310-270-0598

Confidentiality Guaranteed

310-270-0598

Confidentiality Guaranteed

Blog Details

Top 10 cyber crime tales of 2025
23
Dec

Top 10 cyber crime tales of 2025

Cyber investigation

All over again menace actors kept cyber pros on their toes in 2025 in a by no reach-ending cat-and-mouse sport.

But amid the noise, there were some principal tales and incidents affecting family names within the UK – the likes of Marks & Spencer, Co-op, and Jaguar Land Rover – meaning that 2025 will undoubtedly are living long within the memory.

Listed below are Computer Weekly’s high cyber crime tales of 2025

Cyber investigation 1. How authorities hackers attempt to take advantage of Google Gemini AI

Heralding a dominant fable in 2025 – that of menace actors exploiting synthetic intelligence (AI) items – at the birth of the twelve months, Google’s Threat Intelligence Community (GTIG) printed new knowledge revealing how nation-tell-backed menace actors hailing from nations much like China, Iran, North Korea and Russia were attempting to abuse its Gemini AI instrument.

GTIG talked about it observed menace actors the use of Gemini to crimson meat up a quantity of phases of their attack chains, including procuring infrastructure and bulletproof web suppose online hosting companies, reconnoitering targets, researching vulnerabilities, creating payloads and assisting with malicious scripting and submit-compromise evasion ways.

Cyber investigation 2. Superior Application fined £3m over LockBit attack

At the finish of March, the UK’s Knowledge Commissioner’s Place of job (ICO) issued a £3.07m gorgeous to Superior Computer Application Community, since renamed OneAdvanced, over a 2022 LockBit ransomware attack that crippled NHS companies when the victim was compelled to pull a key affected person administration platform offline.

In a warning to others, the regulator found that OneAdvanced’s effectively being subsidiary lacked appropriate technical and organisational measures to ensure to security of its programs, and highlighted gaps in multifactor authentication (MFA), vulnerability scanning and patch administration.

Cyber investigation 3. Cyber attack downs programs at Marks and Spencer

In April, fair sooner than the Easter holiday weekend, one amongst the ultimate cyber assaults of the twelve months unfolded in opposition to excessive road stalwart Marks and Spencer (M&S). The preliminary incident seen the retailer compelled to pull multiple public-facing companies offline, including on-line taking a mediate, click on-and-purchase, and contactless funds.

Days later, a 2nd cyber attack affecting the Co-op Community drew extra attention, and it shortly emerged that the assaults were no longer the work of profession Russian hackers, but an English-talking hacking collective identified as Scattered Spider.

Cyber investigation 4. Scattered Spider cyber gang turns fireplace on aviation sector

By midsummer, Scattered Spider assaults were spreading snappily, with the hacking gang’s members turning their attention to assorted industries – at the birth the insurance coverage sector and then aviation.

Nearly as shortly as Mandiant menace researchers issued an alert on 27 June, multiple airlines reported cyber incidents, and extra were to educate.

Cyber investigation 5. Four arrested in M&S attack investigation

On 10 July, the UK’s Nationwide Crime Company (NCA) announced the arrests of four of us in its investigation into the M&S and Co-op assaults.

The arrests of two men used 19, a third used 17 and a 20-twelve months-old girl were made at their dwelling addresses in London, Staffordshire and the West Midlands, with crimson meat up from West Midlands Regional Organised Crime Unit (Rocu) and the East Midlands Particular Operations Unit.

Cyber investigation 6. Researchers firm up ShinyHunters, Scattered Spider hyperlink

In August, a string of assaults by the ShinyHunters hacking collective orchestrated through Salesforce merchandise caught the area’s attention, with Adidas; LVMH brands Dior, Louis Vuitton, and Tiffany & Co; jewellery company Pandora; insurance coverage companies much like Allianz; and airlines much like Qantas and Air France-KLM all implicated.

Researchers working the subject grew to alter into up proof suggesting a deliberate partnership between ShinyHunters and Scattered Spider, every of which had beforehand been linked to the wider cyber crime community identified as The Com.

Cyber investigation 7. Cyber attackers damage Jaguar Land Rover manufacturing

First and most important of September, UK carmaker Jaguar Land Rover (JLR) grew to alter into the most modern organisation to tumble victim to a first-rate cyber attack, and once extra, it was hackers linked to supposed to be guilty for the incident, which hit manufacturing at the company.

In the following days and weeks, the scope of the cyber attack began to widen to incorporate many of JLR’s suppliers, as the firm was compelled to many situations extend restarting its manufacturing traces.

Cyber investigation 8. Oracle patches E-Commercial suite centered by Cl0p ransomware

From summer onwards, multiple organisations, including many famed universities and media organisations within the US, and presumably some NHS our bodies, were centered by the Cl0p cyber extortion gang after its members efficiently weaponised a vulnerability in Oracle E-Commercial Suite (EBS).

In October, Oracle responded with an out-of-band patch for the faraway code execution (RCE) flaw within the frequent EBS ecosystem – the product is deeply embedded in enterprise financial and operational programs, meaning Cl0p may perchance fair maintain had gather admission to to a extensive different of extremely excessive-value targets.

Cyber investigation 9. Jaguar Land Rover attack to set aside UK £1.9bn, screech cyber displays

As disruption from the JLR incident rolled on via the autumn, and the financial effects widened to incorporate a contraction within the UK’s disagreeable home product (GDP), the Cyber Monitoring Centre (CMC), a cyber security non-income, declared the incident a Category 3 Systemic Tournament on its ‘storm’ scale.

Accounting for numerous components, the CMC talked about the financial set aside of the incident would seemingly hit about £1.9bn, and must mute doubtlessly hotfoot better, and described it as the single most harmful cyber attack ever to hit the UK.

Cyber investigation 10. UK authorities pledges to rewrite Computer Misuse Act

There was, nonetheless, fair real recordsdata for (some) hackers at the finish of 2025, as the long-running fight to reform the old-long-established Computer Misuse Act (CMA) of 1990 took a step forward when it was announced that the authorities deliberate to compose adjustments that can perchance perchance perchance provide protection to moral hackers from prosecution by giving them a statutory defence in law.

The CMA, whereas it has efficiently been used to prosecute cyber criminals, also risked criminalising moral hackers and security researchers for doing their job via the actual offence of ‘unauthorised gather admission to to a computer’. Campaigners screech altering the law will enhance Britain’s security industry.

Be taught More

Recent Posts

BREAKING: Nigerian Police Working With US Secret Provider, FBI Arrest Suspects In Nigeria Over Fraud
December 29, 2025
BREAKING: Nigerian Police Working With US Secret Provider, FBI Arrest Suspects In Nigeria Over Fraud
Is Dan Bongino leaving the FBI? Trump hints FBI deputy director may perchance perchance exit operate to “return to his showcase”
December 29, 2025
Is Dan Bongino leaving the FBI? Trump hints FBI deputy director may perchance perchance exit operate to “return to his showcase”
Ubisoft halts Rainbow Six Siege after hackers give every player $13.3M credit rating
December 28, 2025
Ubisoft halts Rainbow Six Siege after hackers give every player $13.3M credit rating