⚠️ Region Alert: UAE/Middle East
This week's threat intelligence report highlights several high-profile cyberattacks across various sectors, including energy, healthcare, and finance. Notable incidents include a major data breach at the Spanish energy company Endesa, which exposed over a terabyte of customer information, and a ransomware attack on the South Korean conglomerate Kyowon that potentially compromised 9.6 million accounts. Furthermore, the report covers a disruptive attack on AZ Monica hospital in Belgium, which forced the shutdown of IT systems and the postponement of critical medical procedures.
Technically, researchers identified active exploitation of a CVSS 10.0 vulnerability in HPE OneView (CVE-2025-37164) by the RondoDox botnet. New research also unveiled VoidLink, a cloud-native malware framework designed for Kubernetes persistence, and the Sicarii ransomware-as-a-service operation, which uses Israeli branding despite likely Russian origins. The report concludes with phishing trends from Q4 2025, identifying Microsoft as the most frequently impersonated brand in credential theft campaigns.
Top comments (0)