CyberAttacks

November 18, 2025 - A Cloudflare outage that occurred earlier today, November 18, 2025, has been resolved. The issue affected numerous websites and services globally, including major platforms such as X (formerly Twitter), ChatGPT, and Spotify. The outage was caused by a configuration file issue that led to a crash in the software system handling traffic for several of Cloudflare's services. The incident has been resolved, and affected services are coming back online. You can monitor the status of Cloudflare services on the official Cloudflare Status page. List of Affected Services. The following services and websites reported increased outages and issues related to the Cloudflare incident: 

1. X (formerly known as Twitter)

2. OpenAI / ChatGPT

3. Spotify

4. Amazon Web Services (AWS)

5. Canva

6. Downdetector

7. Archive of Our Own

8. Depop

9. Grindr

10. League of Legends

11. Bet365

12. BetMGM

13. Dayforce

14. DoorDash

15. Google Store

16. Indeed

17. Quizlet

18. Truth Social

19. Uber

20. Zoom

21. Ikea

22. Letterboxd

23. PayPal

24. Sage

25. Shopify

26. Dropbox

27. Coinbase 

June 22, 2025 - Cyberattack on United Natural Foods (UNFI) 

• • June 22, 2025 - Shoppers in Maryland  Shoppers Food & Pharmacy (a Maryland‑based grocery chain) is owned by United Natural Foods (UNFI) and is directly supplied by them. UNFI serves over 30,000 locations and took systems offline, halting typical deliveries. Local grocers in our region (including smaller co‑ops reliant on UNFI) reported "empty shelves" in pantry staples, frozen foods, and dairy. Even UNFI-owned Cub pharmacies and commissaries experienced service delays. Since Shoppers is part of UNFI, it's extremely likely they have experienced similar issues: limited stock and delivery delays, especially in non‑perishable sections (like frozen, pantry staples, and dairy).

    • • Pantry & Frozen Items - Likely low stock or out-of-stock on staples like pasta, cereal, snacks, and frozen goods

      • Dairy & Refrigerated - Possibly delayed deliveries, though cooler items may flow more steadily

      • Produce & Meat - These are often sourced from different supply chains, so usually less affected

  • June 11, 2025 - On June 5, 2025, UNFI—which supplies Whole Foods and Amazon Fresh—detected unauthorized activity in its IT systems. It proactively took systems offline, disrupting order processing, warehouse operations, and deliveries 

    • • Impact on stores: Many Whole Foods and other grocers saw empty shelves, especially in produce, dairy, and frozen sections. To cope, UNFI implemented paper-based manual ordering—a slower and less accurate fallback 

      • Who’s behind it: Analysts speculate that the ransomware group known as “Scattered Spider” (UNC3944) may be responsible 

      • Current status: UNFI expects disruptions to persist for several days. Whole Foods staff have been instructed to communicate only that the shortages are “temporary supply challenges” 

      • Stock & financial hit: UNFI stock dropped 7–9% following the breach, and the chaos forced it to disable systems, notify law enforcement, and launch forensic investigations 

      • Billing & Fee Issues with Distributors - Opaque distributor fees: Independent of the hack, distributors like UNFI and KeHE have long burdened manufacturers—and ultimately consumers—with hidden fees for handling promotions, spoilage, shipping errors, chargebacks, and more; Chain reaction: These fees erode the profitability of food brands (especially smaller ones), prompting them to hike consumer prices. Retailers, seeking margins, sometimes add markup surcharges. When distributors hit bottlenecks (e.g., during a cyber outage), the billing complexities worsen, and cost overruns often spill into higher grocery prices.

June 12, 2025 - A significant internet outage began around early afternoon ET, largely tied to a Cloudflare authentication failure. This cascaded across many services that depend on Cloudflare’s infrastructure. Platforms currently impacted:

• • • Cloudflare itself (outage started ~1:19 p.m. CST) 

    • Google services — including Search, Maps, Gmail, Cloud, Nest/Home/Home Hub (via IAM issues) 

    • Amazon Web Services (AWS) 

    • Spotify (~27k+ reports on Downdetector) 

    • Discord

    • Twitch, Snapchat, YouTube 

    • AI‑based platforms: OpenAI (e.g. ChatGPT), Character AI 

    • Microsoft Azure and Microsoft 365: Reports indicate service disruptions across the Microsoft cloud and collaboration tools 

    • Telecom Networks (Verizon, AT&T, T-Mobile): Connectivity problems were logged, pointing to intermittent issues across major carriers.

    • E‑commerce & SaaS platforms: Outages extended to FuboTV, Etsy, Vimeo, UPS, Shopify, IKEA, and Paramount+ 

    • Voice-over-IP (VOIP) systems: Users on Reddit noted outages impacting VOIP services tied to Zoom, npm, Pantheon, and certain banking platforms 

April 29, 2025 - Citibank and Charles Schwab are reportedly suffering from an online outage. The $1.6 trillion Citibank used by nearly 200 million customer. 

