From a flurry of attacks targeting UK retailers to campaigns corralling end-of-life routers into botnets, it’s a wrap on another month filled with impactful cybersecurity news
30 May 2025
It’s that time of month again when ESET Chief Security Evangelist Tony Anscombe offers his take on some of the most impactful cybersecurity news of the past 30 or so days. Here’s a selection of what stood out to him in May 2025:
- a warning from Google that Scattered Spider, the hacking gang that orchestrated recent attacks at high-street UK retailers, is now turning their sights to US companies,
- earlier in May, Marks & Spencer confirmed that some customer data was stolen in the flurry of attacks on UK retailers, which had caused M&S to stop taking online orders,
- cyber-insurance provider Coalition announced that business email compromise (BEC) attacks and fund transfer fraud (FTF) accounted for 60% of the claims last year while ransomware remained “the most costly and disruptive type of cyberattack”,
- the FBI warning about malware that targets end-of-life routers in a bid to corral them into a botnet,
- Coinbase expects the bill from a recent cyberattack to reach up to US$400 million.
Don’t forget to check out the April 2025 edition of Tony’s monthly security news roundup for more insights.
