Stelia North America Hit by Ransomware Attack

Stelia North America Hit by Ransomware Attack

Airbus-owned Stelia North America has confirmed it was targeted in a ransomware attack, raising fresh concerns about cybersecurity risks within the aerospace supply chain. The incident, which is currently under investigation, was contained within the company’s North American IT environment and has not impacted the broader Airbus Atlantic network.

In an official statement, Stelia North America said it immediately activated its cyber defense protocols upon detecting the breach. The company took proactive measures, including isolating affected systems, to limit the spread of the attack and safeguard critical operations. It emphasized that the safety and security of its employees, operations, data, and partners remain its top priority.

The company also confirmed that it is conducting a comprehensive forensic investigation in collaboration with external cybersecurity experts. Additionally, Stelia North America is coordinating closely with relevant authorities while keeping employees and customers informed as the situation develops.

5 Structural Barriers Breaking Your Cybersecurity Compliance Framework

The web of cybersecurity compliance organizations must navigate along with gaps between compliance framework design and effectiveness — among other stumbling blocks — can be serious barriers to effective risk management, says Steve Durbin, CEO of Information Security Forum. Overcoming these challenges begins by honestly auditing your current framework.

Talk to any CISO or cybersecurity leader about whether they are having compliance issues and they will resoundingly answer with a big “no.” The reality is that many organizations suffer from a compliance problem they may not be fully aware of.

Research from Creditsafe blamed general business pressures for driving companies to cut compliance corners. A striking 59% of 200 US professionals across accounting, legal, supply chain and consulting said they “always” compromise on compliance; 79% admitted to skipping compliance checks on customers and suppliers due to familiarity. Violations are on the rise — 67% reported more data privacy breaches, while 64% noted increased financial accounting and tax compliance violations.

Consequently, an organization’s capacity to manage compliance is failing to keep pace with the growing complexity of compliance demands.

Sandhills Medical Says Ransomware Breach Affects 170,000

Sandhills Medical said in a data security incident notice on its website that it discovered a ransomware attack on May 8, 2025.

It has since been working with law enforcement, cybersecurity experts, and a forensics firm to investigate the intrusion and determine its impact.

Now, nearly one year later, the healthcare organization has publicly disclosed the incident and notified affected individuals.

The company said the hackers obtained the personal information of “select patients”, but told the Maine Attorney General’s Office that nearly 170,000 people are affected.

Compromised information includes name, date of birth, SSN, Taxpayer Identification Numbers, driver’s licenses, government-issued identification, passports, financial information, and personal health information.

The Inc Ransom ransomware group listed Sandhills Medical on its leak website in early June 2025.

The cybercrime group has since made the files allegedly stolen from the healthcare organization available for download.

AI is biggest cyber threat to CISOs, NCC Group warns

Artificial intelligence is the biggest threat facing chief information security officers, according to NCC Group's latest analysis of ransomware activity.

Its first-quarter threat review found 775 ransomware attacks in March, up 22% from February. Across the quarter, attacks totalled 2,112, down 3% from the previous quarter, but still pointed to what NCC Group described as a volatile threat landscape.

The findings come as businesses and public bodies face growing concern over the use of AI by criminal groups and hostile state-backed actors. NCC Group said the technology is reshaping both external attack methods and internal security risks, particularly where organisations adopt AI tools without clear controls.

It pointed to AI's use in propaganda, social engineering and software development, noting that threat actors are using tools including Google Gemini to translate messages more accurately and make fraudulent communications more convincing.

At the same time, organisations are creating new weaknesses through their own use of generative AI.

Mythos Challenges Crypto Security

Mythos, the new AI model from Anthropic that has sparked fear and confusion in traditional tech and finance, is also driving a massive shift in how the crypto industry thinks about security. For years, decentralized finance has focused its defenses on smart contracts.

Code is audited, vulnerabilities are cataloged, and many common exploits are well understood. But Mythos, a model designed to identify and chain together weaknesses across systems, is pushing attention beyond code and into the infrastructure that supports it. “The bigger risks sit in infrastructure,” said Paul Vijender, head of security at Gauntlet, a risk management firm.

“When I think about AI-driven threats, I’m less concerned about smart contract exploits and more focused on AI-assisted attacks against the human and infrastructure layers.” That includes key management systems, signing services, bridges, oracle networks and the cryptographic layers that connect them.

Vendor Risk Management Is Broken — Here’s Why

In the current interconnected digital landscape, an organization's security is often determined by its most vulnerable vendor. While third-party relationships drive innovation, scalability, and efficiency, they also pose considerable risks. Vendor Risk Management (VRM), which was once merely a formality, has now become an essential component of cybersecurity and business resilience.

However, despite increased investment, tools, and focus, Vendor Risk Management remains fundamentally flawed.

Let's explore the reasons why.

In many organizations, Vendor Risk Management (VRM) is often approached primarily as a compliance activity rather than a means of risk mitigation. The main focus tends to be on "passing the audit" instead of genuinely understanding and addressing potential risks. Security questionnaires are filled out, documents are gathered, and checkboxes are ticked. However, the uncomfortable truth is that a vendor may "pass" your assessment yet still pose a significant risk to your organization. Static assessments fail to accurately capture real-world risks, and as threat landscapes evolve daily, vendor evaluations are often limited to annual reviews or, even more concerning, are conducted only at the time of onboarding.