The Federal Trade Commis-sion (FTC) is calling on U.S. tech giants to resist foreign demands to either weaken the security of their users by breaking encryption protections or impose censorship on their platforms.
On August 21, 2025, FTC Chair Andrew Ferguson wrote a letter to 13 tech companies, including Apple, Alphabet (parent firm behind Google), Meta, Microsoft, and Amazon.
Ferguson specifically mentions the EU Digital Service Act, UK Online Safety Act, and UK Investigatory Powers Act as attempts to “censor content or degrade security for users.” These actions, he warns, could also violate Section 5 of the Federal Trade Commission Act that prohibits unfair or deceptive acts, while eroding Americans’ freedoms and online security.
“Foreign governments seeking to limit free expression or weaken data security in the United States might count on the fact that companies have an incentive to simplify their operations and legal compliance measures by applying uniform policies across jurisdictions,” wrote Ferguson.
This pledge comes only days after the U.S. officials managed to score a win and made the UK agree to drop its encryption backdoor request against Apple, which was issued back in February via a Technical Capability Notice (TCN) under the 2016 Investigatory Powers Act.
Fears of digital security are growing day by day.
The first half of 2025 witnessed an alarming escalation in the global cybersecurity threat landscape, characterized by an unprecedented surge in attack volume and sophistication. Cyber attacks per organization globally increased by 47% compared to 2024, reaching an average of 1,925 weekly incidents. Ransomware attacks, in particular, experienced a dramatic spike, with various reports indicating historic highs in victim counts and incident frequency. Q1 2025 was marked as the worst quarter to date for ransomware victims, with one source tracking over 2,000 incidents, a 102% increase year-over-year. Another report noted a 126% global rise in reported ransomware incidents compared to Q1 2024.
Several high-impact incidents underscored the severity of the threat environment. The cyberattack on Change Healthcare, a subsidiary of UnitedHealth Group, caused catastrophic disruption across the U.S. healthcare system, potentially compromising the data of up to 190 million individuals and inflicting severe financial strain on providers. The theft of over USD1.46 billion in cryptocurrency from the Bybit exchange, allegedly by North Korea’s Lazarus Group, highlighted the immense financial risk within the digital asset space.
10 Major attacks also impacted media, government entities globally, and critical third-party service providers.
Analysis revealed that Healthcare, Education/Research, Government/Military, Manufacturing, and various Service sectors, including business, consumer, technology and telecommunications, were among the most frequently targeted industries globally. Dominant trends included the evolution of ransomware tactics, such as double extortion and the fragmentation of major RaaS groups; the increasing sophistication of social engineering, amplified by AI-driven deepfakes and a surge in vishing; a rise in malware-free attacks leveraging legitimate system tools; persistent exploitation of software vulnerabilities; and the growing significance of supply chain risks.
The response landscape remained dynamic. Organiza-tions focused on enhancing resilience through improved technical controls, incident response planning, and employee training. Law enforcement agencies demonstrated increased international cooperation, targeting cybercrime infrastructure through operations like Endgame.
Concurrently, the global regulatory environment continued to evolve, with major legislation like the EU’s NIS2 Directive and Digital Operational Resilience Act (DORA) coming into force or effect in 2025, alongside updates to HIPAA in the U.S. and the proliferation of state-level privacy laws, creating a complex compliance challenge for global organizations.
The healthcare sector was not alone in facing major breaches. In 2025, Oracle Cloud and Cleo, a managed file transfer vendor, both suffered significant cyber incidents that exposed millions of records and highlighted the growing risks in cloud and supply chain data management.
Oracle Cloud Breaches: Multiple incidents affected Oracle’s legacy cloud environments, with up to 6 million records reportedly exposed. While Oracle maintains that its core cloud infrastructure (OCI) was not compromised, the breaches targeted “Oracle Cloud Classic” and Oracle Health servers, raising concerns about the security of legacy systems and the importance of timely patching.
Cleo Ransomware Attack: Cleo, a widely used provider of managed file transfer solutions, was hit by a ransomware group that exploited known vulnerabilities to access sensitive data from major clients, including Hertz and Kellogg. The attackers demanded ransom payments and threatened to leak the stolen data, underscoring the growing threat of double-extortion ransomware tactics.
