July Privacy Pulse:
The 2025 Cybersecurity Landscape

The Identity Theft Resource Center (ITRC) has released its midyear 2025 Data Breach Analysis, revealing key trends in cybersecurity that every mePrism Privacy user should know. While breach numbers remain high, a deeper look into the methods and impacts shows shifting threats that demand immediate consumer action.

Data Breaches Remain High, Mega-Incidents Less Frequent

From January to June 2025, there were 1,732 reported data breaches in the United States. These breaches affected more than 165 million individuals. Although this is over half the total breaches from 2024, only 12.2% of last year’s total victim notifications have been issued so far.

Why it matters:

• Individual exposure risk remains high.

• Fewer massive-scale breaches doesn’t mean lower threat levels.

• Delays in disclosure can conceal critical risks.

Cyberattacks Lead All Causes of Breach

Cyber incidents remain the top cause, with 1,348 events compromising data for over 114 million people. These include:

• Phishing and ransomware

• AI-powered scams

• Supply chain compromises

Supply chain breaches alone affected 690 organizations and 78.3 million individuals, as attackers exploited third-party vendors to gain access to wider networks.

Lack of Breach Transparency

More than 69% of breach notifications in 2025 did not explain how the incident occurred. This lack of detail leaves consumers unable to take informed protective actions and increases the danger of recurring attacks.

Targeted Sectors

The financial sector led in breach count (387), followed by healthcare (283). Other frequently impacted sectors include:

• Professional services

• Manufacturing

• Education

• Technology

These industries store highly sensitive consumer data, increasing both the stakes and frequency of attacks.

The Data Behind the Breaches

• Total breaches: 1,732

• Individuals affected: 165,745,452

• Largest single incidents:

  • PowerSchool: 71.9 million exposed

  • AT&T (repackaged breach): 43.9 million

  • Yale New Haven Health: 5.6 million

  • Episource: 5.4 million

  • Blue Shield of California: 4.7 million

Types of Attacks

• Cyberattacks: 1,348 breaches

• Supply chain: 79 events, 78.3 million affected

• Physical attacks: 34 breaches, rising year-over-year

• System and human error: 129 incidents

Recycled Data: A Growing Risk

A newly exposed 16 billion-record database of old breached logins is fueling new identity theft attempts. Criminals are using previously compromised data (PCD) to launch account takeover attacks, especially where passwords haven’t been changed or MFA hasn’t been enabled.

Immediate Steps to Protect Yourself

1. Be Skeptical of Unsolicited Contacts

• AI-generated phishing is increasingly convincing

• Never share personal data unless you initiated the communication

2. Freeze Your Credit

• Contact Equifax, Experian, and TransUnion

• Freezes are free and prevent unauthorized credit use

3. Use MFA and Passkeys

• Replace passwords with passkeys where possible

• Always enable multi-factor authentication

4. Never Reuse Passwords

• Use a password manager to store unique credentials for each account

5. Monitor All Financial Statements

• Check banking, insurance, and credit accounts regularly

6. Keep All Devices Updated

• Unpatched software remains a common entry point for attackers

7. Respond to Past Breaches

• If your data was ever exposed, assume it’s still being used

• Change passwords and enable security alerts

8. What Businesses Should Do

• Vet all third-party vendors

• Apply least-privilege access controls

• Train employees on phishing

• Maintain an incident response plan

• Monitor for reuse of old credentials

Where mePrism Helps

As 2025 shows, threats are evolving—but your defense can too. mePrism Privacy helps monitor your exposure, alerts you to new risks, and supports your rights to opt out of data broker sales. Our tools, reports, and expert guidance provide critical protection in a year marked by AI-powered phishing, supply chain exploitation, and recycled identity data.

Stay informed. Stay protected. mePrism is your privacy ally in 2025.

Explore more from Our Team

Browse more posts written by our team to help you stay in control.