Threatsploit Adversary Report October 2025

The cyber threat landscape continues to evolve rapidly, with attackers shifting focus from exploiting software flaws to abusing trust, identity, supply chains, and AI-driven systems. Recent incidents show how a single weakness can escalate into large-scale disruption across sectors and regions.

Key Breaches at a Glance

1. Healthcare Services Group Breach
Exposure of more than 624,000 identities reinforced healthcare as a prime target for high-impact data theft.

2. Miljödata Ransomware Incident
A supplier-focused ransomware attack disrupted services across 200+ Swedish municipalities, highlighting ecosystem-wide risk.

3. PromptLock AI Ransomware
AI-driven ransomware demonstrated cross-platform encryption across Windows, macOS, and Linux environments.

4. Storm-0501 Cloud Attacks
Weak identity controls in Azure environments enabled backup destruction and extortion through trusted collaboration tools.

5. Shadow IT Exposure
Unsecured Git repositories and exposed admin panels continued to create hidden, unmanaged attack paths.

Top Critical CVEs

Actively exploited vulnerabilities in Cisco ASA firewalls, Google Chrome’s V8 engine, OnePlus OxygenOS SMS handling, and Zenitel ICX systems underscore persistent risks from unpatched network, browser, mobile, and infrastructure components.