Global companies are grappling with a surge in cyber and ransomware attacks, with increasingly sophisticated threat actors disrupting operations and compromising sensitive data across diverse sectors — from healthcare and financial services to retail and regulatory bodies.
Here is a list of companies and regulators across the US, UK, and European Union that have been affected by or reported cyber incidents this year.
| Company | Month | Region | Impact |
|---|---|---|---|
| Smiths Group (SMIN.L) | January | UK | Cybersecurity incident involved unauthorised access to its systems. |
| Big Cheese Studio (BCSP.WA) | January | Poland | Hackers accessed game code systems and personal data of employees. Ransom of 100,000 zlotys in cryptocurrency demanded. |
| MGM Resorts International (MGM.N) | January | USA | $45 million settlement over two data breaches in 2019 and 2023, affecting millions of customers. |
| Clorox | February | USA | Fully restored distribution lost during 2023 cyber attack. |
| Eckert & Ziegler (EUZG.DE) | February | Germany | Cyber attack on parts of IT systems; production largely unaffected. |
| Marks & Spencer (MKS.L) | April | UK | Online orders halted for over 3 weeks, causing a £300 million profit hit. |
| Hertz (HTZ.O) | April | USA | User data stolen via breach involving a vendor. |
| DaVita (DVA.N) | April | USA | Ransomware encrypted parts of network; operations disrupted. |
| OCC (Office of the Comptroller of Currency) | April | USA | Emails of executives hacked due to longstanding vulnerabilities. |
| Emera Inc (EMA.TO) & Nova Scotia Power | April | Canada (listed USA) | Unauthorized access to network and servers; customer data stolen. |
| National Labor Relations Board (NLRB) | April | USA | Alleged cybersecurity breach linked to Elon Musk's DOGE team, involving sensitive case files. |
| Christian Dior Couture (LVMH) | May | France | Cyber attack exposed some customer data. |
| Co-op Group (42TE.L) | May | UK | Hackers accessed and extracted customer data. |
| Harrods | May | UK | Hackers attempted to break into systems. |
| Legal Aid Agency | May | UK | Personal and criminal record data since 2010 accessed and stolen. |
| Adidas (ADSGn.DE) | May | Germany | External party accessed consumer data via third-party provider; no passwords or credit card data leaked. |
| Victoria's Secret (VSCO.N) | May | USA | Suspended most website and in-store functionality to prevent unauthorized network access. |
| Telefonica (TEF.MC) | June | Spain | Investigating potential cyberattack after data of 1 million Peru customers was leaked online. |
| Richemont (CFR.S) | June | Switzerland | Cartier website hacked; some client data stolen. |
| Salesforce (CRM.N) | June | USA | Hackers tricked employees into installing a fake version of Salesforce's Data Loader app. |
| HMRC (UK Tax Office) | June | UK | Unauthorized access to some customer accounts to fraudulently claim money. |
| United Natural Foods (UNFI.N) | June | USA | Took systems offline after discovering unauthorized activity on internal networks. |
| Philadelphia Insurance Companies | June | USA | Staff offline for 3+ days following a major ransomware attack. |
| Erie Indemnity Company (ERIE.O) | June | USA | Experienced unusual network activity and system outages. |
| Washington Post | June | USA | Investigating cyberattack on journalist email accounts. |
| UBS (UBSG.S) and Pictet | June | Switzerland | Data leak did not impact clients; report claims UBS workers’ data was affected. |
| Aflac (AFL.N) | June | USA | Cybersecurity incident possibly compromised personal customer information. |
Let me know if you’d like this table exported as a CSV, Excel file, or visual infographic.
