Cyber Brief 25-08 - July 2025

This July 2025 Cyber Brief synthesises 287 open-source reports covering sanctions and policy actions, arrests and takedowns, multiple active cyberespionage campaigns (including China- and Russia-linked APT activity such as ToolShell and Turla), zero-day exploitation of SharePoint and other critical products, a surge in ransomware and infostealer operations (notably Akira and browser-extension malware), large-scale data exposures and extortion attempts, and coordinated law-enforcement disruption efforts across regions.