March 16, 2025 - A website called “Dogequest” has reportedly published the names, addresses, and phone numbers of Tesla owners across the U.S., complete with an interactive map and a Molotov cocktail cursor. The site claims it will only remove personal data if owners prove they've sold their Teslas, in an apparent backlash to Elon’s ties with the Trump administration. This comes as Tesla dealerships face gunfire, arson attempts, and Cyber Truck owners report harassment, while anti-Tesla protests ramp up nationwide. Source

• Tesla's torched in Las Vegas service center in suspected anti-Elon Musk protest. Source 

February 23, 2025 - The Anne Arundel County government is investigating a “cyber incident” that began disrupting county services Saturday. At 10:15 a.m. Saturday, the county’s government posted that some of its public services were down but that both 911 and 311 remained operational. In an update posted around 5 p.m., the county identified that its Office of Information Technology, public safety officials and cybersecurity experts were working to investigate an “ongoing cyber incident of external origin” that was affecting county services. As of Sunday, county officials said they are taking a “proactive approach” to ensure the systems are safe. A post on X from the county government noted that precautionary measures included limiting access to the internet until the county government is able to return to full operations.  County officials do not have a timeline for when full service will be restored but said they would continue to provide updates on the situation via social media. Source 

December 30, 2024 - ‘Major incident’: China-backed hackers breached US Treasury workstations - The US Treasury Department notified lawmakers on Monday that a China state-sponsored actor infiltrated Treasury workstations in what officials are describing as a “major incident.” In a letter reviewed by CNN, a Treasury official said it was informed by a third-party software service provider on December 8 that a threat actor used a stolen key to remotely access certain Treasury workstations and unclassified documents. “Based on available indicators, the incident has been attributed to a Chinese state-sponsored Advanced Persistent Threat (APT) actor,” Aditi Hardikar, assistant secretary for management at the US Treasury, wrote in the letter. A Treasury spokesperson said in a statement to CNN that the compromised service has been taken offline and officials are working with law enforcement and the Cybersecurity and Infrastructure Security Agency (CISA). “There is no evidence indicating the threat actor has continued access to Treasury systems or information,” the Treasury spokesperson said. Source 

11/12/2024: Cyberattack Cost Oil Giant Halliburton $35 Million - The expenses related to the recent cybersecurity incident suffered by US oil giant Halliburton reached $35 million by the end of September, according to the company’s latest financial report. The incident came to light on August 22, when Halliburton, one of the world’s largest oilfield service providers, confirmed unauthorized access to some of its systems.  The company immediately launched an investigation and shut down some systems to contain the incident. By the end of August, reports emerged that — based on indicators of compromise — the ransomware group known as RansomHub was likely behind the Halliburton attack. Source 

11/12/2024: Food Lion has been hit by a cyberattack - Their parent company detected the intrusion late last week and reached out to law enforcement. In a statement, Food Lion said they've had to take some of their systems offline, and services like pharmacies and e-commerce operations have been affected. Stores are still open. 5 On Your Side has reached out to Food Lion to get more specifics of which systems are offline, what customer information may have been compromised and how those customers are being informed about what's going on. "All Food Lion locations are open and accepting all forms of payment," a Food Lion spokesperson wrote in a statement. "We appreciate our valued customers’ patience and understanding as we work to resolve the issue." Source 

11/12/2024: Grocery giant Ahold Delhaize’s US operations disrupted by cyberattack - The parent company said the disruption forced it to take certain systems offline and affected some pharmacies and e-commerce services. Ahold Delhaize said in a Friday statement that it had “detected a cybersecurity issue within its U.S. network” and was investigating with help from outside experts, but did not indicate what might have impacted its online infrastructure. The company said it took some systems down and notified authorities about the incident. Hannaford’s e-commerce services remained unavailable Monday morning, continuing an outage that began last week. Websites operated by Ahold Delhaize’s other U.S. banners appeared to be operating normally after earlier displaying warnings about potential disruptions. Ahold Delhaize said all of its U.S. stores were open but that the IT problems had affected some pharmacies and e-commerce functions. On Friday, Hannaford posted on Instagram that it had canceled pickup and delivery orders that day “as our associates cannot view orders placed,” noting that customers may see a pending transaction on their bank account that should clear within several days. Most of the chain’s pharmacies were processing prescriptions but some may be unable to accept phone calls. The chain’s stores remained open with most accepting “all major forms of payment, including credit cards,” the post said. The websites for Giant Food, Stop & Shop, The Giant Company and Food Lion each posted an identical note online last Friday saying that customers may experience disruptions and reduced availability for pickup and delivery due to “system outages.” The note has since been removed from each of those banners’ sites. Hannaford’s website and app remain offline as of early Monday afternoon. Source 

10/31/2024: Several major US telecoms firms hit by Chinese hackers, FBI says - A joint statement from the Federal Bureau of Investigation (FBI) and the Cybersecurity & Infrastructure Security Agency (CISA) has claimed multiple major US telecom providers have been breached in what appears to be a coordinated attack by Chinese hackers. The statement notes, “The U.S. Government is investigating the unauthorized access to commercial telecommunications infrastructure by actors affiliated with the People’s Republic of China.” Not much is known about the attack, nor which telecom providers have been affected as the investigation is still ongoing. The Canadian government has also issued a warning on China’s widespread reconnaissance scans on Canadian domains, likely searching for vulnerabilities and gathering information. “After the FBI identified specific malicious activity targeting the sector, the FBI and the Cybersecurity and Infrastructure Security Agency (CISA) immediately notified affected companies, rendered technical assistance, and rapidly shared information to assist other potential victims,” the joint statement continued, further stating that “any organization that believes it might be a victim to engage its local FBI field office or CISA.” Earlier in October 2024, a cyber criminal group with links to the People’s Republic of China tracked as Salt Typhoon managed to break into broadband providers such as AT&T, Lumen Technologies, and Verizon. Along with access to the network traffic processed by these providers, the attackers also broke into a telecommunications system used by authorities to legally surveil criminals using wiretaps and other techniques. As for Canada, the statement issued by its government states multiple reconnaissance scans by China “have occurred throughout 2024” with organizations targeted including “Government of Canada departments and agencies, and includes federal political parties, the House of Commons and Senate.” “They also targeted dozens of organizations, including democratic institutions, critical infrastructure , the defense sector, media organizations, think tanks and NGOs,” the statement said. Source 

10/31/2024: Over 6,500 patients affected by Parkland Health in Dallas possible data breach (Contents of the data breach include names, birth dates, and medical records) A data breach at Parkland Health in Dallas affected thousands of patients, according to a notice filed with the Texas Attorney General's office last week. The hospital announced on Oct. 22 that hackers gained access to the personal information of over 6,500 people. The incident exposed sensitive information, including names, birth dates, and medical records. Parkland Health officials said they sent notification letters to all individuals whose information was affected by the data breach. According to Check Point Research, healthcare organizations are experiencing an increasing number of cyberattacks. The global weekly average reached 2,018 attacks per organization in 2024, a 32% rise from the previous year.

