Skip to main content
AIBlogCyber SecurityCybersecurity NewsRansomwareSharePointTop 5

The 5 Biggest Cybersecurity Stories for July 2025 in the US

By August 5, 2025No Comments
Top 5 Cybersecurity News Stories July 2025

1. Major SharePoint Breach Hits U.S. Federal Agencies

Chinese-linked hackers exploited zero‑day vulnerabilities in on-premises Microsoft SharePoint, impacting agencies like the National Institutes of Health (NIH) and NNSA. Microsoft patches have been released, and federal investigators are collaborating to assess potential back‑door access. Washington Post

🔍 Why It Matters:

  • High-severity, widespread compromise of government infrastructure.

  • SharePoint is deeply integrated across enterprise systems.

  • Exploits persisted even after patching.

2. Supply-Chain Malware Attack on SolarView Energy

On July 30, SolarView Energy suffered a zero-day DLL supply-chain attack via its SV‑Manager auto-update feature. The injected malware enabled credential theft and compromised over 1 million records, causing estimated losses of $4 million and escalating partner risks. Washington Post

3. Ransomware Attack on Ingram Micro by SafePay

SafePay deployed ransomware across Ingram Micro’s infrastructure during July, exfiltrating 3.5 TB of sensitive data and disrupting core systems, including AI-powered licensing tools. While operations resumed swiftly, the scope raised alarms across the global tech supply chain. Tech Radar

4. Cyberattack in St. Paul Forces National Guard Deployment

A “deliberate, coordinated, digital attack” on St. Paul, Minnesota, led officials to shut down all municipal IT systems, requiring the National Guard’s cyber protection unit to assist. The city experienced widespread service outages while law enforcement and external cyber firms investigate. The Guardian

5. AI-Powered Impersonation of U.S. Officials

An attacker posing as Senator Marco Rubio used an AI-generated voice and writing style to message foreign ministers and U.S. officials via Signal. While there were no reported successful breaches, the incident highlights emerging risks of AI-enabled social engineering in high-profile environments. New York Post

📊 Summary Table

Incident Impact Why It Matters
SharePoint breach (NIH, NNSA) Federal access & persistent risk Affects deep enterprise infrastructure
SolarView malware via the supply chain 1M+ records stolen, $4M lost Shows risk of trusted third-party updates
Ingram Micro ransomware by SafePay 3.5 TB of data exfiltrated Tech supply chain disruption
St. Paul city cyberattack Municipal services shutdown Physical impact of digital compromise
AI impersonation of officials Attempted targeting of diplomats AI lowers barriers for high-stakes social attacks

✅ Business Response Recommendations

  1. Patch immediately & prioritize CVE‑2025‑53770/53771 for SharePoint servers.

  2. Audit and Monitor Supply-Chain Software, especially auto-update modules.

  3. Strengthen Incident Response Plans to coordinate with law enforcement and recovery teams.

  4. Train Executives and Staff on emerging AI-based phishing and impersonation tactics.

  5. Segment and Secure Municipal or Critical Infrastructure Networks with layered defenses and redundancy.

Scott Gombar

Author Scott Gombar

More posts by Scott Gombar