Description: Imperva disclosed a security incident that impacts customers of its cloud web application firewall (WAF), formerly known as Incapsula. The company learned from a third party of a data exposure that impacts a subset of customers of their Cloud WAF product. Exposed data included customer email addresses, along with hashed and salted passwords, for a subset of customers. For a small number of users, API keys and customer-provided SSL certificates were also exposed. Imperva said the security incident only affected customers of its cloud WAF, and not other products.

Description: The florists associated with Incapsula now known as Imperva, suffered a ransomware attack in the Valentine's week of 2016 which resulted in a huge loss of revenue. ALl of the 34 floristes of Inperva were truck by targeted distributed denial-of-service (DDoS) attacks while one of the website crashed after its content delivery network (CDN) interpreted the attack traffic as legitimate user sessions and routed the traffic through the origin server. One of them also received a ransom demand for restoring the access to the website, however, Imperva immediately helped them get their business online and restore all the access.

Description: Hackers claim to have stolen data from France's Thales and was threatening to publish it. The extortion and ransomware group had plans on the dark web to release the data on Nov. 7. It had not received any direct ransom notification. The hackers have not provided proof they have obtained any Thales data.

Description: In a significant cybersecurity incident, Thales Group, a prominent player in the aerospace, defense, and security sectors, faced a direct attack on its satellite communication systems. This compromise led to a breach of sensitive communication channels between ground operations and several commercial satellites. The attackers managed to inject malicious code to disrupt the integrity of critical data being relayed for navigation and observation purposes. The profound implications of this event put essential space-based services used by governments and corporations at risk, threatening national security interests and economic stability across multiple regions.

Description: In 2022, the French defense and technology firm **Thales Group** fell victim to a **ransomware attack** executed by the **LockBit 3.0** group. The assault specifically targeted the company’s **advanced technology and defense services**, exposing critical vulnerabilities in systems supporting external services for the **maritime sector**. While the full extent of data compromise or operational disruption remains undisclosed, the attack underscored the severe risks ransomware poses to organizations operating in high-stakes industries like defense and aerospace.The breach raised concerns about potential **intellectual property theft**, **disruption of defense-related operations**, and **compromise of sensitive client data**, including government and military entities. Given Thales’ role in providing mission-critical infrastructure—such as **satellite communications, naval systems, and cybersecurity solutions for global defense partners**—the attack carried implications beyond financial loss, threatening **national security and geopolitical stability**. The incident also highlighted the growing trend of cybercriminal groups targeting **strategic industries** to maximize leverage, whether through data exfiltration, operational sabotage, or ransom demands.Though Thales confirmed containment measures, the attack reinforced the urgency for **enhanced cyber resilience** in sectors where digital breaches can have **cascading effects on supply chains, allied nations, and civilian safety**. The involvement of **LockBit 3.0**, a prolific ransomware-as-a-service (RaaS) operator known for high-profile extortion, further amplified the threat’s severity.

Description: French defense and technology group Thales suffered from a ransomware attack after the hacker group LockBit 3.0 stole some of its data and was threatening to publish it. They had not been directly notified of a ransom demand. Thales has launched an internal inquiry and contacted the ANSSI national cyber security agency but has not yet made a police complaint.