Stay informed with the most impactful cybersecurity developments of the week, compiled by CyberSecurityWeekly.eu.
1. London Nurseries Hacked — Data of 8,000 Children Exposed
A ransomware group known as Radiant breached Kido International, an operator of 18 nurseries across London. The attackers accessed personal details of more than 8,000 children and 100 staff members, including names, photos, addresses, and family contact information. To prove the intrusion, they released the records of 10 children and threatened to publish more unless their demands were met.
Law enforcement agencies and the UK’s National Cyber Security Centre have launched investigations and are working to contain the fallout. The incident highlights a critical vulnerability in childcare and educational institutions where data protection is often under-resourced despite the highly sensitive nature of the information involved.
Source: https://www.reuters.com/world/uk/london-nurseries-hit-by-hackers-data-8000-children-stolen-2025-09-26/
2. Harrods Alerts Customers Following Third-Party IT Breach
Harrods disclosed that a security breach at one of its third-party e-commerce service providers may have exposed customer names and contact information. The company clarified that its own internal systems were not compromised and that no payment or password data was affected.
Despite these assurances, the incident has raised concerns about the security of retail supply chains, which remain a favorite target for cybercriminals. Harrods is working with the affected provider and regulators to ensure additional safeguards and prevent similar breaches in the future.
Source: https://www.theguardian.com/business/2025/sep/26/harrods-warns-customers-their-data-may-have-been-stolen-in-it-breach
3. European Airports Disrupted After Collins Aerospace Cyberattack
Collins Aerospace, a key aviation software provider, suffered a ransomware attack that disrupted check-in and baggage systems across major European airports, including Heathrow, Brussels, and Berlin. Airlines were forced to implement manual check-in procedures, causing widespread delays and flight cancellations.
The attack, attributed to the HardBit ransomware group, highlights the risk posed by critical vendors within complex aviation supply chains. Parent company RTX is coordinating with law enforcement and cybersecurity experts to restore services and understand how the attackers gained access.
Source: https://www.reuters.com/business/aerospace-defense/collins-aerospace-working-restoring-software-airlines-hit-by-cyber-attack-2025-09-24/
4. Arrest Made in UK Over Airline System Hack
British authorities arrested a man in his 40s in West Sussex on suspicion of involvement in the cyberattack on Collins Aerospace systems. The arrest was made under the Computer Misuse Act following an investigation by the UK’s National Crime Agency. He has been released on conditional bail while inquiries continue.
This development indicates an intensifying law enforcement response to large-scale cyberattacks on critical infrastructure. However, officials cautioned that the investigation is ongoing and full attribution, as well as the motive behind the attack, remain to be determined.
Source: https://www.reuters.com/business/aerospace-defense/uk-police-arrest-man-over-cyber-attack-that-affected-european-airports-2025-09-24/
5. Flight Delays Continue as Airports Recover from Attack
Several European airports continue to experience delays and operational slowdowns following the Collins Aerospace cyberattack. Despite partial restoration of check-in and baggage systems, many airports have been forced to maintain manual processing to ensure continuity.
The prolonged recovery underscores how complex aviation systems can suffer lasting effects even after the immediate threat is contained. It serves as a reminder that business continuity and disaster recovery planning are as crucial as initial defense measures.
Source: https://www.theguardian.com/world/2025/sep/22/flight-delays-europe-cyber-attack-heathrow-brussels-berlin
