In September 2025, cyber attackers struck across many sectors, highlighting the growing sophistication and scope of threats. Major incidents included ransomware campaigns targeting public and private institutions — for instance, Pennsylvania’s Attorney General’s office was taken offline for two weeks, and Collins Aerospace’s airport check-in system disruption led to widespread flight delays. Large corporations such as Harrods, Asahi Group, and automaker Stellantis also experienced breaches or supply-chain exploits, exposing user data or disrupting operations. Insider threats and supply chain attacks exacerbated the situation, as seen when a former employee at FinWise exposed hundreds of thousands of customer records.

Beyond these headline breaches, attackers deployed novel malware and zero-day exploits to expand their reach. The “Shai-Hulud” worm compromised open source ecosystems, while new ransomware variants like Obscura and HybridPetya exploited firmware vulnerabilities and UEFI boot processes. Countless companies were affected by the Salesloft/Drift supply chain attack, leading to the exposure of over 1.5 billion Salesforce records through compromised OAuth tokens. To stay ahead, organizations are increasingly urged to adopt proactive defenses, including threat modeling, regular patching, incident response readiness, and layered security architectures.

‍

Source: https://www.cm-alliance.com/cybersecurity-blog/sept-2025-biggest-cyber-attacks-ransomware-attacks-and-data-breaches