Factbox: Cyber threats disrupt global firms in US, UK and EU
20/06/2025 18:37
Adds additional cybersecurity incidents reported in May and June June 20 (Reuters) - Global companies are grappling with a surge in cyber and ransomware attacks, with increasingly sophisticated threat actors disrupting operations and compromising sensitive data across diverse sectors — from healthcare and financial services to retail and regulatory bodies. Here is a list of companies and regulators across the U.S., UK, and European Union that have been affected by or reported cyber incidents this year.
| Company | Month | Region | Impact |
| Smiths Group SMIN.L | January | UK | Cybersecurity incident involved unauthorised access to its systems. |
| Big Cheese Studio BCSP.WA | January | Poland | An incident at the Polish game developer led to hackers gaining access to the company's game code systems and personal data of its employees. Hackers demanded a ransom of 100,000 zlotys in crypto currencies. |
| MGM Resorts International MGM.N | January | USA | Court approved a $45 million settlement in a class-action lawsuit over two data breaches at MGM in 2019 and 2023, affecting millions of customers. |
| Clorox | February | USA | A Clorox executive said the bleach maker has fully restored distribution that was lost during a cyber attack in 2023. |
| Eckert & Ziegler EUZG.DE | February | Germany | Suffered a cyber attack on parts of its IT systems but said its production was largely unaffected |
| Marks & Spencer MKS.L | April | UK | Online orders halted for more than 3 weeks leading to the British retailer flagging a 300 million pound hit to profit. |
| Hertz HTZ.O | April | USA | Rental car firm reported some of its user data was stolen in a breach involving one of its vendors. |
| DaVita DVA.N | April | USA | Dialysis firm was hit by ransomware attack that encrypted certain elements of its network, with some of its operations disrupted despite interim measures. |
| U.S. office of the Comptroller of the Currency (OCC) | April | USA | The U.S. Treasury Department's Office of the Comptroller of the Currency said that emails of executives and other employees of the agency were hacked, blaming longstanding vulnerabilities for the breach. |
| Emera Inc EMA.TO & its unit Nova Scotia power | April | USA | The energy providers said they were addressing a cybersecurity incident involving unauthorized access to parts of their Canadian network and servers, while customer data was accessed & stolen. |
| National Labor Relations Board (NLRB) | April | USA | A whistleblower complaint says that billionaire Elon Musk's team of technologists (DOGE) may have been responsible for a "significant cybersecurity breach," likely of sensitive case files, at America's federal labor watchdog. |
| LVHM's Christian Dior Couture | May | France | Hit by a cyber attack, with hackers obtaining some of its customers' data, Bloomberg News reported. |
| Co-op Group 42TE.L | May | UK | Grocery chain reported that hackers had accessed and extracted customer data from one of its systems. |
| Harrods | May | UK | Department store said hackers had attempted to break into its systems. |
| UK's Legal Aid Agency | May | UK | A "significant" amount of personal data, including criminal records, of applicants who had applied for legal aid since 2010 was accessed & stolen. |
| Adidas ADSGn.DE | May | Germany | Sportswear maker said an unauthorised external party had obtained certain consumer data through a third-party customer service provider, albeit not passwords or credit card data. |
| Victoria's SecretVSCO.N | May | USA | Clothing and lingerie retailer suspended most of the functionality of its website and some in-store services for a few days to contain and prevent unauthorized network access. |
| TelefonicaTEF.MC | June | Spain | Telecommunications company said it was looking into a potential cyberattack after data allegedly belonging to one million customers in Peru was released on an internet forum. |
| Richemont CFR.S | June | Switzerland | Cartier, the luxury jewelry company owned by Richemont, had its website hacked and some client data stolen, it told customers. |
| SalesforceCRM.N | June | USA | Hackers are tricking employees at companies in Europe and the Americas into installing a modified version of Salesforce's Data Loader app, Google said. |
| Britain's tax office (HMRC) | June | UK | HMRC's security systems detected unauthorised access to some customers' online accounts in an attempt to claim money. |
| United Natural FoodsUNFI.N | June | USA | Whole Foods supplier said it took certain systems offline after finding unauthorized activity on internal networks. |
| Philadelphia Insurance Companies | June | USA | The insurer's staff remained offline for at least three days after a "major" ransomware event. |
| Erie Indemnity Company ERIE.O | June | USA | The company, which manages Erie Insurance, identified unusual network activity after facing system outages and disruptions. |
| Washington Post | June | USA | The newspaper said it is investigating a cyberattack on email accounts of some of its journalists, according to a source familiar with the matter and an internal memo reviewed by Reuters. |
| UBS UBSG.Sand Pictet | June | Switzerland | The Swiss banks said they had suffered a data leak that did not compromise client information, although a newspaper report said thousands of UBS workers' data was affected. |
| Aflac AFL.N | June | USA | The health and life insurer disclosed a cybersecurity incident in which personal information of its customers may have been compromised. |