Source 

10/22/2024: Internet Archive Breached Again—Third Cyber Attack In October 2024 - The Internet Archive has confirmed a third security breach on October 20, 2024, in what has become a series of escalating cyberattacks. Hackers were able to exploit unrotated Zendesk API tokens to gain access to the platform that manages the Archive's support tickets. Despite previous warnings and multiple breaches earlier this month, the organization had not or were unable to secure the system adequately, leaving the tokens vulnerable to continued exploitation. The attackers were still able to access and potentially download sensitive support data, including personal identification documents submitted by users. This breach follows two major attacks earlier in October, which have compounded the damage to the Archive's infrastructure. The Internet Archive is a nonprofit digital library that was established in 1996 by Brewster Kahle with the goal of providing "universal access to all knowledge." It is widely known for its Wayback Machine, which archives websites and allows users to view them as they appeared in the past, making it a valuable resource for historians, researchers, and the general public. Source 

10/16/2024: Cyber criminals are increasingly helping Russia and China target the US and allies, Microsoft says - Russia, China and Iran are increasingly relying on criminal networks to lead cyberespionage and hacking operations against adversaries like the U.S., according to a report on digital threats published Tuesday by Microsoft. The growing collaboration between authoritarian governments and criminal hackers has alarmed national security officials and cybersecurity experts who say it represents the increasingly blurred lines between actions directed by Beijing or the Kremlin aimed at undermining rivals and the illicit activities of groups typically more interested in financial gain. In one example, Microsoft’s analysts found that a criminal hacking group with links to Iran infiltrated an Israeli dating site and then tried to sell or ransom the personal information it obtained. Microsoft concluded the hackers had two motives: to embarrass Israelis and make money. Networks tied to Russia, China and Iran have also targeted American voters, using fake websites and social media accounts to spread false and misleading claims about the 2024 election. Analysts at Microsoft agree with the assessment of U.S. intelligence officials who say Russia is targeting the campaign of Vice President Kamala Harris, while Iran is working to oppose former President Donald Trump. Russia and Iran will likely accelerate the pace of their cyber operations targeting the U.S. as election day approaches, Burt said. Source 

10/16/2024: 23andMe To Pay Up To $10,000 To Data Breach Victims - Extraordinary Claims: Customers who experienced significant losses, such as identity theft or incurred costs for security services, may qualify for up to $10,000. According to HIPAA Journal and Tech.co, affected individuals in this category must provide documentation, such as receipts or records of related expenses. The category is capped at $5 million in total, meaning payouts may be prorated if there are numerous claims exceeding this cap​. Health Information Claims: Customers whose sensitive health information was specifically exposed can claim around $100. This category includes health information compromised as part of the data breach and is limited to $750,000 across all claimants. Statutory Cash Claims: Residents of California, Illinois, Oregon, and Alaska are eligible for a general compensation amount, expected to be about $100, if they received a breach notification and can confirm residency in one of these states. These amounts may vary based on the number of claims and total settlement funds available, especially since claims will be processed on a proportional basis if demand is high. Source 

10/13/2024: Chinese ‘Typhoon’ hackers preparing for war [against the United States] - “China’s hackers are positioning on American infrastructure in preparation to wreak havoc and cause real-world harm to American citizens and communities, if or when China decides the time has come to strike,” FBI Director Christopher Wray told lawmakers earlier this year. The U.S. government and its allies have since taken action against the “Typhoon” family of the Chinese hacking groups, and published new details about the threats they pose. Source 

• Volt Typhoon represents a new breed of China-backed hacking groups; no longer just aimed at stealing sensitive U.S. secrets, but rather preparing to disrupt the U.S. military’s “ability to mobilize,” according to the FBI’s director.

• Flax Typhoon, first outed in an August 2023 report from Microsoft, is another China-backed hacking group that officials say has operated under the guise of a publicly traded cybersecurity company based in Beijing. The company, Integrity Technology Group, has publicly acknowledged its connections to China’s government, according to U.S. officials. 

• Salt Typhoon - The latest — and potentially most ominous — group in China’s government-backed cyber army uncovered in recent months is Salt Typhoon. Salt Typhoon hit headlines in October for a much more sophisticated operation. As first reported by the Wall Street Journal, the China-linked hacking group is believed to have compromised the wiretap systems of several U.S. telecom and internet providers, including AT&T, Lumen (formerly CenturyLink), and Verizon

10/12/2024: If you're a Marriott customer, FTC says the breach-plagued hotel chain owes you - Following a settlement with the FTC, the hotel chain must implement a host of security changes and provide help to customers affected by the string of data breaches. The FTC has come down hard on hotel chain Marriott following a series of data breaches between 2014 and 2020 that harmed more than 344 million customers around the world. In a Wednesday news release announcing a settlement order with the company, the agency said that Marriott must delete any personal data associated with a customer's account upon request and restore any loyalty points lost as a result of the breaches. Further, the chain will have to dramatically tighten its security to better protect customers from future cyberattacks. Source 

