Cyber Daily Report

None--securityboulevard.com
published date: 2025-08-29 00:00:00 UTC

None

August 2025 witnessed a series of data breaches across industries, exposing sensitive information and shaking customer trust. From global technology giants to airlines, credit bureaus, and staffing companies, no sector was spared. These incidents highlight how attackers are refining their methods and exploiting weak links in third-party systems, supply chains, and enterprise software. Below is a detailed breakdown of top 7 data breaches in August 2025 which were disclosed in August 2025.<h2><img fetchpriority="high" decoding="async" class="aligncenter wp-image-10968 size-full" src="https://strobes.co/wp-content/uploads/2025/08/Aug-Data-Breaches-min-1080x1350-1.jpg" alt="Data Breaches in August 2025" width="1080" height="1350" srcset="https://strobes.co/wp-content/uploads/2025/08/Aug-Data-Breaches-min-1080x1350-1.jpg 1080w, https://strobes.co/wp-content/uploads/2025/08/Aug-Data-Breaches-min-1080x1350-1-240x300.jpg 240w, https://strobes.co/wp-content/uploads/2025/08/Aug-Data-Breaches-min-1080x1350-1-819x1024.jpg 819w, https://strobes.co/wp-content/uploads/2025/08/Aug-Data-Breaches-min-1080x1350-1-768x960.jpg 768w" sizes="(max-width: 1080px) 100vw, 1080px"></h2><h2>1. Google’s Salesforce Breach</h2><h3>Incident Overview</h3>In August, Google confirmed that its Salesforce-hosted customer database had been breached by the well-known hacking group ShinyHunters. Investigators later revealed the campaign began in June 2025 but went undetected for weeks. The breach was part of a larger attack wave targeting Salesforce CRM environments across multiple enterprises.<h3>What Data Was Exposed</h3>The stolen information mainly comprised business contact records, and they included:<div class="code-block code-block-12 ai-track" data-ai="WzEyLCIiLCJCbG9jayAxMiIsIiIsMV0=" style="margin: 8px 0; clear: both;"> <style> .ai-rotate {position: relative;} .ai-rotate-hidden {visibility: hidden;} .ai-rotate-hidden-2 {position: absolute; top: 0; left: 0; width: 100%; height: 100%;} .ai-list-data, .ai-ip-data, .ai-filter-check, .ai-fallback, .ai-list-block, .ai-list-block-ip, .ai-list-block-filter {visibility: hidden; position: absolute; width: 50%; height: 1px; top: -1000px; z-index: -9999; margin: 0px!important;} .ai-list-data, .ai-ip-data, .ai-filter-check, .ai-fallback {min-width: 1px;} </style> <div class="ai-rotate ai-unprocessed ai-timed-rotation ai-12-1" data-info="WyIxMi0xIiwxXQ==" style="position: relative;"> <div class="ai-rotate-option" style="visibility: hidden;" data-index="1" data-name="VGVjaHN0cm9uZyBHYW5nIFlvdXR1YmU=" data-time="MTA="> <div class="custom-ad"> <div style="margin: auto; text-align: center;"><a href="https://youtu.be/Fojn5NFwaw8" target="_blank"><img src="https://securityboulevard.com/wp-content/uploads/2024/12/Techstrong-Gang-Youtube-PodcastV2-770.png" alt="Techstrong Gang Youtube"></a></div> <div class="clear-custom-ad"></div> </div></div> </div> </div><ul> <li style="font-weight: 400;" aria-level="1">Names </li> <li style="font-weight: 400;" aria-level="1">Email addresses </li> <li style="font-weight: 400;" aria-level="1">Phone numbers </li> </ul>Financial data and credentials were not included in the disclosure, but even contact information (e.g. contact details) can be used in phishing, impersonation, and social engineering attacks.<h3>Number of Affected Individuals</h3>Google has not published exact numbers, but reports estimate millions of contacts were exposed.<div class="code-block code-block-15" style="margin: 8px 0; clear: both;"> <script async src="https://pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2091799172090865" crossorigin="anonymous" type="d51aef63e83f5252b4c551c9-text/javascript"></script>  <ins class="adsbygoogle" style="display:block" data-ad-client="ca-pub-2091799172090865" data-ad-slot="8723094367" data-ad-format="auto" data-full-width-responsive="true"></ins> <script type="d51aef63e83f5252b4c551c9-text/javascript"> (adsbygoogle = window.adsbygoogle || []).push({}); </script></div><h3>Business Impact</h3>The hack called into question the safety of SaaS ecosystems and risks of cloud dependency. In the case of a company of this magnitude as Google, the image of weak vendor controls can affect the business relationship and regulatory oversight.<h3>Company Response</h3>In early August, Google started to alert affected business customers and collaborated with Salesforce to limit the exposure. The company wrote that it is improving SaaS monitoring and strengthening vendor-specific security checks.