Top 5 Cybersecurity News Stories July 25, 2025

Cybersecurity threats are constantly evolving as threat actors seek access to your data and money. To help you stay secure, we have searched the internet for the top five cybersecurity news stories of the week that we think you should be aware of.  No story is too big or small as we look at threats from espionage to security flaws in everyday devices:

1. Storm-2603 Exploits SharePoint Flaws to Deploy Warlock Ransomware on Unpatched Systems

Microsoft has identified a cyber-espionage campaign by Storm-2603, a China-affiliated threat actor, exploiting a zero-day vulnerability in SharePoint (CVE-2024-38060). The group leveraged the flaw for remote code execution, enabling backdoor deployment and command-and-control communications.

The attacks target U.S. and global entities, particularly those with sensitive geopolitical ties. Microsoft has released mitigation guidance, emphasizing patch deployment and threat detection. This incident highlights the persistent exploitation of enterprise collaboration platforms and the urgent need for zero-day resilience across critical infrastructure environments.

Read more on The Hacker News

2. Hackers breach Toptal GitHub account, publish malicious npm packages

Toptal’s GitHub account was compromised by unidentified threat actors who used the access to push malicious packages to NPM. These packages mimicked legitimate libraries and were designed to steal data, execute remote commands, and exfiltrate developer credentials. The breach has sparked concerns about the integrity of the software supply chain.

Toptal confirmed the attack and took immediate remediation steps, including removing the compromised code and reviewing internal security protocols. The incident underscores the critical need for robust CI/CD pipeline defenses and vigilant monitoring of third-party code repositories.

Read more on BleepingComputer

3. 158-year-old UK firm shut down after cyberattack exploited one password

KNP Logistics Group, a 158-year-old UK firm, collapsed after a devastating cyberattack exploited a single compromised password. The incident led to operational paralysis, financial turmoil, and eventual insolvency. Administrators revealed that the attack rendered core systems inoperable, forcing the company to halt services and lay off employees.

The breach highlights how inadequate password hygiene and single-point failures can devastate legacy organizations. Cybersecurity experts emphasize the importance of MFA, segmentation, and incident response readiness, especially for companies with outdated infrastructure.

Read more on Helsinki Times

4. US nuclear weapons agency hacked in Microsoft SharePoint attacks

The U.S. Department of Energy’s Nuclear Security Administration was among the federal bodies compromised via the Microsoft SharePoint vulnerability (CVE-2024-38060) exploited by Storm-2603. This breach raises national security concerns, given the agency’s role in safeguarding nuclear weapons.

The attackers used a tailored backdoor to maintain access and evade detection. Federal response teams are assessing the scope of impact. The incident reaffirms the pressing threat of state-sponsored cyber actors targeting high-value U.S. government networks through software vulnerabilities.

Read more on BleepingComputer

5. Hackers fooled Cognizant help desk, says Clorox in $380M cyberattack lawsuit

Clorox has filed a $380 million lawsuit against Cognizant, alleging negligence after hackers tricked its help desk, leading to a destructive cyberattack in 2023. Clorox claims the attackers gained access through a social engineering exploit and disrupted operations for months.

Cognizant denies liability, asserting contractual compliance. The legal dispute sheds light on third-party risk management and the real cost of breaches initiated by human error. It also underscores the necessity for advanced verification procedures in managed service environments.

Read more on BleepingComputer

At DIESEC, our experts are ready to assist with all your cybersecurity needs. We ensure your system is safe and secure and provide training for your employees to avoid falling victim to social engineering tactics.

For more information, please contact us now!