10/11/2024: New Gmail Security Alert For Billions As 7-Day AI Hack Confirmed - Google has implemented increasingly sophisticated protections against those who would compromise your Gmail account—but hackers using AI-driven attacks are also evolving. It all started a week before Mitrovic realized the sophistication of the attack that was targeting him. “I received a notification to approve a Gmail account recovery attempt,” Mitrovic recounts in a blog post warning other Gmail users of the threat in question. The need to confirm an account recovery, or a password reset, is a notorious phishing attack methodology intended to drive the user to a fake login portal where they need to enter their credentials to report the request as not initiated by them. Source 

10/10/2024: Hackers Claim 'Catastrophic' Internet Archive Attack - A group linked to a pro-Palestinian hacktivist movement has launched a catastrophic cyberattack revealing the details of 31 million people, compromising their email addresses and screen names. An account on X under the name SN_BlackMeta claimed responsibility for the attack on The Internet Archive, a nonprofit organization, and implied that further attacks were planned. The Internet Archive is known for its digital library and the Wayback Machine. SN_BlackMeta has previously been linked to an attack against a Middle Eastern financial institution earlier this year, and a security firm has linked it to a pro-Palestinian hacktivist movement. Encrypted passwords were also exposed and although these are relatively safe, users have been advised to change their passwords. Source 

10/10/2024: Customer data of major US asset managers exposed: over 70k investors affected - With $4.9 trillion in assets under management, Fidelity Investments ranks among the top five in the financial services market. However, no one’s immune to the occasional data breach. Fidelity sent out breach notification letters to thousands of customers informing them that their personal details were obtained without authorization. “Between August 17th and August 19th, a third party accessed and obtained certain information without authorization using two customer accounts that they had recently established,” the corporation’s breach notification letter said. The breach notification notes that customer access to Fidelity’s customer accounts was not exposed in the incident. Source 

10/10/2024: Comcast says customer data stolen in ransomware attack on debt collection agency - U.S. telecom giant Comcast has warned that cybercriminals stole the personal data of more than 230,000 customers during a ransomware attack on a third-party provider of debt collection services. The breach relates to a February cyberattack on Financial Business and Consumer Solutions (FBCS), a Pennsylvania-based debt collection agency used by Comcast. In a filing with Maine’s attorney general on Friday, Comcast said that FBCS initially told the company in March that the security incident involved no Comcast customer data. Later in July, FBCS notified Comcast that its customer data had in fact been compromised. Comcast says that 237,703 subscribers are affected by the data breach, with hackers accessing their names, addresses, Social Security numbers, dates of birth, and Comcast account numbers and ID numbers. The stolen data belongs to those registered as customers at “around 2021,” Comcast says, adding that the company stopped using FBCS for debt collection in 2020. FBCS has not yet revealed the nature of its security incident but Comcast’s filing confirms it was a ransomware attack. “From February 14 and February 26, 2024, an unauthorized party gained access to FBCS’s computer network and some of its computers,” the filing states. “During this time, the unauthorized party downloaded data from FBCS systems and encrypted some systems as part of a ransomware attack.” Source

10/8/2024: American Water, the Largest Water Utility in US, Is Targeted by a Cyberattack - The largest regulated water and wastewater utility company in the U.S. says it was the victim of a cyberattack, prompting the firm to pause billing to customers

The largest regulated water and wastewater utility company in the United States announced Monday that it was the victim of a cyberattack, prompting the firm to pause billing to customers. New Jersey-based American Water — which provides services to more than 14 million people in 14 states and on 18 military installations — said it became aware of the unauthorized activity on Thursday and immediately took protective steps, including shutting down certain systems. The company does not believe its facilities or operations were impacted by the attack and said staffers were working “around the clock” to investigate the nature and scope of the attack. The company said it has notified law enforcement and is cooperating with them. It also said customers will not face late charges while its systems are unavailable. According to its website, American Water manages more than 500 water and wastewater systems in about 1,700 communities in California, Georgia, Hawaii, Illinois, Indiana, Iowa, Kentucky, Maryland, Missouri, New Jersey, Pennsylvania, Tennessee, Virginia and West Virginia. Source 

10/6/2024: Chinese hackers access US telecom firms, worrying national security officials - A highly skilled group of Chinese government-linked hackers has in the last several months infiltrated multiple US telecommunications firms in a likely search for sensitive information bearing on national security, multiple sources briefed on the matter told CNN. US investigators believe the hackers potentially accessed wiretap warrant requests, two of the sources said, but officials are still working to determine what information the hackers may have obtained. US broadband and internet providers AT&T, Verizon and Lumen are among the targets, the sources said. Source 

10/4/2024: Michigan’s largest county suffers cyberattack - Wayne County, Michigan, which contains Detroit, suffered a cyberattack that disabled many government services. Wayne County, Michigan, the largest county in the state with more than 1.75 million residents, is dealing with a cyberattack that shut down all its government websites and limited the operations of several functions, including financial transactions, case management and estate sales. The cyberattack was first reported by WXYZon Wednesday. Doug Lulgjuraj, a spokesperson for the county, which contains Detroit, told local affiliates that he expects the county’s website, which was still inaccessible on Thursday afternoon, to be “fully operational” by Friday, which would restore access to several online services, such as property tax payments and property records. “Impacted services have been transitioned to backup processes to maintain operations. Barring any unforeseen issues, we expect the county website to be fully operational by the start of business on Friday,” Lulgjuraj told ABC, FOX and CBS, on Wednesday. The hack is also disrupting the county’s judicial system, preventing jail inmates from being bonded out, WXYZ reported. Defense attorneys reported being unable to schedule visits with their clients, and websites for the Wayne County prosecutor’s and clerk’s offices are non-operational. Lulgjuraj did not state whether this was a ransomware attack, but that the county’s information technology team is currently investigating the scope of the incident with the FBI and Michigan State Police. In August, the City of Flint, Michigan, suffered a ransomware attack that disrupted its network and telecommunications, including the city’s payment system. Source 

