Security-Stop Press : Worst Data Breaches of 2025 Show Cyber Attacks Are About Disruption
31 December 2025The most serious cyber incidents of 2025 showed a clear move away from data theft towards operational disruption and economic damage.
Globally, attackers exploited trusted platforms and supply chains, with US federal systems breached repeatedly and the Clop group stealing sensitive data by abusing an unknown flaw in Oracle E Business. More than one billion records were also accessed from Salesforce environments after hackers compromised connected third party platforms rather than Salesforce itself.
In the UK, disruption had immediate consequences. Cyber attacks on Marks & Spencer and Co-op exposed customer data and knocked systems offline, with Co-op later confirming all 6.5 million members were affected. The Cyber Monitoring Centre estimated the retail attacks caused up to £440 million in economic damage.
The most severe UK case involved Jaguar Land Rover, where a cyberattack halted production for months and destabilised its supply chain, prompting a £1.5 billion government guarantee to protect jobs and suppliers.
For businesses, the lesson from 2025 is that resilience is critical. Guidance from the National Cyber Security Centre emphasises patching, limiting third party access, tested backups, and rehearsed incident response, because fast recovery is now the key defence against disruptive attacks.
