Ransomware attacks have disrupted several hospitals in the UK’s National Health Service (NHS). The Russian-affiliated group, INC Ransom, has claimed responsibility, saying it stole sensitive patient information. The affair follows a similar attack on the NHS in 2017 and has led to calls for a strengthening of cybersecurity measures across the healthcare sector.

Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457)
A suspected Chinese advanced persistent threat (APT) group exploited CVE-2025-22457, a previously unexploitable buffer overflow bug, to compromise devices running Ivanti Connect Secure (ICS) and