In June 2025, researchers at Cybernews uncovered a staggering leak involving 16 billion login credentials. This data came from 30 different sources and was compiled into a single massive database. The leak included email addresses, usernames, passwords, session cookies, and tokens.
Affected platforms included Google, Apple, Facebook, Microsoft, Netflix, Telegram, and even government portals. While none of these platforms were directly hacked, the data was collected via infostealer malware, credential reuse, and older breaches.
Infostealer malware is a type of malicious software that harvests stored credentials and cookies from infected devices, often sold on the dark web.
The cybersecurity data news of 2025 sends a clear message: the stakes have never been higher. As breaches grow in scale and complexity, organizations must invest in proactive security measures, robust compliance programs, and continuous improvement. Only those who adapt to the evolving threat and regulatory landscape will maintain trust and avoid costly fallout.
Cybernews reports that records from over 30 databases have been stolen, with each containing up to 3.5 billion passwords from social media and VPN logins to corporate platforms and developer platforms.
The recent data breach contains a massive amount of information that can affect billions of online account, as cybercriminals now have access to a mass amount of login credentials. This puts users at risk of further malicious behavior from phishing attacks, social engineering and identity theft.
Currently, nearly all major platforms have been affected by the breach, including Apple accounts (formerly Apple IDs), Gmail, Facebook accounts and GitHub as well as instant messaging platforms like Telegram and both commercial and government platform portals.
The data appears to contain URLs, usernames and passwords. However, with the unfathomable size of the data that’s been exposed, there’s no way to tell how many accounts are currently under threat.
The stolen data appears to come from several infostealers, and while the datasets are new, the sheer amount of info could also be from a mix of different datasets from previous breaches, including a database containing 184 million records discovered in May this year.
Recently, sensitive information about every Intel employee was reportedly available to anyone able to exploit weaknesses in the firm’s internal sites, an expert has claimed.
Security researcher Eaton Z, who described the flaws in a lengthy blog post, found a business card portal used by Intel staff contained a login system which could be easily manipulated.
By altering how the application verified users, Eaton managed to access data without needing valid credentials.
What began as a small discovery quickly expanded, as the system exposed far more information than its function required. Once deeper access was achieved, the results became difficult to dismiss.
Eaton described downloading a file approaching one gigabyte in size that contained the personal details of Intel’s 270,000 employees.
These records included names, roles, managers, addresses, and phone numbers. The scale of the leak suggests risks beyond simple embarrassment.
The release of such data into the wrong hands could feed identity theft, phishing schemes, or social engineering attacks.
The UK and the EU have pushed for greater control over the internet in the name of safety over the last few years, crafting legislation that often requires U.S. tech providers to adjust their services.
There are two main areas of contention: encryption and harmful, but legal, content.
Encryption refers to the technology used by security software like the best VPN apps, secure email, and encrypted messaging apps to keep online communications private between you and the receiver.
While that’s a crucial protection – especially as major cyberattacks like Salt Typhoon become the norm – authorities see this as an obstacle to criminal investigation and are pushing for the creation of backdoors into encrypted software.
The likes of Signal and WhatsApp have already voiced their concerns against laws and proposals such as the UK Online Safety Act and EU Chat Control.
U.S. tech firms and officials alike have also been raising concerns about new UK and EU requirements to mitigate online dangers by halting the spread of misinformation and content that could harm minors.
These frictions led the Trump administration to consider imposing sanctions on the EU for censoring Americans and imposing higher costs on U.S. tech firms under its Digital Service Act.
Experts said, a well-informed perspective based on ethical, technical, and societal considerations, “Censoring content or degrading security for users” is widely seen as a dangerous trade-off.
Regarding degrading security weakens, if governments or platforms weaken encryption to access content, that same weakness can be exploited by hackers, foreign governments, or criminal organizations. Experts often say, “There’s no such thing as a backdoor only the good guys can use.”
A strong encryption by default, targeted, lawful investigations with proper oversight, content moderation policies with transparency and appeals.
Overcoming digital security problems is not about finding a single magic solution, but about implementing a layered strategy often called “defense in depth.” This approach combines technology, processes, and people.★
