2025 delivered a wave of high-impact cyber incidents. Reviewing these events now offers valuable perspective—and critical lessons to guide our cybersecurity strategy for 2026.

1. Salt Typhoon Telecom Breach (China‑linked espionage)

A massive espionage campaign compromised major U.S. telecom providers including Verizon, AT&T, Charter, Windstream, and Consolidated Communications. The FCC issued emergency cybersecurity directives in response.

2. U.S. Treasury & Federal Agencies Breached

Chinese hackers infiltrated the U.S. Treasury and multiple federal agencies via a SharePoint flaw, while Russian actors stole sealed court records — one of the most significant federal breaches in U.S. history.
Sources:

3. DOGE Federal Data Raid

The Department of Government Efficiency (DOGE), led by Elon Musk, improperly accessed massive volumes of federal citizen data, triggering legal and national‑security concerns.
Sources:

4. Oracle E‑Business Suite Zero‑Day Exploited (Clop Group)

Clop exploited a zero‑day (CVE‑2025‑61882) in Oracle EBS, stealing sensitive HR, financial, and supply‑chain data from dozens of organizations worldwide.
Sources:

5. Salesforce Ecosystem Breach — 1 Billion Records Exposed

Downstream breaches at Salesloft and Gainsight enabled attackers to steal over a billion Salesforce customer records, impacting universities, hospitals, media companies, and enterprises.
Sources:

6. Ingram Micro Ransomware Attack

A major ransomware incident disrupted global operations at Ingram Micro, one of the world’s largest IT distributors, highlighting vulnerabilities in supply‑chain‑critical organizations.
Sources:

7. Anthropic AI‑Powered Autonomous Attack

Anthropic disclosed an attack that was “almost entirely autonomous,” marking one of the first large‑scale AI‑driven offensive operations.
Sources:

8. Asahi Breweries Ransomware Attack (Qilin Group)

A ransomware attack forced Asahi to suspend operations in Japan. Over 1.9 million individuals’ data was exposed, and recovery is expected to extend into 2026.
Sources:

9. Jaguar Land Rover Operational Shutdown

A cybersecurity incident severely disrupted production and sales operations at Jaguar Land Rover, impacting manufacturing plants and supply chains.

10. GlobalLogic & Barts Health Targeted in Oracle EBS Campaign

As part of the Clop zero‑day campaign, GlobalLogic and Barts Health were among the high‑profile victims, demonstrating the widespread impact of enterprise software vulnerabilities.

Key Takeaways for 2026

• Visibility gaps remain the biggest weakness exploited by attackers.
• Nation‑state operations are increasingly targeting unmanaged devices and network infrastructure.
• AI‑driven attacks are no longer theoretical — they’re here.
• Supply chain vulnerabilities continue to be the most leveraged attack vector.

Sources:

1. Salt Typhoon Telecom Breach
Source: CRN – “10 Major Cyberattacks And Data Breaches In 2025”
https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025

2. U.S. Treasury & Federal Agencies Breached
Source: TechCrunch – “Hacks, thefts, and disruption: The worst data breaches of 2025”
https://techcrunch.com/2025/12/19/hacks-thefts-and-disruption-the-worst-data-breaches-of-2025/

3. DOGE Federal Data Raid (Elon Musk–led agency)
Source: TechCrunch – Same article as above
https://techcrunch.com/2025/12/19/hacks-thefts-and-disruption-the-worst-data-breaches-of-2025/

4. Oracle E‑Business Suite Zero‑Day (Clop Group)
Sources:
CRN – https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025
TechCrunch – https://techcrunch.com/2025/12/19/hacks-thefts-and-disruption-the-worst-data-breaches-of-2025/
Infosecurity Magazine – https://www.infosecurity-magazine.com/news-features/top-10-cyberattacks-of-2025/

5. Salesforce Ecosystem Breach (1 Billion Records)
Source: TechCrunch – Salesforce downstream breach coverage
https://techcrunch.com/2025/12/19/hacks-thefts-and-disruption-the-worst-data-breaches-of-2025/

6. Ingram Micro Ransomware Attack
Source: CRN – Ingram Micro incident summary
https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025

7. Anthropic AI‑Powered Autonomous Attack
Source: CRN – AI‑driven attack disclosure
https://www.crn.com/news/security/2025/10-major-cyberattacks-and-data-breaches-in-2025

8. Asahi Breweries Ransomware Attack (Qilin Group)
Source: Infosecurity Magazine – Asahi breach analysis
https://www.infosecurity-magazine.com/news-features/top-10-cyberattacks-of-2025/

9. Jaguar Land Rover Operational Shutdown
Source: Infosecurity Magazine – JLR incident coverage
https://www.infosecurity-magazine.com/news-features/top-10-cyberattacks-of-2025/

10. GlobalLogic & Barts Health (Oracle EBS Campaign)
Source: Infosecurity Magazine – Oracle EBS zero‑day victims
https://www.infosecurity-magazine.com/news-features/top-10-cyberattacks-of-2025/