Ransomware Attacks US Clinics, ICS Vulnerabilities Rise, EU Bans AI in Parliament

Post Views: 4

Significant Surge in ICS Vulnerabilities Reported in 2025

A significant surge in Industrial Control System (ICS) vulnerabilities has been reported in 2025, with a record 508 advisories issued by the Cybersecurity and Infrastructure Security Agency (CISA), covering 2,155 vulnerabilities across various products and vendors.

Key Statistics

The average severity of these vulnerabilities has also increased, with a Common Vulnerability Scoring System (CVSS) score of 8.07
82% of advisories classified as high or critical

Ransomware Attack Forces University of Mississippi Medical Center to Shut Down Clinics

The University of Mississippi Medical Center (UMMC) has been forced to shut down its clinics due to a ransomware attack that disrupted many of its IT systems, including blocking access to the Epic electronic medical records system.

Impact of the Attack

The attack resulted in the cancellation of outpatient appointments, ambulatory surgeries, procedures, and imaging services
Hospital and emergency services continued to operate using manual downtime procedures

Data Leak Exposes Sensitive Information of High-Profile Attendees

A data leak linked to Abu Dhabi Finance Week has exposed the sensitive information of hundreds of high-profile attendees, including politicians and business leaders.

Details of the Leak

The leak, which was attributed to a third-party vendor, included over 700 passport scans and state identity card documents
The documents were left publicly accessible on an unprotected cloud storage server

Interpol Operation Leads to Arrest of 651 Individuals Suspected of Online Scams

A large-scale multinational operation coordinated by Interpol across multiple African countries has led to the arrest of 651 individuals suspected of involvement in various online scams.

Details of the Operation

The operation targeted romance fraud, investment fraud, and business compromise schemes
Authorities recovered approximately $4.3 million in assets believed to be linked to these criminal activities
Electronic devices, vehicles, and other items used in the operations were also seized

Google Strengthens Protections Across Play Store and Android Ecosystem

Google has strengthened protections across its Play Store and Android ecosystem.

Axonius Lays Off 40 Employees and Transitions Leadership

Axonius has reduced its workforce and transitioned its leadership, laying off approximately 40 employees, representing less than 4% of its global staff.

Details of the Layoffs

The majority of cuts were in marketing and sales

European Parliament Disables AI Features on Work-Issued Devices

The European Parliament has disabled built-in AI features on work-issued devices due to concerns over cybersecurity and data protection.

Reason for the Decision

The IT department determined that certain AI capabilities send data to external cloud services for processing
This made it impossible to fully guarantee the security of potentially sensitive information

Nigerian National Sentenced to 8 Years in Prison for Involvement in Tax Fraud Scheme

A Nigerian national, Matthew A. Akande, has been sentenced to eight years in prison in the US for his involvement in a multi-year operation that involved unauthorized access to the computer networks of tax preparation firms in Massachusetts.

Details of the Scheme

Akande used stolen personally identifiable information to file over 1,000 fraudulent tax returns
He obtained more than $1.3 million in fraudulent refunds from the US government

SOCRadar Discovers Unsecured Elasticsearch Instances Exposing 43 Million Records

SOCLAR’s monitoring service has discovered three publicly accessible Elasticsearch instances that lacked proper authentication, exposing over 43 million records in total.