Daily Briefing for 11.03.25

Attacks, Threats, and Vulnerabilities

ICS phishing: Stopping a surge of malicious calendar invites (Sublime Security) Preventing phishing attacks delivering malicious meeting invites that are added straight to calendars

Hackers are attacking Britain’s drinking water suppliers (The Record) The U.K.'s water suppliers have reported five cyberattacks since January 2024, according to information reviewed by Recorded Future News. The incidents did not affect the safety of water supplies, but they highlight an increasing threat.

Ernst & Young cloud misconfiguration leaks 4TB SQL Server backup on Microsoft Azure (BeyondMachines) Ernst & Young exposed a 4-terabyte unencrypted SQL Server backup file on Microsoft Azure due to a cloud storage misconfiguration after post-merger integration security gaps with an entity acquired by EY Italy in 2020. The leak was discovered by Neo Security during routine attack surface mapping in October 2025. EY claims no client information or confidential data was impacted and the file was from an isolated acquired entity not connected to its global systems.

Litigation, Investigation, and Law Enforcement

Chicago firm that resolves ransomware attacks had rogue workers carrying out their own hacks, FBI says (Chicago Sun-Times) Employees of DigitalMint, a company that specializes in negotiating ransoms in cyber attacks, were part of a small crew the feds say conducted five hacks that scored more than $1 million.

For a complete running list of events, please visit the Event Tracker.

Events

Cyber Innovation Day 2025 | Datatribe (Washington, DC, USA, Nov 4, 2025) If you’re raising a seed or pre-seed round and are building the next category-defining company, we want to hear from you! The DataTribe Challenge is the headline event of the afternoon at Cyber Innovation Day 2025, where five finalists take the stage after weeks of hands-on coaching from seasoned startup operators and investors. These five finalists—along with additional promising startups—will exhibit in the Cyber Innovation Expo Hall, gaining high-impact exposure to top investors, cybersecurity leaders, and strategic partners.

CYBERWARCON (Virtual and Arlington, Virginia, USA, Nov 19, 2025) CYBERWARCON is a one-day conference in Arlington, VA focused on the specter of destruction, disruption, and malicious influence on our society through cyber capabilities. CYBERWARCON is not a hacker conference, or an ICS conference, or an international policy conference. The central purpose of this conference is to identify and explore threats. Participants and attendees come from a spectrum of backgrounds, including the military and government, academia, the media, and the private sector.

AWS re:Invent 2025 (Las Vegas, Nevada, USA, Dec 1 - 5, 2025) AWS re:Invent is a learning conference hosted by AWS for the global cloud computing community. The in-person event features keynote announcements, training and certification opportunities, access to more than 2,000 technical sessions, the Expo, after-hours events, and so much more.

TRUSTECH 2025 (Paris, France, Dec 2 - 4, 2025) This international event is the go-to place for all things payments, digital identity, cybersecurity, and fintech. With over 200 exhibitors, 100+ speakers, innovation awards, networking opportunities, and exclusive content, it’s the perfect place to discover what’s next in trusted technologies.

CyberMarketingCon 2025 (Austin, TX, USA, Dec 7 - 10, 2025) CyberMarketingCon will be held December 7-10 in bustling downtown Austin, Texas. Come to learn, network, and enjoy what this beautiful, unique city and your amazing fellow attendees have to offer.