Five for Friday: 11 July 2025
Sherpa Intelligence: Your Guide Up a Mountain of Information!
Check out these five Information Security and Data Privacy news items from this past week that may have been overlooked.
The countdown to the weekend begins with 5-4-Friday!
Monday, July 7 - Friday, July 11, 2025
More from Sherpa Intelligence: Africa Information Security News Roundup for April-June 2025
University of Exeter and CCDCOE Publish Cyber Law Handbook Guiding Nation States in Peace and Conflict
(HaystackID/JDSupra, July 7th)
- NATO Cooperative Cyber Defence Centre of Excellence (NATO CCDCOE) has launched the second edition of the Cyber Commander’s Handbook today at the International Conference on Cyber Conflicts, CyCon 2025: The Next Step in Tallinn. The Handbook is designed to serve as a practical guide to support commanders and decision-makers in understanding, integrating, and employing cyber capabilities within multi-domain operations.Idaho Takes a Hands-On Approach to State Cybersecurity
(Government Technology, July 8th)
- The state of Idaho is taking a comprehensive, statewide approach to cybersecurity, with an interactive training exercise that features cross-sector participation and a grant program to improve security at the local level.Nigeria Fines MultiChoice US$512k for Data Privacy Violations
(News Ghana, July 9th)
- Nigeria’s Data Protection Commission (NDPC) stated MultiChoice’s practices were “patently intrusive, unfair, unnecessary and disproportionate,” compromising millions of subscribers and linked individuals; the pay-TV giant, Africa’s largest, faces mounting regulatory pressure in Nigeria its biggest market outside South Africa amid ongoing disputes over pricing and taxes.What to Know About SafePay Ransomware Group
(The National Law Review, July 10th)
- SafePay hit the most victims of any threat actor in May 2025—it is linked to 248 victims to date. SafePay employs a double extortion model—exfiltrating files that they threaten to leak, and then deploying the ransomware to affect operations and pressure victims to pay. They are targeting private companies in the financial, legal, insurance, health care, and critical services, as well as pivoting to the public sector.French cops cuff Russian pro basketball player on ransomware charges
(The Register, July 11th)
- Russian professional basketball player accused of being part of an as-yet unnamed ransomware gang that operated between 2020 and 2022 and allegedly hit around 900 organizations, including two US federal agencies.More from Sherpa Intelligence: Don’t Let Mis(s) Information Take the Crown via THOR Collective Dispatch
