Cyber Fusion Team

Ban-somware? The UK is planning a partial ban on ransomware payments, targeting public sector and CNI organisations. Will it help break the cycle — or just shift the risk elsewhere? Our latest blog explores the policy, its potential impact, and the challenges ahead. Read more: https://t.co/wdHfLvZELZ

🚨Protest alert The Wimbledon 2025 Championships event will start on 30 June at the All England Lawn Tennis and Croquet Club in Wimbledon, London. 3 pro-Palestine groups (Campaign Against Arms Trade, Palestine Solidarity Campaign, and War on Want), intend to target Wimbledon sponsors in the banking sector. The protest will take place outside Centre Court from 1000 to 1200. These groups believe that Wimbledon’s organisers are allowing sponsors to use tennis to improve their reputations, by 'sportwashing', that may be tarnished by supporting arms companies within Israel’s weapons supply chain. Given that the same groups protested last year at Wimbledon for the same reason, it is likely that their TTPs will include not only holding Palestine flags and placards with spoof posters, but also theatrical actions using replicas of, for example, fake corpses to attract attention. While the threat severity is assessed low, the ongoing Gaza conflict make it realistically possible that motivated activists choose more disruptive TTPs. We recommend for staff and general public to avoid large groupings of activists if possible, while entering or leaving the event. We do recommend sponsors and event staff to take into consideration the security of individuals representing the sponsors themselves, as there is a realistic possibility that activists may attempt direct targeting, if visual confirmation is achieved. SecAlliance monitor all significant events for disruption of all types, as part of our Physical Threat Monitoring service. #wimbledon #protest

Another angle of the Israel-Iran conflict is unfolding in Western Europe, where protest activity remains high. Our Fusion Team is monitoring these developments closely, providing insights on how protest dynamics may shift in the coming weeks. Read our full assessment in the blog post: https://t.co/cI2fZBuSkc #physicalintelligence #protests #Iran #Israel

Following U.S. strikes on Iranian nuclear sites and Iran’s response, the cyber threat landscape is shifting again. While a major Iranian state cyberattack is unlikely, hacktivist activity and asymmetric threats remain highly possible. Read our full assessment in the blog post: https://t.co/i1DF9Z4IEX #ThreatIntelligence #Israel #Iran

Hacktivist groups are now a key part of the Israel-Iran cyber landscape. Our latest analysis looks at pro- and anti-Israeli hacktivist activity, regional targeting patterns, and the growing risk to Western organisations – especially those seen as supporting Israel. Read our full assessment in the blog post: https://t.co/5rqtAfX1vh #ThreatIntelligence #Israel #Iran #Hacktivism

🚨 The Premiership Rugby Final 2025 event is taking place at Twickenham Stadium, London on 14 June 2025, at 1500 BST. Extinction Rebellion UK (XR) intends to target the event with their campaign Insure Our Survival. XR intent is to target this event's sponsors and more specifically, insurance sector sponsors. The claim is that these companies support fossil fuels industries by, for example, insuring pipelines, oil platforms, and coal mines damaging the environment. It is likely that XR TTPs will include handing out leaflets, engaging rugby fans with surveys and holding placards near the stadium before and after the event. It is likely that activists will stand in the flows of fans, probably near entrances and exits to make themselves seen and heard. While it is assessed that the disruption of the event will be minimal, there is a low likelihood of some sort of escalation. We recommend for staff and general public to avoid large groupings of activists if possible, while entering or leaving the event. We do recommend sponsors and event staff take into consideration the security of individuals representing the sponsors themselves, as direct targeting by the activists if visual confirmation is achieved, is realistically possible. SecAlliance monitor all significant events including the world's premier sporting events, for disruption of all types, as part of our Physical Threat Monitoring service.

The Roland-Garros 2025 event is underway. Taxi drivers trade unions have stated that they intend to continue strike actions and threaten to block access to Roland-Garros stadium, Parisian airports and train stations until Saturday 31 May, for now. It has the realistic possibility to occur, because current negotiations with the French government have failed and spontaneous action is encouraged by the unions. It is likely that TTPs will include slow-down driving with hundreds of participants in Paris city centre, near critical transport infrastructure and the Roland-Garros stadium. While officials aim to limit the effects on the Roland-Garros tournament, it is likely to negatively impact the traffic in Paris and accessibility of the event. If a compromise is not reached, it is likely that the strike will be extended, affecting the entire last week of the tournament. Such threat actors pick events like this because they can take advantage of international media coverage to add pressure upon officials to cede to their demands. We recommend for executives, staff and general public to follow real-time information about the strike action in case of escalation. SecAlliance monitor all significant events including the world's premier sporting events, for disruption of all types, as part of our Physical Threat Monitoring service: https://t.co/9QaGC2XYA0 #RolandGarros #ThreatMonitoring

The Dynamics of Russian Influence in the 2024 U.S. Presidential Election Following on from the 2024 U.S. Presidential election, the latest Security Alliance report, "Changing Ballots and Minds: Russian Influence Operations and the 2024 U.S. Presidential Election", delves into the complex methods and motives behind Russia’s ongoing influence efforts in the physical and digital realm, used to influence the cognitive understanding of the American electorate. This comprehensive report examines: - Evolving tactics and platforms used in Russian influence campaigns. - Key vulnerabilities in the information ecosystem. - The broader implications for democratic institutions worldwide. Read the full report here: https://t.co/9ow1Wgu1tg #CyberThreatIntelligence #InformationSecurity #InfluenceOperations #ElectionSecurity #2024Election #Cybersecurity #Intelligence

The rise of environmental activism has proliferated across the globe – and this has not been without coordination. SecAlliance has been investigating the activities of the A22 Network, a global collective of groups targeting critical national infrastructure. Read more of our analysis of their autumn 2023 activities here: https://t.co/H0SLuWYaQx