<h3>Key Lesson</h3>Even highly resourced enterprises are not immune when third-party SaaS platforms are compromised. Stronger vendor governance, continuous monitoring, and proactive breach detection are crucial in today’s interconnected environments. Sources:<a href="https://www.brightdefense.com/resources/recent-data-breaches/" rel="nofollow noopener"> BrightDefense</a>,<a href="https://news.trendmicro.com/2025/08/26/google-data-breach-gmail/" rel="nofollow noopener"> TrendMicro</a>,<a href="https://economictimes.indiatimes.com/news/international/global-trends/us-news-2-5-billion-gmail-accounts-warned-scammers-using-us-650-area-code-to-trick-millions-what-should-you-do/articleshow/123473376.cms" rel="nofollow noopener"> Economic Times</a><h2>2. Air France and KLM Data Breach</h2><h3>Incident Overview</h3>On August 7, 2025, Air France and KLM announced a data breach that was associated with a third-party customer support system. The attackers used the vendor system to gain access to passenger records and information in the loyalty program.<h3>What Data Was Exposed</h3><ul> <li style="font-weight: 400;" aria-level="1">Passenger names </li> <li style="font-weight: 400;" aria-level="1">Contact information (emails, phone numbers) </li> <li style="font-weight: 400;" aria-level="1">Flying Blue loyalty numbers </li> </ul>While no payment card or passport data was reported, loyalty points are frequently targeted by fraud rings and sold in underground markets.<h3>Number of Affected Individuals</h3>The airlines have not disclosed exact numbers, but industry reports suggest the breach could cover hundreds of thousands of travelers.<h3>Business Impact</h3>For airlines, breaches create operational disruption and reputational damage. Customer trust is especially fragile in travel, where personal details are closely linked to identity verification, booking, and financial accounts.<h3>Company Response</h3>Both airlines assured customers that they had locked down the affected vendor system and initiated an investigation. They also rolled out alerts to help customers track suspicious account activity.<h3>Key Lesson</h3>Airlines rely heavily on third-party systems for ticketing, loyalty programs, and customer service. Without rigorous vendor risk management, these integrations can become entry points for attackers. Source: <a href="https://www.forbes.com/sites/suzannerowankelleher/2025/08/08/5-airlines-hacked-air-france-klm-latest-victims/" rel="nofollow noopener">Forbes</a><h2>3. Workday Data Breach</h2><h3>Incident Overview</h3>Workday, a global provider of HR and finance software, announced on August 18, 2025 that it too was targeted in the Salesforce exploitation campaign. Attackers leveraged weaknesses in Salesforce integrations to extract data.<h3>What Data Was Exposed</h3><ul> <li style="font-weight: 400;" aria-level="1">Names </li> <li style="font-weight: 400;" aria-level="1">Email addresses </li> <li style="font-weight: 400;" aria-level="1">Business phone numbers of Workday contacts </li> </ul>While this breach did not involve employee HR records, exposing professional contact information puts enterprises at risk of targeted spear-phishing attacks.<h3>Number of Affected Individuals</h3>The company has not revealed specific numbers, but analysts suggest the exposure is significant given Workday’s global customer base.<h3>Business Impact</h3>As an HR SaaS leader, Workday faces heightened scrutiny when its own systems or integrations are exploited. The incident risks undermining confidence in cloud-based HR solutions.<h3>Company Response</h3>Workday confirmed the breach but emphasized that no payroll or HR data was impacted. The company said it is strengthening its monitoring of third-party integrations and expanding threat detection.<h3>Key Lesson</h3>This incident reinforces the domino effect of SaaS supply chain risks. When a platform as widely used as Salesforce is compromised, it cascades across numerous organizations. Sources: <a href="https://www.websiteplanet.com/news/workday-data-breach-2025/" rel="nofollow noopener">Website Planet</a><h2>4. TransUnion Data Breach</h2><h3>Incident Overview</h3>On August 28, 2025, credit reporting agency TransUnion revealed a breach that started in July and was traced to a third-party application compromise. The attackers accessed highly sensitive personal records of millions of individuals.