Breach Breakdown- February 2025

Introducing Episode 15 of our expertly crafted series on data breaches, cyber-attacks, and more. Breach Breakdown is your go-to source for recapping incidents and staying up-to-date on the latest solutions. February saw its fair share of reported cases, with breaches affecting:

UK Introduces New Cyber Attack Severity System

The Cyber Monitoring Centre (CMC) has launched a five-level cyber attack severity rating, ranging from Level 1 (least severe) to Level 5 (most severe).

Led by Ciaran Martin, the system aims to improve cyber response and resilience. Experts believe it could be a game-changer for UK businesses and could influence global cyber security strategies

2.7 Billion Records Exposed in Massive Data Breach

A major data breach at Mars Hydro has leaked 2.7 billion records, exposing smartphone details, Wi-Fi passwords, IP addresses, and emails. With no password protection, the risk of phishing, network breaches, and surveillance is high.

It’s unclear if the database was managed by Mars Hydro or a third party, but the exposure of sensitive IoT data raises serious cyber security concerns. If you use connected devices, update your security settings now.

DeepSeek Banned Over Security & Censorship Concerns

Texas, NASA, and multiple countries have banned DeepSeek R1 over data privacy concerns, censorship, and security flaws linked to China Mobile servers. Congress introduced the “No DeepSeek on Government Devices Act” as global scrutiny intensifies.

UK Engineering Giant IMI Hit by Cyber attack

British engineering firm IMI plc has reported a cyber attack to the London Stock Exchange, confirming unauthorised access to its systems. While details remain undisclosed, a data breach report has been filed with the UK Information Commissioner’s Office (ICO).

Microsoft Uncovers Sandworm Subgroup’s Global Cyber Attacks

Microsoft has exposed a Russian state-backed hacking campaign targeting critical infrastructure across 15+ countries, including the U.S., U.K., Canada, and Australia. The Sandworm subgroup, linked to the GRU, has been exploiting security flaws since 2021, infiltrating energy, telecom, and defense sectors.

The group uses stolen credentials, malware, and trojanized software to maintain access and disrupt networks, aligning with Russia’s geopolitical strategies. With expanding global cyber operations, the risks to businesses and governments continue to rise.

Introducing Episode 15 of our expertly crafted series on data breaches, cyber-attacks, and more. Breach Breakdown is your go-to source for recapping incidents and staying up-to-date on the latest solutions. February saw its fair share of reported cases, with breaches affecting:

UK Introduces New Cyber Attack Severity System

2.7 Billion Records Exposed in Massive Data Breach

DeepSeek Banned Over Security & Censorship Concerns

UK Engineering Giant IMI Hit by Cyber attack

Microsoft Uncovers Sandworm Subgroup’s Global Cyber Attacks

Sign up to our newsletter for the latest cyber security insights