10/2/2024: Bank of America is down: Customers report widespread outage - Bank of America customers report having trouble accessing their bank accounts on Wednesday. Reports about a problem at Bank of America spiked around 12:45 pm ET on Downdetector, which collects data on outages. Many customers complained they could not see their account balances. Some who could access their accounts were startled to see zero balances. Source

9/24/2024: MoneyGram confirms a cyberattack is behind dayslong outage - Money transfer giant MoneyGram has confirmed it suffered a cyberattack after dealing with system outages and customer complaints about lack of service since Friday. While many suspected the company was hit by a cyberattack, it wasn't until Monday morning that MoneyGram confirmed that a cybersecurity incident caused the systems outage. Moneygram is the world's second largest money transfer company, only behind Western Union, processing over 120 million transactions annually from tens of millions of users. No time estimates have been given for when the systems might return to normal operational status, indicating that they are in the beginning stages or remediating the attack. Source 

9/24/2024: US Capitol Hit by Massive Dark Web Cyber Attack - Personal information of more than 3,000 congressional staffers has been leaked across the dark web in a wide-ranging cyberattack on the Capitol, according to reports. Internet security firm Proton found over 1,800 passwords used by staffers in Congress available on the dark web, through an investigation of exposed accounts among U.S. political staffers, according to The Washington Times.Eamonn Maguire, Proton's head of account security, said: "The volume of exposed accounts among U.S. political staffers is alarming, and the potential consequences of compromised accounts could be severe. "Vigilance and strict security measures are essential to safeguard personal and national security." Source 

9/6/2024: Social security is Down: Online and in-person services hit by nationwide outage - Social security's personalized services are down today due to a IT hardware issue. The outage appears to have hit the financial support program around 4AM this morning, and affects online and in-person services you can use to check your Social Security information. Users began reporting outages around 4AM with the number of reports peaking around 10AM, according to Downdetector, a site that monitors online services. 'We continue to answer general questions by telephone on our 800 number and in our local offices, while offices are closed today to in-person service,' the program's website states. 'We are working to quickly resolve the issue and apologize for the inconvenience.' The outage impacts more than 64 million Americans who have registered for a secure personal account in the my Social Security portal. Source

8/28/2024: Chinese hackers target US internet companies - Alleged Chinese Government-backed hacker group Volt Typhoon has compromised several internet companies in the US and abroad. Researchers at Lumen Technologies said in a blog post that the hackers took advantage of a previously unknown vulnerability in Versa Director, a software platform used to manage services for customers of California-based Versa Networks. The group exploited a software bug to target four US and one Indian victim, although they declined to identify the targets. The subsequent blog post by Lumen said researchers believe the hacking campaign began as early as 12 June. The US Cybersecurity and Infrastructure Security Agency has since added the Versa vulnerability to its list of known exploited vulnerabilities. Source 

8/14/2024: Hackers stole every American Social Security number and physical address from National Public Data, around 2.9 BILLION records. This is one of the largest data breaches of all time. Hacking group 'USDoD' claims they have stolen 2.7 billion records of Americans' personal information.  The personal information includes Social Security numbers and physical addresses. The data was allegedly stolen from data broker 'National Public Data.' The broker offers personal info to employers, private investigators, and staffing agencies for example. USDoD is allegedly offering to sell the stolen records. Source: The Verge, BleepingComputer, LA Times

8/14/2024: Terrifying new cyber hacking tactic identified that can bring down passenger planes - A terrifying new hack that has the potential to bring down passenger planes is becoming more widespread, experts warn. GPS Spoofing can push planes off their flight paths and confuse the autopilot’s landing feature, causing them to potentially miss the designated tarmac. Cybersecurity experts have issued a warning about a surge in GPS spoofing attacks that have risen 400 percent since the first quarter of this year. GPS spoofing attacks raise the potential that flights could crash by installing ransomware that could veer the aircraft off course and send them careening into other aircraft, terrain or the ocean. The attacks are becoming more common. They reported that spoofing attacks targeted as many as 1,350 flights on some days. Hackers transmit counterfeit radio signals to the airline’s receiver antennas to override legitimate GPS signals and send false alerts to the plane’s localization systems that are meant to keep the aircraft away from rough terrain. Source

7/19/2024: Microsoft Outage Linked to CrowdStrike Takes Down Computers Around the World Overnight  Source

• Summary & Updates 8PM EST - Microsoft-CrowdStrike issue causes ‘largest IT outage in history’; CrowdStrike outage disrupted 911 dispatches, banks, hospitals, flights, businesses, Sky News was off-air, Supermarkets, and services at the London Stock Exchange were disrupted.

  • Flights - More than 4,000 flights cancelled globally due to outage, data shows; Agencies in at least seven states reported temporary outages, including the St. Louis County Sheriff's Office, the Faribault Police Department in Minnesota, and 911 systems in New Hampshire, Fulton County, Indiana, and Middletown, Ohio. Reports of 911 outages across the country peaked at more than 100 on Friday just before 3 a.m., according to Downdetector. Source

  • 911 - In Alaska, both non-emergency and 911 calls went unanswered at multiple dispatch centers for seven hours.

