top of page

Top Data Breaches of March 2025

  • Harshang Shah
  • Apr 17
  • 2 min read

Updated: Apr 21


Top Data Breaches of 2025

Cyberattacks are on the rise, and 2025 has already seen major data breaches affecting millions. As cybercriminals continue to exploit vulnerabilities, organizations across industries are struggling to keep their data safe. Here’s a look at some of the most significant incidents so far.


Major Data Breaches in March 2025


1. The College Hospital Costa Mesa

Industry: Healthcare

  • What happened? Hackers bypassed the hospital’s cyber defenses between August and September 2024. The breach was disclosed on March 10, 2025.

  • Impact: Sensitive data, including Social Security Numbers, was compromised.

 

2. Reading Cooperative Bank

Industry: Banking

  • What happened? A phishing attack allowed a hacker to infiltrate the bank’s systems.

  • Impact: The breach exposed customers’ personal data, including names, driver’s license details, account information, and medical records.

 

3. Oracle Cloud

Industry: Cloud Computing

  • What happened? A hacker named rose87168 claimed to have stolen 6 million records from Oracle Cloud’s SSO login servers and leaked samples on a data breach forum. Oracle denied the breach.

  • Impact: Allegedly exposed data included encrypted SSO passwords, LDAP info, JKS files, and JPS keys.

 

4. Substitute Teacher Service (STS)

Industry: Staffing Services

  • What happened? On March 14, STS disclosed that hackers gained unauthorized access to internal systems.

  • Impact: Personal data of 500,000 teachers and staff across 80+ school districts was compromised.

 

5. Heart to Heart Hospice

Industry: Healthcare

  • What happened? On March 18, the organization discovered unauthorized access to its IT systems and launched a third-party investigation.

  • Impact: Leaked data included patient names, addresses, Social Security Numbers, insurance, and medical treatment details.


6. Samsung Germany

Industry: Electronics

  • What happened? Threat actor GHNA breached Samsung Germany’s ticketing system using stolen credentials from third-party provider Spectos GmbH.

  • Impact: 270,000 customer records were exposed, including names, emails, transaction details, support interactions, and addresses.


Key Takeaways:

  1. Ransomware Rising: Attacks like LockBit are causing major disruptions across industries.

  2. Third-Party Risks: Breaches via vendors (e.g., Samsung Germany) show weak links outside core systems.

  3. Finance & Healthcare Hit Hard: Sensitive data in these sectors continues to be a top target.

  4. Cloud Security Matters: Claims against Oracle Cloud highlight the importance of securing cloud environments.

  5. Big Impact, Big Losses: Breaches are not just about data loss—they also hurt reputation and stock prices.


Safeguard your business with CyberForte — expert-led penetration testing and real-time threat monitoring tailored to your needs.

 
 
 

Comments

bottom of page