The Week in Breach

Nearly 1 billion user records exposed as Canadian Tire, ManoMano and CarGurus breaches dominate this week’s headlines.

This week, a breach of France’s bank registry exposed the data of 1.2 million users while an attack on the blockchain fintech Figure affected 1 million customers.

This week, an X outage disrupts users worldwide as Operation DoppelBrand targets Fortune 500 companies.

This week, an infostealer campaign targets macOS users worldwide as cyber espionage hits governments in 37 countries.

This week saw trusted tools targeted, including a Notepad++ supply chain attack and an actively exploited Microsoft Office vulnerability.

This week, IDHS confirmed a data breach exposing sensitive records of 700,000 individuals, while a hacker is facing trial for breaking into U.S. Supreme Court systems.

The lack of MFA exposes 50+ multinational companies, the CIRO breach affects 750k individuals and a health care breach exposes 145k patients.

The European Space Agency confirmed a data exposure, Manage My Health reported a health care breach and Ledger disclosed a third-party incident.

This Week in Breach edition covers major 2025 cyber incidents, from the Salesforce breach to the costliest cyberattack in U.K. history.