  • Businesses worldwide grappled with an ongoing major IT outage Friday, as financial services and doctors’ offices were disrupted, while some TV broadcasters went offline. Air travel has been hit particularly hard, with planes grounded, services delayed and airports issuing advice to passengers. The outage came as cybersecurity giant CrowdStrike experienced a major disruption early Friday following an issue with a recent tech update. CrowdStrike CEO George Kurtz has since said that the company is “actively working with customers impacted by a defect found in a single content update for Windows hosts,” stressing that Mac and Linux hosts are not affected. “This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed,” he said on social media. Source

  • Amazon warehouses and internal software disrupted by outage

  • Railroad Union Pacific is now back to full capacity after facing processing delays and “varying levels of impact” earlier Friday.

  • CommonSpirit Health bringing computers back online one by one, CIO says - At CommonSpirit Health, which provides care across 150 hospitals in 24 states, employees noticed that many of the health systems’ desktop computers were displaying a blue error screen in the early hours of Friday morning.

  • Tesla temporarily halts production at some manufacturing facilities after outage

  • Outage hits Starbucks mobile ordering, causing chaos at stores

  • Drugmaker Amgen is working to recover impacted systems

  • Epic Systems says outage is preventing some health organizations from accessing some patient records

  • Charles Schwab says some online features can be ‘intermittently slow or unavailable’ after outage

6/20/2024: Cleveland, Ohio Cyberattack - City has no intentions of paying ransom to regain access to records and data - Cleveland officials still can’t say whether sensitive personal data was stolen in ransomware attack from city employees and members of the public. Source

6/10/2024: Massive Data hack reveals phone numbers, credit scores, and social security numbers from users of Major Telecommunications firm - Frontier Sends Update to 750,000 Customers Hit by Data Hack: Telecommunications firm Frontier Communications said that a data breach allowed hackers to access personal details of its customers and put the info up for sale. On June 6, Frontier notified patrons about the data breach that affected 751,895 individuals. “On April 14, 2024, we detected unauthorized access to some of our internal IT systems,” the letter said. “Our investigation identified your personal information among the data affected by this incident.” According to a screenshot, the hacking group claims it has the dataset of more than 2 million Frontier customers. Personal details for sale included names, addresses, emails, social security numbers, credit scores, dates of birth, and phone numbers, with a combined data size of 5 GB.  Related Article

6/5/2024: Debt Collector Data Breach Exposes Data on 3 Million+ Americans - Names, birth dates, Social Security numbers, and medical records of millions of Americans are at risk after an unknown entity accesses debt collector FBCS's internal systems. US debt collection company Financial Business and Consumer Solutions (FBCS) has experienced a data breach, exposing the information of more than 3.2 million Americans. Threat actors accessed FBCS' systems on Valentine's Day, but the company didn't realize the breach had occurred until Feb. 26. In a public notice, FBCS describes the incident as "unauthorized access to certain systems in its network." Related Article

6/3/2024: Ticketmaster hacked in what’s believed to be a spree hitting Snowflake customers - Cloud storage provider Snowflake said that accounts belonging to multiple customers have been hacked after threat actors obtained credentials through info-stealing malware or by purchasing them on online crime forums. Ticketmaster parent Live Nation—which disclosed Friday that hackers gained access to data it stored through an unnamed third-party provider—told TechCrunch the provider was Snowflake. The live-event ticket broker said it identified the hack on May 20, and a week later, a “criminal threat actor offered what it alleged to be Company user data for sale via the dark web.” Related Article

5/27/2024: Internet Archive Hit With DDoS Cyberattack - The Internet Archive, a vital digital repository for millions of historical documents and websites, is currently grappling with a significant distributed denial-of-service (DDoS) attack. Reports indicate that the DDoS attack began earlier today, severely impacting the site’s accessibility and functionality. Related Article

5/23/2024: Rural Texas towns report cyberattacks that caused one water system to overflow - A hack that caused a small Texas town's water system to overflow in January has been linked to a shadowy Russian hacktivist group, the latest case of a U.S. public utility becoming a target of foreign cyberattacks. The attack was one of three on small towns in the rural Texas. Local officials said the public was not put in any danger and the attempts were reported to federal authorities. "There were 37,000 attempts in four days to log into our firewall," said Mike Cypert, city manager of Hale Center, which is home to about 2,000 residents. The attempted hack failed as the city "unplugged" the system and operated it manually, he added. Related Article

5/22/2024: Software glitch (likely a cyber attack) halts South Carolina ports, truckers face no work & no pay - After issuing a warning Sunday night and a series of delays Monday afternoon, South Carolina Ports Authority officials finally announced they wouldn’t reopen until Tuesday morning. Officials blame the delays on a software issue but said they don’t think it was a cybersecurity issue. Related Article

5/20/2024: Cyber Attack - Richland, Wash. Hit By Data Breach Involving City, 911 Emergency Services - The city of Richland, Wash. confirmed that its computer servers were breached through the Benton County Emergency Services system on May 15, compromising personal information for area residents. It said the breach appears to have mostly impacted city systems, but may have exposed personal information, including names, addresses, contact details and possibly other sensitive data. Richland has about 63,000 residents, but the emergency services system includes 911 emergency dispatch services throughout Benton and Franklin counties, with a population of about 312,000. The city has hired a consultant to assess the situation and possible damage and to strengthen measures to prevent future exposure. Related Article

5/11/2024: JPMorgan Chase Suffers Data Breach Affecting Personal Information of 451,809 Customers - New filings with the Office of the Maine Attorney General show the banking giant recently found a software issue that’s been active since August 26th, 2021. Related Article

