svoboda.center Logo svoboda.center

Svoboda Cybersecurity Brief June 02, 2025

Jun 02, 2025

bulletproof VPN - stay anonymous

GRU-Linked Hacker Group Exposed in Failed Cyber Provocation Campaign

The Insider uncovered details about a GRU Unit 29155 hacker team composed of fraudsters and students. The group’s unprotected server logs revealed ties to sabotage and cyber operations, including past attacks by APT28 (Fancy Bear) and Sandworm. The FBI indicted members in 2024 for activities linked to international hacking campaigns.
Source: DataBreaches

Psychologists’ Order Fined €30K for GDPR Violations After Ransomware Attack

The Lombardy Order of Psychologists was penalized for failing to protect sensitive patient and member data, including health and criminal records, in a NoEscape ransomware attack. Data was exfiltrated and leaked after the organization lacked detection measures. Backup systems eventually restored data integrity.
Impact: Exposure of highly sensitive data, including minors’ records, risking discrimination and fraud.
Mitigation: Implement proactive security monitoring and encryption for sensitive data.
Source: DataBreaches

Virgin Islands Lottery Recovers from $1M Ransomware Attack Without Paying

After refusing to pay a $1 million ransom, the Virgin Islands Lottery rebuilt its systems from scratch following a March 2025 ransomware attack. This marks the second attack in a year, though threat actors remain unidentified. The organization sanitized servers and enhanced security post-recovery.
Impact: Operational disruption and potential data exposure (unconfirmed).
Mitigation: Regular offline backups and network segmentation to limit attack spread.
Source: DataBreaches

Indian Defense Contractor Arrested for Leaking Naval Secrets to Pakistani Operatives

A junior contractor at Muraed Krasni Defence Technology was arrested for sharing classified details on 14 Indian Navy vessels with suspected Pakistani spies. The insider had access to restricted naval installations, highlighting vulnerabilities in contractor vetting.
Source: DataBreaches

Lower Merion School District Attributes Data Exposure to “Computer Glitch”

Confidential documents were inadvertently exposed on the district’s password-protected BoardDocs portal, raising questions about whether the issue was a software flaw or misconfiguration. The district removed affected files but provided no technical details.
Source: DataBreaches

Share this brief: https://svo.bz/1rqR

If you want to support us, you can donate here: Donate