- Mycomputerspot Security Newsletter
- Posts
- Wednesday War Room – 11/26/2025
Wednesday War Room – 11/26/2025
Happy Thanksgiving week! While most of us are thinking about turkey and travel, threat actors are busy carving up networks.
J.W. Croley
November 26, 2025
In partnership with
Is your social strategy ready for what's next in 2025?
HubSpot Media's latest Social Playbook reveals what's actually working for over 1,000 global marketing leaders across TikTok, Instagram, LinkedIn, Pinterest, Facebook, and YouTube.
Inside this comprehensive report, you’ll discover:
Which platforms are delivering the highest ROI in 2025
Content formats driving the most engagement across industries
How AI is transforming social content creation and analytics
Tactical recommendations you can implement immediately
Unlock the playbook—free when you subscribe to the Masters in Marketing newsletter.
Get cutting-edge insights, twice a week, from the marketing leaders shaping the future.
The past three days have been a feast of critical infrastructure attacks, major corporate breaches, and a stark reminder that even emergency alert systems aren't safe. It seems the only thing getting stuffed more than a turkey this week is a data leak site. Let's see what's on the menu.
Risk Level: Critical
Business Impact: Widespread disruption of emergency communication systems across the US, potential for significant public safety risks, and a major blow to public trust in critical infrastructure
What You Need to Know: The OnSolve CodeRED emergency alert system, used by cities, counties, and law enforcement agencies across the United States, has been disrupted by a ransomware attack. The INC Ransom group has claimed responsibility for the attack, which has left many communities unable to send out critical emergency notifications.
Why This Matters:
This is a five-alarm fire for critical infrastructure security.
The attack demonstrates that even the systems we rely on to keep us safe in a crisis are vulnerable.
The incident highlights the urgent need for a comprehensive, nationwide approach to securing our critical infrastructure.
Executive Actions:
🚨 Review and enhance your organization's incident response plan to ensure that you are prepared to respond to a critical infrastructure attack.
📞 Establish and maintain strong relationships with your local and state emergency management agencies.
📢 Develop a clear and consistent process for communicating with your employees, customers, and the public in the event of a critical infrastructure disruption.
🤝 Advocate for increased investment in critical infrastructure security at the local, state, and national levels.
Risk Level: Critical
Business Impact: Significant operational disruptions for a global leader in the gaming and sports betting industry, potential for massive financial losses, and a major blow to investor confidence
What You Need to Know: International Game Technology (IGT), a global leader in digital gaming and sports betting, has confirmed a significant cybersecurity incident that has caused operational disruptions. The Qilin ransomware gang has claimed responsibility for the attack, claiming to have stolen 10 GB of data.
Why This Matters:
The attack is a powerful reminder that no industry is immune to ransomware.
The incident highlights the importance of a robust and resilient security posture, especially for organizations in the gaming and financial technology sectors.
The attack underscores the need for a comprehensive incident response plan that includes not only technical containment and eradication but also crisis communication and reputation management.
Executive Actions:
🎰 Review and enhance your organization's security posture to ensure that you are protected against the latest ransomware threats.
💰 Develop and test a comprehensive incident response plan that includes a clear process for responding to a ransomware attack.
🗣️ Engage with your legal and communications teams to ensure that you are prepared to respond to a ransomware attack in a way that protects your organization's reputation and minimizes legal and financial liability.
🤝 Partner with your industry peers to share information and best practices for defending against ransomware attacks.
Risk Level: High
Business Impact: Disruption to the operations of a major player in the global energy and manufacturing sectors, potential for significant financial losses, and a growing threat to the stability of the global supply chain
What You Need to Know: LG Energy Solution, a subsidiary of the Korean multinational LG, has confirmed that it has been hit by a ransomware attack. The Akira ransomware gang has claimed responsibility for the attack, claiming to have stolen 1.7 TB of data.
Why This Matters:
The attack is a powerful reminder that the global supply chain is only as strong as its weakest link.
The incident highlights the importance of a comprehensive security program that includes not only your own organization but also your vendors and partners.
The attack underscores the need for a resilient and agile supply chain that can withstand disruptions from cyberattacks and other unforeseen events.
Executive Actions:
🔋 Review and enhance your organization's supply chain security program to ensure that you are protected against the latest threats.
🔗 Conduct a thorough review of your vendors and partners to identify and remediate any security weaknesses.
⚙️ Develop and test a comprehensive supply chain resilience plan that includes a clear process for responding to a disruption.
🤝 Partner with your industry peers to share information and best practices for securing the global supply chain.
Leadership Insight:
As we head into the holiday season, it is clear that cybercriminals are not taking a break.
This week's events are a stark reminder that we must remain vigilant and prepared for anything. The threats are real, the stakes are high, and the time to act is now.
Let's make sure we're not the ones getting carved up this Thanksgiving.