5/9/2024: Ascension Health, largest Catholic hospital chain in the U.S., hit by cyberattack, disrupting patient care - In a press release on its website, Ascension said the attack had caused "disruption to clinical operations" as access to some systems had been interrupted. "Our care teams are trained for these kinds of disruptions and have initiated procedures to ensure patient care delivery continues to be safe and as minimally impacted as possible," it said. Related Article

4/12/2024: Updates

• Emergency services communication system in Kansas were down due to cyber incident

• Cyber incident at North Bay VacaValley hospital - Vacaville, California

• Ransomware at New Mexico Highlands University - Las Vegas, Nevada

• Cyber attack on Hernando County Government in Brooksville, Florida

• Cyber attack on Swinomish Casino & Lodge - Anacortes

1st Quarter Review: On average, the weekly number of cyberattacks per single organization stood at 1,308, which was the highest ever. The most affected industries are education and research, which were targeted by 2454 attacks per organization weekly on average. Government and military organizations were attacked 1692 times each week on average, the number for healthcare was at 1605.

03/31/2024: Updates

• March 31, 2024: Traverse City Area Public Schools - Cyber attack on a school district in Michigan

• March 29, 2024: East Baton Rouge Sheriff’s Office, Louisiana

• March 29, 2024:  Omni Hotels & Resorts - Dallas, Texas

• March 25, 2024: Ransomware at a city government in St. Cloud Florida

• March 14, 2024: Roku - more than 500,000 accounts impacted in cyberattack

• March 15, 2024: International Monetary Fund

• March 15, 2024: Fujitsu 

• March 18, 2024: Nations Direct Mortgage

• March 2024: Ransomware at Gilmer County government in Ellijay Georgia 

3/21/2024: DMV services disrupted nationwide by system outage - The American Association of Motor Vehicle Administrators said the outage was due to “a loss in cloud connectivity” Thursday. Multiple states reported disrupted services at department of motor vehicles offices Thursday in a "national outage" that halted license-related transactions due to "a loss in cloud connectivity." The American Association of Motor Vehicle Administrators, a nongovernmental group that provides software to DMV offices, said Thursday: “The network that connects motor vehicle agencies across the United States to each other and to various verification services experienced an outage due to a loss in cloud connectivity.” Related Link

3/20/2024 - President Biden warns states of cyberattack threat to water - The Biden administration warned governors Tuesday that “disabling” cyberattacks are targeting drinking water and wastewater systems throughout the country and urged them to help identify and address any vulnerabilities. Water and wastewater systems can represent an “attractive target” for cyberattacks because of their essential nature and frequent lack of “resources and technical capacity to adopt rigorous cybersecurity practices,” said Michael Regan, EPA Related Article

02/29/2024: Updates

• February 16, 2024: University in Oklahoma

• February 28, 2024: Lurie Children's Hospital

• February 26, 2024: Mechanical engineering company in the Netherlands

• February 2024: Insomniac Games

• Cyber attack on a school district Groton, Connecticut, Groton Public Schools 

02/7/2024: Chinese hackers have access to Key U.S. Infrastructure (& have had access for 5 years) which includes the water system, energy, communications, transportation and waste systems. Get Prepared Now! Hackers can shut down and infiltrate key infrastructure essential to our every day lives. Related Article

01/30/2024: Updates

• Fulton County, Georgia has been hit with a cyberattack - An unexpected outage has downed the county’s phone systems and brought certain online transactions to a halt, including those filing property tax, firearms and marriage licenses, the county said in a statement posted on its website. Most offices were also unable to accept phone calls, officials said, Bloomberg reports 

May 20, 2025 -  Spain experienced a significant mobile and internet service disruption today,  affecting major telecom providers nationwide. Starting around 5:00 a.m. local time, all major mobile networks—including Movistar, Orange, Vodafone, O2, and Digimobil—suffered widespread outages. Users across cities like Madrid, Barcelona, Seville, Valencia, and Bilbao reported complete signal loss, inability to make calls, send texts, or access mobile data. The disruption also impacted fixed-line internet and emergency services. In several regions, including Andalusia, Aragon, Extremadura, and the Basque Country, the national emergency number 112 was temporarily unavailable. Authorities issued alternative contact numbers to ensure continued emergency response. Telefónica, Spain’s largest telecom provider, attributed the outage to issues arising from a network upgrade. The company confirmed that all services had been restored by early afternoon, with only a few isolated cases still under review. This incident follows a major power blackout on April 28, which also disrupted communications and critical infrastructure across Spain and Portugal.

May 1, 2025 -  Cyberattacks hit UK retailers - Systems down and shelves empty. Marks and Spencer has seen its operations severely hampered by a cyber attack, the firm disclosed last week. Customers are still unable to place online orders and shelves have been left empty in some stores. The police are investigating. Meanwhile, the Co-op said on Wednesday it had shut down parts of its IT systems in response to hackers attempting to gain access. On Thursday, it emerged staff at the Co-op were being ordered to keep their cameras on during remote work meetings, and verify all attendees. Experts say that indicates the company suspects hackers may be lurking in calls. It is not known if the three incidents are connected. Toby Lewis, Head of Threat Analysis at cybersecurity firm Darktrace, said it was possible that the three incidents impacting M&S, the Co-op and Harrods were a coincidence. But he suggested two other possibilities: that all three retailers share a common supplier or technology that has been compromised and used as an entry point for hackers. Or the scale of the attack on M&S had prompted security teams at other retailers to look more closely at their safety logs and act on activity they would not have previously judged a risk. "It's a lesson again in the growing difficulty large organizations have in securing against threats in their supply chain, particularly as those threats grow in volume and sophistication," he said. It is believed the disruption at M&S was a ransomware attack. This is a type of malicious software used to scramble important data or files after gaining access to computer systems, essentially locking them away unless a ransom is paid. Security experts told the BBC on Tuesday a ransomware group which goes by the name "DragonForce" was behind the attack. The Co-op has not given any details of the nature of cyber attack made against it. The chair of Parliament's Business and Trade Committee, Liam Byrne, has written to Marks and Spencer's chief executive, Stuart Machin, requesting further information about M&S's cybersecurity defenses, and whether it had adhered to the guidance given by the NCSC.

