Summer of 2025 is coming to a close, but cybersecurity news has shown no sign of slowing down yet, with more developments across different industries and regions. Several public agencies and businesses alike were beset by hackers and cybercriminals this month, while major bugs appeared throughout different software systems that have potentially put the data of millions at risk. This latest recap by SWK Technologies covers these top stories and more, providing you with essential insights into current threat patterns and security vulnerabilities that could impact your business:
Pennsylvania Attorney General’s Office Hit by Cyber Attack
The Office of the Pennsylvania Attorney General announced to the public via social media that several of their systems and services were shut down after an attacker breached their network. Though it is still unconfirmed at the time of this writing, experts have suggested that the hackers may have exploited the Citrix NetScaler vulnerability SWK reported on in July 2025 previously, with the PA AG’s Office having worked on phasing out NetScaler applications in their technology stack around the time the breach occurred.
Workday HR Software Warns Customers of Salesforce Breach
A recent targeted phishing campaign suspected of being tied to the ShinyHunters hacker collective successfully breached the Salesforce data of several major technology enterprises, including Google, Cisco and Workday. The latter sent a warning to customers on August 15 regarding the breach, confirming that some of their CRM data was accessed by external parties but assuring everyone that their own servers hosting any client’s HR and payroll data were unaffected.
According to Google’s own security researchers, the campaign targeted employees at different businesses using social engineering techniques to trick into providing access credentials to breach Salesforce. They then leveraged an app within the CRM called Data Loader to extract information from the system’s database, typically prompting the victim users to log into the application and enter a code they provided to obtain internal access.
Healthcare Service Company Sued Over Late Reported Breach
Fundamental Administrative Services, LLC, which provides outsourced administrative and other office support functions to long-care and nursing facilities across the U.S., released a statement in August 2025 confirming they had experienced unauthorized access within their network. The company investigated “suspicious activity” they ostensibly became aware of in January 2025 and found evidence of files being copied going back to October 2024, and were taking steps as the announcement to notify those affected. However, several law firms have also since announced their intent to investigate FAS in preparation for a lawsuit for potential negligence towards their customers as a result of the breach.
California to Add New Audit Requirement to CCPA
The California Privacy Protection Agency revealed that they will be implementing new audit requirements as part of the CCPA (California Consumer Privacy Act), which will go into effect starting October 2025 if approved by the Secretary of State. The added rule will require that any business collecting and processing personal data from consumers in CA to undergo annual cybersecurity audits or risk being fined. This regulation currently applies to any business with over $26M in revenue and that has processed personal information of more than 250,000 consumers – or “sensitive personal information” of more than 50,000 – though exact numbers vary according to specific stipulations and the benchmarks will be subject to change every year.
Audits will need to be conducted by a qualified third-party organization and assess 18 separate cybersecurity controls. Implementation will follow a phased timeline based on business size, with larger organizations required to complete their first audit by April 1, 2028.
Microsoft Releases Patch for August 2025 Teams Vulnerability
Patch Tuesday for August 2025 included a fix for Microsoft Teams that addresses a major, CVE-level vulnerability present in the application. The bug could be exploited by an attacker to run malicious commands via a remote code execution (RCE), allowing them to access, modify or delete files directly. RCE attacks notably can be performed from virtually anywhere, letting a bad actor interact with sensitive data unseen, though thankfully Microsoft has stated that they have yet to find this flaw being leveraged in the wild as of yet.
Arizona Seeks to Improve Election Security After Attempted Cyber Attack
The Arizona Secretary of State has requested $10M in funding to bolster the state’s cybersecurity practices for its election infrastructure, citing a recent cyber attack as evidence that the current infrastructure needs to be upgraded. In June 2025, the candidate portal hosted by the Secretary’s office was breached by external actors that uploaded an image of the Ayatollah Khomeini, the leader of the Iranian Revolution in 1979. The intrusion was stopped short of affecting the actual server and quickly removed, but the Secretary of State believes that the attempt was politically motivated as it came shortly after Iran vowed to retaliate after the Israeli attack on their nuclear sites, and has raised concerns that it could reoccur.
Get More Cybersecurity News from SWK Technologies
SWK Technologies monitors the latest stories, threats, regulatory changes and emerging vulnerabilities throughout the cybersecurity landscape to help you stay on top of the critical developments that could affect your business and force you to shift your technology strategies. Get in touch with our experts today for more in-depth analysis of the current risks to your team’s IT assets, and let us help you gain peace of mind over your business’s security posuture.
Contact SWK here with any questions about the latest developments and risks in the cybersecurity landscape, and discover how we can help you secure your critical business data and systems from your biggest threats.