200+ AI Side Hustles to Start Right Now
AI isn't just changing business—it's creating entirely new income opportunities. The Hustle's guide features 200+ ways to make money with AI, from beginner-friendly gigs to advanced ventures. Each comes with realistic income projections and resource requirements. Join 1.5M professionals getting daily insights on emerging tech and business opportunities.
Risk Level: High
Business Impact: Significant data breach affecting a large number of individuals, potential for widespread identity theft and fraud, and a major blow to patient trust in the healthcare system
What You Need to Know: Delta Dental of Virginia has confirmed a major data breach that has affected nearly 146,000 people. The breach exposed a wide range of personal and health information, including names, addresses, Social Security numbers, and medical histories.
Why This Matters:
The attack is a powerful reminder that the healthcare industry remains a top target for cybercriminals.
The incident highlights the importance of a comprehensive security program that includes not only technical controls but also robust privacy and data protection policies.
The attack underscores the need for a strong incident response plan that includes a clear process for notifying affected individuals and providing them with the support they need.
Executive Actions:
🦷 Review and enhance your organization's security and privacy programs to ensure that you are protected against the latest threats.
🔒 Implement and enforce strong data loss prevention (DLP) controls to protect sensitive data from exfiltration.
📢 Develop a clear and consistent process for communicating with your patients and the public in the event of a data breach.
🤝 Engage with your legal and compliance teams to ensure that you are in compliance with all applicable data protection regulations, including HIPAA.
Risk Level: High
Business Impact: Disruption to the operations of a major player in the food supply chain, potential for significant financial losses, and a growing threat to the stability of our food supply
What You Need to Know: The Qilin ransomware group has claimed responsibility for a major data breach at Marine Foods Express, a large seafood import, processing, and distribution company in the southern U.S. The group claims to have stolen a significant amount of operational and internal data.
Why This Matters:
The attack is a powerful reminder that the food supply chain is a critical infrastructure that is increasingly being targeted by cybercriminals.
The incident highlights the importance of a comprehensive security program that includes not only your own organization but also your vendors and partners.
The attack underscores the need for a resilient and agile food supply chain that can withstand disruptions from cyberattacks and other unforeseen events.
Executive Actions:
🦐 Review and enhance your organization's supply chain security program to ensure that you are protected against the latest threats.
🔗 Conduct a thorough review of your vendors and partners to identify and remediate any security weaknesses.
⚙️ Develop and test a comprehensive supply chain resilience plan that includes a clear process for responding to a disruption.
🤝 Partner with your industry peers to share information and best practices for securing the food supply chain.
Risk Level: High
Business Impact: Disruption to local government operations, potential for public safety risks, and a growing need for enhanced cybersecurity at the municipal level
What You Need to Know: The city of Cambridge, Massachusetts, is grappling with the fallout from the CodeRED emergency alert system ransomware attack. The city has been forced to take its emergency notification system offline and is urging residents to change their passwords.
Why This Matters:
The incident is a powerful reminder that even small and medium-sized municipalities are not immune to attack.
The attack highlights the importance of a comprehensive security program that includes not only technical controls but also robust incident response and crisis communication capabilities.
The attack underscores the need for increased investment in cybersecurity at the municipal level.
Executive Actions:
🏛️ Review and enhance your organization's incident response plan to ensure that you are prepared to respond to a critical infrastructure attack.
🤝 Establish and maintain strong relationships with your local and state emergency management agencies.
📢 Develop a clear and consistent process for communicating with your employees, customers, and the public in the event of a critical infrastructure disruption.
🛡️ Advocate for increased investment in cybersecurity at the local, state, and national levels.
🔄 Review and enhance your organization's incident response plan to ensure that you are prepared to respond to a critical infrastructure attack.
📦 Conduct a thorough review of your vendors and partners to identify and remediate any security weaknesses.
🧠 Implement and enforce strong data loss prevention (DLP) controls to protect sensitive data from exfiltration.
📊 Advocate for increased investment in cybersecurity at the local, state, and national levels.
📜 Test incident response procedures for cloud platform and healthcare system compromises
💡 Stay vigilant, patch promptly, and remember that in cybersecurity, paranoia isn't a disorder – it's a job requirement. 💡
J.W.
(P.S. Check out our partners! It goes a long way to support this newsletter!)
Small Budget, Big Impact: Outsmart Your Larger Competitors
Being outspent doesn't mean being outmarketed. Our latest resource showcases 15 small businesses that leveraged creativity instead of cash to achieve remarkable marketing wins against much larger competitors.
Proven techniques for standing out in crowded markets without massive budgets
Tactical approaches that turn resource constraints into competitive advantages
Real-world examples of small teams creating outsized market impact
Ready to level the playing field? Download now to discover the exact frameworks these brands used to compete and win.