Discover a weekly cybersecurity report of the latest exploits and breaches shaping the ever-evolving cybersecurity landscape.
Weekly Cybersecurity Report | Week 24, 2025
Information security updates and events from the past week
1 Canadian Airline WestJet Reports Systems Outage
The Canadian airline WestJet announced a cyber incident that affected internal systems and the company’s app, limiting access for several users. The incident, first reported on June 13, 2025, led to the activation of dedicated internal teams in collaboration with law enforcement authorities and Transport Canada to investigate the matter. As of June 14, the company stated that its operations are running safely and were not affected by the situation, as it continues to work to understand the scope of the event.
2 Victoria’s Secret Restores Critical Systems After Attack
Approximately three weeks after suffering a cyberattack, the fashion and lingerie retailer Victoria’s Secret announced that all critical systems that were shut down have been fully restored. The company first reported the security incident on May 24, 2025, and as a precautionary measure, shut down its website and some in-store services. The company noted that the incident has not caused a material disruption to its operations and does not expect it to have a material impact on the 2025 fiscal year.
3 US Municipalities and Government Bodies Under Attack
The City of Thomasville, North Carolina, announced that it successfully handled a cyber threat targeting its digital systems. According to the investigation, the threat was neutralized without any security breaches or leakage of sensitive information. Concurrently, a cyberattack was reported against the Georgia District Attorney’s office, though no further details on this incident were provided.
4 South Korean Ticketing Platform Yes24 Victim of Ransomware Attack
The South Korean book and ticket sales platform Yes24 suffered a ransomware attack that shut down its services for four days. The attack encrypted critical internal files, impacting the ability of over 20 million users to purchase books and tickets. South Korea’s Personal Information Protection Commission has launched an official investigation into the matter.
5 Two Hospitals in India Attacked
Delhi Police are investigating a breach of servers at two hospitals in the northern part of the city: Sant Parmanand Hospital and NKS Super Speciality Hospital. The attack led to unauthorized access to patient data, financial records, and administrative files, disrupting some medical services and forcing the hospitals to switch to manual registration.
6 Hospital in the Philippines Under Cyberattack
The Palawan Medical Mission Group, which operates the Coop Hospital in the Philippines, is investigating reports of a ransomware attack allegedly carried out by the Qilin threat group. The group claimed to have leaked sensitive patient information online, prompting the operating company to launch a criminal investigation into the incident.
7 Qilin Group Claims Attack on 550 Madison Tower in New York
The Qilin ransomware group claims to have stolen 700 GB of data from OAC 550 Owner, the operator of the iconic 550 Madison Avenue skyscraper in New York. The group posted examples of the allegedly stolen data on its leak site, including passport photos, incident reports, and financial documents, and is threatening to release more information.
8 Cyber Toufan Group Claims Breach of “Goldenbit” Insurance Agency
The hacktivist group Cyber Toufan, which first appeared in November 2023 and has been linked to attacks on dozens of Israeli companies, announced it had breached the network of the Israeli insurance agency, Goldenbit. The group, considered sophisticated and possibly state-sponsored by Iran, is known for destructive tactics like data wiping. In its latest report, the group claims to have obtained documents including customer and employee details, lists of usernames and passwords, and images of identification documents. As proof, document samples were uploaded along with a download for a file of approximately 1.5 GB. Financial authorities are in contact with the agency, which reported that so far, no unusual activity has been detected and that it is working to verify the authenticity of the published information. It is believed that some of the leaked data may include financial content belonging to other financial organizations in Israel.
The cybersecurity attacks highlighted in this report aren’t just incidents, they’re blueprints of the adversary’s arsenal. To protect your business you need the right partner. Cyberone is here to help! Check out our services.
