Recent cyber security breaches in 2025

For this project, I had to find and share examples of cyber security attacks reported by the media and evaluate my sources linked below.

Microsoft SHarepoint Zero-day Exploit

In July 2025, a zero-day exploit was discovered in Microsoft SharePoint. A zero-day exploit is an exploit that was a previously unknown security flaw that attackers could use before a patch was released. This SharePoint vulnerability reportedly impacted a wide range of organizations worldwide: businesses, U.S. federal and state agencies, universities, and presumably more. Although emergency patches were issued by Microsoft, some versions of SharePoint remained vulnerable. That forced many organizations to disconnect or lock down critical systems to prevent further risk.

Gmail account & password leak affecting 183 million users

A dataset containing about 183 million email & password combinations recently surfaced, and it included some Gmail credentials. The data came from what are known as “info stealer logs” and credential-stuffing databases. This isn't necessarily evidence of a hack directly of Gmail or Google’s servers, but some of the credentials were “fresh." A sampling showed that around 8% (around 16 million) of the entries had not appeared in previous leaks. For a few users, the leaked password matched their actual Gmail login, meaning at least some entries were confirmed active.