How many cybersecurity events occurred in the week of May 26 - June 2, 2025?

During the week between May 26, 2025, midnight and June 2, 2025, midnight, there were a total of 14 advisory/vulnerability events and 20 incident/data breach events. Additionally, 5 practical knowledge items were shared.

How did this week compare to the previous week in terms of cybersecurity incidents?

Week 22 2025 showed an increase in both advisories and incidents compared to week 21 2025. Advisories increased from 13 to 14, and incidents rose from 17 to 20. However, the number of known impacted individuals significantly decreased from 184 million in week 21 to 2.44 million in week 22 2025.

How many individuals were impacted by cybersecurity incidents this week?

There were a total of 2,445,390 impacted individuals across 5 incidents. The largest breach was an E-Commerce data leak that exposed 1.6 million customer records through misconfigured cloud storage. Since not all incidents report the number of impacted individuals, the real number is likely higher.

What were the main causes of cybersecurity incidents this week?

The primary causes of incidents were: Malware, Ransomware and Related Attacks (7 incidents), Software Vulnerability and SDLC Exploits (3 incidents), Third Party Compromise (3 incidents), and System Misconfiguration Exploits (2 incidents).

Which industries were most affected by cybersecurity incidents?

The most affected industries were Retail and Healthcare, each with 4 incidents. Government had 3 incidents, while Other, Education, and IT/Software/Technology each had 2 incidents. Transport/Logistics, Insurance, and Construction/Real Estate each had 1 incident.

What types of vulnerabilities were reported this week?

Multiple critical vulnerabilities were reported, including remote code execution flaws in Apache InLong, TI WooCommerce Wishlist Plugin, and Evertz Broadcasting Infrastructure. Other critical issues included certificate validation flaws in Icinga 2, account takeover vulnerabilities in WSO2 SOAP, and XSS vulnerabilities in Argo CD that could expose Kubernetes clusters.

What were some notable data breaches this week?

Notable data breaches included: E-Commerce data leak exposing 1.6M customer records, LexisNexis risk solutions breach affecting 364K people, Bradford Health Services patient and employee data exposure, Cooper Health System breach affecting nearly 60K patients, and breaches at Tiffany & Company Korea, MathWorks (MATLAB), and Adidas through compromised third-party services.

What ransomware attacks occurred this week?

Several ransomware attacks were reported: Marlboro-Chesterfield Pathology hit by SafePay ransomware affecting 235K patients, Sri Lankan Pensions Department attack exposing 617GB of data, City of St. Cloud, Florida attack with 1.4TB stolen, Singapore Income Insurance policyholder data exposure, and Clop Ransomware targeting Greek logistics company Orphee Beinoglou.

Incident

SentinelOne suffers seven-hour global outage caused by infrastructure software flaw

published: June 2, 2025

Learn More

American cybersecurity company SentinelOne experienced a major global service disruption on May 29, 2025, that left thousands of customers unable to access security management services for approximately seven hours.

During the outage customer endpoints remained protected, but security teams were unable to access the management console and related services, which impacted their ability to manage their security operations and access important data.

The outage was caused by a software flaw in an infrastructure control system during the company's transition to a new cloud architecture. The root cause of the disruption was a software flaw in an infrastructure control system that removed some network routes and DNS resolver rules, causing widespread loss of network connectivity within the SentinelOne platform

According to StatusGator's third-party monitoring service, the outages affected 10 services across the SentinelOne Singularity platform, leaving dashboards inaccessible for its Endpoint, XDR, Cloud Security, Identity, Data Lake, Marketplace, RemoteOps, Threat Intelligence, Vulnerability Management, and Network Discovery services.

Per information from SentinelOne, no data was exposed or stolen during this incident, as it was purely a service availability issue rather than a security breach.

At 6:10 PM UTC, SentinelOne announced that "services are actively being restored and consoles are coming online," with full restoration achieved by 7:41 PM UTC.

SentinelOne suffers seven-hour global outage caused by infrastructure software flaw

Read More
Raptor Technologies leaks millions school safety records
Australian online prescription provider MediSecure hit by massive …
Schneider Electric reports cyberattack of their dev platform, …
City of Helsinki reports data breach of its …
Washington Post confirms data breach in the Oracle …