6/23/2024: Switzerland Government Websites Still Under Cyberattacks - government websites hit by cyberattacks ahead of Ukraine summit. Various Swiss government websites and organizations involved in the Ukraine peace summit were the target of cyberattacks on Thursday morning, according to the National Cyber Security Centre (NCSC). Source

6/4/2024: Cyber attack affects major London hospitals - A major cyber attack on NHS hospitals has caused a number of procedures to be cancelled or changed in London after a ransomware attack struck major hospitals in the capital. Blood transfusions are particularly affected by the "critical incident", according to NHS trusts. Related Article 

5/6/2024: Sky News reports that China has hacked the UK Ministry of Defense - MPs will be told on Tuesday of a massive data breach involving the Ministry of Defense, targeting service personnel. Related Article Update: UK Defense Ministry's payroll system hacked, exposing names of current and former service members 

Friday, June 27, 2025: 

Trump's Executive Order: “Eliminating Information Silos”

What the Executive Order Does

• • On March 20, 2025, President Trump issued an executive order officially titled “Eliminating Information Silos” (also referred to as “Stopping Waste, Fraud, and Abuse by Eliminating Information Silos”) which:

  • Directs federal agency heads to grant specific officials “full and prompt access” to all unclassified data held across the government 

  • Aims to break down barriers between agencies and enable cross-departmental data sharing for efficiency or national security.

The Palantir Connection

• The administration is working with Palantir, the tech firm, to create a unified federal database, drawing data from agencies like Social Security, Health and Human Services, and the Pentagon 

Ron Paul’s Concerns

• Paul criticizes this push as a dangerous expansion of government surveillance:

• “A database consisting of all the information of American citizens…would be a major step in creating a total surveillance state” 

• He warns that this infrastructure paves the way for misuse—enabling authorities to track health records, tax filings, gun purchases, or political affiliations with minimal oversight 

• He notes the irony of conservatives endorsing it, even though they often oppose government overreach—a betrayal of civil-libertarian principles 

Broader Context & Libertarian Principle

• • On Reddit, he’s been echoed by users who compare this to a “Patriot Act 2.0”, warning:

  • “Years down the line we will begin to learn how the US government created comprehensive profiles of all citizens … and it will be used for some messed up stuff.” 

  • It fits a broader libertarian critique of the “surveillance-industrial complex”, where private firms like Palantir build the backbone for government data assembly and monitoring 

Make America Healthy Again (MAHA) Devices

• • CGMs (Continuous Glucose Monitors): Tiny sensors placed under the skin that continuously measure glucose in interstitial fluid, transmitting data to your phone or smartwatch. Originally designed for diabetics, but now being marketed to generally healthy individuals under the banner of MAHA. 

  • General Health Wearables: Includes smartwatches, rings, or bands that track heart rate, steps, sleep, temperature, and more. Robert  F. Kennedy Jr.’s HHS initiative aims to encourage Americans to adopt such devices for better health monitoring. 

  • Privacy & Surveillance Fear: Critics worry about sensitive health data being tracked, stored, and potentially monetized or used by insurers or government bodies. Comments on The Bulwark express concern that wearables could be “medical shackles” or spy devices enabling a health-surveillance state. Is this the beginning of the mark of the beast? 

Perspective Summary

• • Proponents: CGMs and wearables empower individuals to monitor health in real time—potentially preventing illness earlier. 

  • Skeptics: Benefits for healthy people are limited, and data privacy is a serious concern.

  • Ethical Risk: Widespread tracking could enable intrusive data collection—raising issues of surveillance and data control.

March 30, 2025 - Klaus Schwab wants to microchip you - first on your clothes, then under your skin, then in your brain. Source 

5/22/2024: Home insurance companies can fly drones over customers' homes unannounced to spot any defects and refuse to renew policies. Across the country homeowners have reported having policies suddenly dropped after insurers captured aerial images with drones and noticed problems. Related Article

4/20/2024: HR 7888: Legislation to renew Section 702 of the Foreign Intelligence Surveillance Act into law on today. Congress extended controversial warrantless surveillance law for two years. U.S. spy agencies regard the Foreign Intelligence Surveillance Act as one of their most valuable intelligence-collection tools, but critics say it intrudes on Americans’ privacy. Related Article

4/12/2024: Warrantless surveillance authority bill passed - The House has voted 273-147 to extend FISA Section 702 warrantless surveillance authority until 2026. The House voted to pass a bill Friday to reauthorize a powerful surveillance authority, apparently capping off a bruising months long debate over national security concerns and privacy protections for Americans. Americans will now be spied on without the need for a warrant, thanks to a push by Speaker Mike Johnson and White House. Related Article 

3/28/2024: NYC Putting Body Scanners In Subway in 90 Days - New York City plans to test weapons detection technology in the subway system in response to an increase in transit crimes, the mayor announced Thursday. The announcement comes after the city surged 1,000 officers and the state deployed National Guardsmen into the subway system in recent weeks as part of security measures after several high-profile crimes. Related Article

April 4, 2025 - Trump extends TikTok sale deadline by 75 days