Cybercrime doesn’t take a break, and February was no exception. This month saw billions stolen, personal data exposed, and major security flaws exploited—proving that no industry is off-limits. From nation-state hackers targeting crypto exchanges to massive data leaks affecting millions, these incidents highlight the real-world consequences of weak security. Here’s a look at February’s most significant cyber attacks and what they mean for businesses and individuals alike.

North Korean Hackers Steal $1.5 Billion in Historic Crypto Heist

Dubai-based cryptocurrency exchange Bybit suffered a massive breach, losing $1.5 billion in Ethereum to hackers. The FBI attributes the attack to North Korea’s Lazarus Group, known for funding Pyongyang’s missile programs through cybercrime. Bybit’s CEO, Ben Zhou, assured customers of full reimbursement and confirmed that the exchange holds $20 billion in assets to cover losses. A 10% bounty is being offered for information leading to fund recovery. (Source: The Guardian)

Massive Data Breach at DISA Exposes Personal Information of Over 3 Million Individuals

DISA Global Solutions, a major U.S. employee screening company, suffered a breach affecting over 3 million individuals. Hackers gained access to Social Security numbers, medical data, and other sensitive information. The company is now working with law enforcement to assess the full impact. This breach highlights the growing risk for businesses handling large amounts of private data. (Source: TechCrunch)

Massive Botnet Exploits Microsoft 365's Basic Auth, Bypasses MFA Protections

A botnet of over 130,000 compromised devices is executing password-spray attacks on Microsoft 365 accounts, exploiting Basic Authentication to bypass Multi-Factor Authentication (MFA). These attacks allow unauthorized access without triggering security alerts. SecurityScorecard warns that stolen credentials from infostealer malware are fueling the attack. Organizations are urged to disable Basic Auth and monitor non-interactive sign-ins to prevent breaches. (Source: Bleeping Computer)

Ticketek Warns: Fake Tickets Flooding from Unauthorized Resellers

Ticketek has issued an urgent warning about a surge in fake tickets being sold by unauthorized resellers. Many fans have arrived at concerts only to be denied entry after purchasing fraudulent tickets. The company advises customers to buy only from official sources to avoid scams and financial loss. Authorities are working to shut down fraudulent ticketing operations. (Source: News.com.au)

$3.5M Settlement: Virginia Mason Medical Center's Data Breach Payout—No Proof Needed

Virginia Mason Medical Center has agreed to pay $3.5 million after allegations of unauthorized data sharing with Google and Facebook. Patients who accessed the MyVirginiaMason portal between 2015 and 2023 may be eligible for compensation—no proof required. As part of the settlement, the medical center will discontinue certain tracking technologies and establish a Web Governance Committee to oversee future data handling. (Source: The Sun)

Massive IoT Data Breach Exposes 2.7 Billion Records, Including Wi-Fi Passwords

A huge IoT data breach exposed 2.7 billion records, revealing Wi-Fi network names and passwords. These credentials could allow cybercriminals to infiltrate home and corporate networks, leading to further attacks. Experts warn that IoT security needs urgent improvement to prevent these kinds of widespread data exposures. (Source: Infosecurity Magazine)

Stay Ahead of Cyber Threats with Strong Cybersecurity

Many of these breaches happen due to poor security hygiene, weak defenses, and overlooked vulnerabilities. Organizations must proactively strengthen their cybersecurity measures to stay ahead of attackers. Scademy provides expert-led cybersecurity training that equips teams with the knowledge to identify, prevent, and mitigate threats before they cause damage. Don’t wait until an attack happens, build a stronger defense today.

‍