Key news on cybersecurity and cyberattacks of the week (18-22 August 2025)

The week that ends leaves us with an overview of cybersecurity with incidents of great international and national repercussions. The massive hacking of Gmail and Google accounts, the news about the Digital Euro and multiple alerts of ransomware and threats to critical infrastructures set the pace of the sector. If you are looking for up-to-date information, SEO and recommendations for Spain and the world, this weekly summary of Apolo Cybersecurity makes it easy for you.

‍

Massive cyberattack on Gmail and Google: risks and recommendations

• This week it was confirmed that a group of cybercriminals (UNC6040/ShinyHunters) accessed a database hosted on Salesforce, putting at risk 2.5 billion Gmail accounts.
• The attackers used vishing and deception techniques to access the contact information of small and medium-sized companies linked to Google.
• Although the passwords were not stolen, the exposed data fuels email phishing campaigns and calls to steal credentials and carry out fraud.
• The main security tip this week is to activate two-step verification, review recent activity and never click on links from suspicious senders.

‍

Euro Digital: advances, cybersecurity debates and new threats

• El European Central Bank published a new report on the Digital Euro, which seeks to be safe, functional and inclusive throughout the eurozone.
• Offline wallets are being tested for offline payments, with a special focus on privacy and protection against cyberattacks and blackouts.
• Technical meetings and consultations with merchants and consumers have reinforced risk management and dispute resolution protocols, crucial in the face of the growing threat of digital theft.
• The new technical tests are aimed at resisting vulnerabilities and incidents that may affect both citizens and the European banking infrastructure.

‍

Spain: Threats, Ransomware and Notable Cases

• Spain maintains a high level of exposure, with sectoral incidents affecting food companies, insurance companies and public administrations, according to INCIBE reports and bulletins published this week.
• The ransomware is still active, with 58 new victims in 72 hours reported between August 18 and 20. Logistics, health and insurance companies are among those affected, according to CronUp reports and industry sources.
• Phishing and privilege escalation attacks using vulnerabilities in SAP, Windows and Netfilter have prompted urgent warnings for patching and activating contingency protocols.

‍

Outstanding global trends

• Advancement of specialized malware, such as PipeMagic RansomExx and targeted Kinsing and EncryptHub campaigns, with victims in Spain and Europe.
• Rise of supply chain attacks, infecting Linux servers and open development platforms.
• Regulatory moves: the ECB accelerates the legal framework for the digital euro and updates ministers and the European Parliament on potential advances and risks.

‍

Apolo Cybersecurity recommendations for companies and users

• Activate two-factor authentication where possible.
• Keep software and systems updated to the latest version.
• Conduct internal simulations and training sessions in social engineering.
• Check official alerts and patch critical vulnerabilities.
• If you're using cloud services, review account permissions and activity.

‍

🛡️ Request your free consultancy with Apolo Cybersecurity and keep your digital resilience resistant to cyberattacks

Cybersecurity never rests and this week proves it: global incidents, regulatory advances and specialized threats make it necessary to reinforce protection and common learning. Companies, freelancers and users must be vigilant and prepared.

‍