Australia's largest home builder Metricon Homes confirms Qilin ransomware attack exposing 128GB of sensitive data including financial documents and architectural plans. Meanwhile, Orange France detects cyberattack affecting internal systems, disrupting services for 290 million customers.
Cyber attacks are no longer just data grabs. They are strategic tools of economic warfare. From factory sabotage to stolen identities and regulatory pressure, these breaches now aim to destabilize industries, drain trust, and reshape global power. The cost is not just money. It is control.
Russia's Aeroflot airline cancels 40+ flights after Silent Crow hackers claim year-long infiltration. Meanwhile, Ohio's Kettering Health confirms Interlock ransomware attack exposed patient data including Social Security numbers and medical records.
Australia's largest home builder Metricon Homes confirms Qilin ransomware attack exposing 128GB of sensitive data including financial documents and architectural plans. Meanwhile, Orange France detects cyberattack affecting internal systems, disrupting services for 290 million customers.
Cyber News Centre's cyber update for 31st July 2025: Metricon Homes, Australia's largest home builder, has confirmed a Qilin ransomware attack exposing 128 gigabytes of sensitive company data including financial documents and architectural plans. Meanwhile, Orange France has detected a cyberattack affecting internal systems, causing service disruptions for corporate customers across its 290 million customer base.
Metricon Homes is Australia's largest residential home builder, founded in 1976 and providing property services across New South Wales, Victoria, Queensland, and South Australia.
Update: The Qilin ransomware operation has listed Metricon Homes as a victim on its darknet leak site, claiming to have stolen 128 gigabytes of data containing over 98,000 files from the home builder. The attack was discovered on July 24, 2025, with the estimated attack date being July 21, 2025.
The compromised data includes confidential financial documents, proprietary architectural plans, internal marketing strategies, company credits and employee details, credit card receipts, finance and HR information, profit and loss statements, and staff salary and commission rate details. The hackers have threatened to fully publish the data within seven days if their demands are not met.
“This issue was swiftly contained with the support of external experts. Metricon can confirm that there has been no impact to the safety of our operations, and construction activity has continued without interruption,” - Metricon Homes spokesperson.
Why it Matters: This attack represents a significant threat to Australia's construction sector, as Metricon's position as the country's largest home builder means the breach could expose sensitive information affecting thousands of customers, suppliers, and employees. The stolen architectural plans and financial documents could provide competitors with substantial strategic advantages while compromising customer privacy and business operations.
The incident highlights the vulnerability of critical infrastructure companies to ransomware attacks, with Qilin being identified as the third-most active ransomware group globally with 625 claimed victims since August 2022.
Orange is one of France's largest companies and among the biggest mobile service providers in both Europe and Africa, serving a customer base of more than 290 million people.
Update: Orange detected a cyberattack on one of its internal information systems on Friday, July 25, 2025, and announced the incident publicly on Monday, July 28. The company's cybersecurity subsidiary, Orange Cyberdefense, was immediately mobilized to isolate the potentially affected services and limit the impacts of the breach.
The response efforts resulted in disruption of certain services and management platforms for some corporate customers and consumer services, primarily in France. Orange has filed a complaint about the attack and alerted relevant authorities, though the company has declined to provide further details about the nature of the incident for security reasons.
Why it Matters: This attack on France's largest telecommunications provider occurs amid heightened concerns about state-sponsored threats targeting the country's telecommunications sector. The French cybersecurity agency ANSSI recently warned about multiple compromises in the telecommunications industry, including suspected state-sponsored actors compromising mobile network cores and satellite communications infrastructure with the intent to intercept communications of specific targets.
The timing and scale of the Orange attack, affecting a company serving 290 million customers globally, raises questions about potential espionage activities similar to the Salt Typhoon breaches reported in the United States. The incident underscores the critical vulnerability of telecommunications infrastructure to sophisticated cyber threats and the potential for widespread service disruptions affecting both civilian and business communications.
Get the stories that matter to you.
Subscribe to Cyber News Centre and update your preferences to follow our Daily 4min Cyber Update, Innovative AI Startups, The AI Diplomat series, or the main Cyber News Centre newsletter — featuring in-depth analysis on major cyber incidents, tech breakthroughs, global policy, and AI developments.
Russia's Aeroflot airline cancels 40+ flights after Silent Crow hackers claim year-long infiltration. Meanwhile, Ohio's Kettering Health confirms Interlock ransomware attack exposed patient data including Social Security numbers and medical records.
Heart Research Australia responds to website malware affecting donation systems while NASCAR confirms Medusa ransomware attack exposed names and Social Security numbers of racing fans in $4 million extortion demand.
Women's dating safety app Tea suffers major data breach exposing 72,000 user photos including selfies and ID verification images. Meanwhile, Allianz Life confirms data breach affecting majority of its 1.4 million US customers via social engineering.
Terry Ringland Chartered Accountants in NSW falls victim to INC Ransom attack disrupting accounting services. Meanwhile, Prestige Maintenance USA notifies 65,452 people of ransomware breach by Medusa gang demanding $1.2 million.
Where cybersecurity meets innovation, the CNC team delivers AI and tech breakthroughs for our digital future. We analyze incidents, data, and insights to keep you informed, secure, and ahead. Sign up for free!