<h3>What Data Was Exposed</h3><ul> <li style="font-weight: 400;" aria-level="1">Full names </li> <li style="font-weight: 400;" aria-level="1">Personally identifiable information (PII) </li> <li style="font-weight: 400;" aria-level="1">Social Security Numbers </li> </ul><h3>Number of Affected Individuals</h3>The breach impacted 4.4 million people, making it one of the largest exposures of August.<h3>Business Impact</h3>Credit bureaus hold vast databases of identity information used for financial verification, loans, and credit checks. A breach of this nature can lead to identity theft, fraud, and regulatory investigations, significantly harming brand credibility.<h3>Company Response</h3>TransUnion confirmed the breach and is working with regulators, offering credit monitoring and identity theft protection services to affected individuals.<h3>Key Lesson</h3>Organizations that store critical identity data must maintain continuous third-party risk assessments, robust encryption, and real-time exposure monitoring. Source:<a href="https://therecord.media/transunion-data-breach-4-million" rel="nofollow noopener"> The Record</a><h2>5. Connex Credit Union Data Breach</h2><h3>Incident Overview</h3>On August 11, 2025, Connex Credit Union in Connecticut disclosed a breach that impacted approximately 172,000 customers.<h3>What Data Was Exposed</h3>The bank confirmed that customer personal data was exposed, though details on the exact categories (financial vs. PII) remain under review.<h3>Number of Affected Individuals</h3>About 172,000 customers were impacted.<h3>Business Impact</h3>Smaller financial institutions often lack the depth of cybersecurity resources available to large banks. As a result, breaches of this scale can create outsized reputational and compliance challenges, particularly around FDIC and state banking regulations.<h3>Company Response</h3>Connex confirmed the breach to regulators and began notifying customers. An internal review and security upgrades are underway.<h3>Key Lesson</h3>Even regional banks are attractive targets. Investment in continuous vulnerability management, penetration testing, and customer notification planning is essential. Source: <a href="https://www.bleepingcomputer.com/news/security/connex-credit-union-discloses-data-breach-impacting-172-000-people/" rel="nofollow noopener">Bleepingcomputer</a><h2>6. Manpower RansomHub Attack</h2><h3>Incident Overview</h3>On August 12, 2025, staffing giant Manpower confirmed it was attacked by the RansomHub ransomware group. The attackers exfiltrated a massive 500GB of data before demanding a ransom.<h3>What Data Was Exposed</h3><ul> <li style="font-weight: 400;" aria-level="1">Corporate files </li> <li style="font-weight: 400;" aria-level="1">Employee and candidate records </li> <li style="font-weight: 400;" aria-level="1">Sensitive personal information </li> </ul><h3>Number of Affected Individuals</h3>The breach impacted 144,189 individuals.<h3>Business Impact</h3>The attack disrupted talent management operations and raised concerns among corporate clients who depend on Manpower for staffing services. Beyond financial loss, the reputational hit may affect long-term client confidence.<h3>Company Response</h3>Manpower confirmed the attack, engaged incident response teams, and is working with regulators. However, leaked data on the dark web suggests that extortion attempts may continue.<h3>Key Lesson</h3>The case demonstrates the evolution of ransomware toward double-extortion tactics, where both encryption and data leaks maximize pressure on victims.Source: <a href="https://www.bleepingcomputer.com/news/security/manpower-staffing-agency-discloses-data-breach-after-attack-claimed-by-ransomhub/" rel="nofollow noopener">Bleepingcomputer</a><h2>7. Orange SA Data Leak</h2><h3>Incident Overview</h3>French telecom provider Orange SA was hacked in early August by the ransomware group Warlock. Attackers stole around 4GB of sensitive business data and published it on the dark web.<h3>What Data Was Exposed</h3><ul> <li style="font-weight: 400;" aria-level="1">Confidential business user information </li> <li style="font-weight: 400;" aria-level="1">Internal corporate documents </li> </ul><h3>Number of Affected Individuals</h3>Exact counts remain unclear, but leaked datasets suggest significant exposure among Orange’s enterprise clients.<h3>Business Impact</h3>Telecom providers are high-value targets due to their role in critical infrastructure. Public leaks of corporate data can harm relationships with business customers, create compliance issues, and erode trust.<h3>Company Response</h3>Orange confirmed the incident and said it is cooperating with French authorities. The company also initiated additional monitoring to identify misuse of leaked data.