Cyber Brief 25-09 - August 2025

- Cyber Brief (August 2025) synthesizing 321 open-source reports: active nation-state cyberespionage (Russia-, China-, Iran-, North Korea-linked groups) and targeted campaigns against telecommunications, government, and diplomatic targets; multiple exploited vulnerabilities and zero-days (Apple CVE-2025-43300, SharePoint Toolshell CVE-2025-53770, WinRAR CVE-2025-8088, Fortinet/Trend Micro/N-able flaws); widespread cybercrime and ransomware activity (Akira, WarLock), macOS and Windows malware campaigns (Shamos, Odyssey Stealer, PipeMagic), large data breaches affecting millions (Bouygues, Orange, Salesforce-related incidents), supply-chain and AI-enabled threats, and disruptive incidents impacting government and critical infrastructure across Europe and beyond.