Major Cyber Attacks Target Retailers and Critical Infrastructure

Recent cyber incidents have underscored the growing threat to organizations worldwide. Notable attacks have been recorded against luxury retailer Louis Vuitton, UK retail giant Co-op, and Thailand’s Ministry of Labor, among others. These breaches highlight vulnerabilities across various sectors, impacting millions of customers and critical infrastructure.

Significant Attacks and Breaches

Louis Vuitton has confirmed a cyber-attack that compromised the personal data of customers from several countries, including the UK, South Korea, Turkey, Italy, and Sweden. The breach, attributed to the ShinyHunters extortion group, exposed sensitive client information but did not include payment details. The attack was linked to unauthorized access through a third-party vendor’s database.

In another incident, Co-op disclosed a cyber-attack impacting approximately 6.5 million customers. This breach followed a major system shutdown in April that caused food shortages across its stores. Although no financial information was compromised, customer contact details were exposed. The Scattered Spider threat group, known for using DragonForce ransomware, is suspected to be behind this intrusion.

The NovaBev Group, a prominent Russian spirits producer, faced a ransomware attack that disrupted critical IT infrastructure. The incident severely affected operations across more than 2,000 stores, with sophisticated techniques reportedly bypassing existing security measures. As of now, no group has taken responsibility for this attack.

Thailand’s Ministry of Labor also fell victim to a cyber-attack, resulting in the defacement of its website and the alleged theft of 300GB of sensitive data. The attack reportedly encrypted 2,000 laptops and dozens of servers, risking the exposure of citizen data and classified documents. The Devman ransomware group has claimed responsibility, demanding a ransom of $15 million.

In Singapore, critical infrastructure experienced targeted cyber-attacks aimed at systems delivering essential services, particularly in defense, technology, and telecommunications. These ongoing threats are thought to be linked to the China-affiliated espionage group UNC3886, with potentially significant implications for national security.

Emerging Vulnerabilities and Threat Insights

Recent findings from Check Point Research unveiled a critical vulnerability in Microsoft SharePoint, referred to as “ToolShell” (CVE-2025-53770). This vulnerability allows unauthorized access and exploitation attempts have already been detected. The research highlighted that threats were particularly prevalent in government and telecommunications sectors across North America and Western Europe.

Additionally, a high-severity flaw in Google Chrome (CVE-2025-6558) has been actively exploited, allowing attackers to escape the browser’s sandbox, posing risks of arbitrary code execution. The flaw affects versions prior to 138.0.7204.157 and has been addressed with a patch.

In a broader context, Check Point Research reported a 21% year-over-year increase in global weekly cyber-attacks per organization for Q2 2025, totaling 1,984 attacks. The education sector has emerged as the most targeted, with Europe experiencing the highest growth in attacks, at 22%. Ransomware incidents alone totaled around 1,600, primarily affecting business services, manufacturing, and construction.

The report also revealed new tactics employed by threat actors, including the misuse of Microsoft Teams calls to impersonate IT support and deliver malware. This evolving landscape underscores the critical need for continued vigilance and robust cybersecurity measures across all sectors.

As organizations grapple with these threats, the importance of proactive security strategies and timely updates cannot be overstated. The incidents serve as a stark reminder of the vulnerabilities that exist in today’s interconnected world.