<h3>Key Lesson</h3>Telecom firms must prioritize ransomware resilience, vendor oversight, and rapid incident disclosure to protect business users and maintain trust. Source:<a href="https://timesofindia.indiatimes.com/technology/tech-news/orange-sa-hacked-user-data-released-on-dark-web-what-one-of-worlds-leading-telecom-companies-has-to-say/articleshow/123482151.cms" rel="nofollow noopener"> Times of India</a><h2>Bottomline</h2>The August 2025 data breaches confirm recurring security challenges:<ul> <li style="font-weight: 400;" aria-level="1">Supply chain compromises (Google, Workday, Air France/KLM) </li> <li style="font-weight: 400;" aria-level="1">Critical data theft at scale (TransUnion, Connex Credit Union) </li> <li style="font-weight: 400;" aria-level="1">Ransomware with public leaks (Manpower, Orange SA) </li> </ul>Organizations must move from reactive security to continuous threat exposure management (CTEM), supported by risk-based vulnerability management (RBVM). Strobes Security enables enterprises to:<ul> <li style="font-weight: 400;" aria-level="1">Continuously identify exposures across SaaS, cloud, and on-prem environments </li> <li style="font-weight: 400;" aria-level="1">Prioritize based on business risk, not just CVSS scores </li> <li style="font-weight: 400;" aria-level="1">Automate workflows for faster remediation </li> <li style="font-weight: 400;" aria-level="1">Validate exposures through Pentesting as a Service (PTaaS) </li> </ul><a href="https://strobes.co/get-started/"> Schedule a demo with Strobes</a> to see how our unified platform can reduce your breach risk.The post <a rel="nofollow" href="https://strobes.co/blog/top-7-data-breaches-in-august-2025-that-made-headlines/">Top 7 Data Breaches in August 2025 That Made Headlines</a> appeared first on <a rel="nofollow" href="https://strobes.co/">Strobes Security</a>.<div class="spu-placeholder" style="display:none"></div><div class="addtoany_share_save_container addtoany_content addtoany_content_bottom"><div class="a2a_kit a2a_kit_size_20 addtoany_list" data-a2a-url="https://securityboulevard.com/2025/08/top-7-data-breaches-in-august-2025-that-made-headlines/" data-a2a-title="Top 7 Data Breaches in August 2025 That Made Headlines"><a class="a2a_button_twitter" href="https://www.addtoany.com/add_to/twitter?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2025%2F08%2Ftop-7-data-breaches-in-august-2025-that-made-headlines%2F&linkname=Top%207%20Data%20Breaches%20in%20August%202025%20That%20Made%20Headlines" title="Twitter" rel="nofollow noopener" target="_blank"></a><a class="a2a_button_linkedin" href="https://www.addtoany.com/add_to/linkedin?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2025%2F08%2Ftop-7-data-breaches-in-august-2025-that-made-headlines%2F&linkname=Top%207%20Data%20Breaches%20in%20August%202025%20That%20Made%20Headlines" title="LinkedIn" rel="nofollow noopener" target="_blank"></a><a class="a2a_button_facebook" href="https://www.addtoany.com/add_to/facebook?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2025%2F08%2Ftop-7-data-breaches-in-august-2025-that-made-headlines%2F&linkname=Top%207%20Data%20Breaches%20in%20August%202025%20That%20Made%20Headlines" title="Facebook" rel="nofollow noopener" target="_blank"></a><a class="a2a_button_reddit" href="https://www.addtoany.com/add_to/reddit?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2025%2F08%2Ftop-7-data-breaches-in-august-2025-that-made-headlines%2F&linkname=Top%207%20Data%20Breaches%20in%20August%202025%20That%20Made%20Headlines" title="Reddit" rel="nofollow noopener" target="_blank"></a><a class="a2a_button_email" href="https://www.addtoany.com/add_to/email?linkurl=https%3A%2F%2Fsecurityboulevard.com%2F2025%2F08%2Ftop-7-data-breaches-in-august-2025-that-made-headlines%2F&linkname=Top%207%20Data%20Breaches%20in%20August%202025%20That%20Made%20Headlines" title="Email" rel="nofollow noopener" target="_blank"></a><a class="a2a_dd addtoany_share_save addtoany_share" href="https://www.addtoany.com/share"></a></div></div>*** This is a Security Bloggers Network syndicated blog from <a href="https://strobes.co">Strobes Security</a> authored by <a href="https://securityboulevard.com/author/0/" title="Read other posts by Likhil Chekuri">Likhil Chekuri</a>. Read the original post at: <a href="https://strobes.co/blog/top-7-data-breaches-in-august-2025-that-made-headlines/">https://strobes.co/blog/top-7-data-breaches-in-august-2025-that-made-headlines/</a>