🔴 HIGHbreachOct 21, 2025

Russian Lynk group leaks sensitive UK MoD files, including info on eight military bases

Category:Threat Alerts / Incident Response & DFIR

SecurityAffairs reports Russian cybercrime group Lynx breached UK MoD contractor Dodd Group and leaked sensitive documents tied to eight RAF and Navy bases, with claims of ~4 TB stolen. Leaked materials allegedly include visitor logs, internal emails, and security guidance, raising espionage and physical security concerns.

🎯CORTEX Protocol Intelligence Assessment

Business Impact: Exposure of defense facility details increases operational risk and potential targeting. Technical Context: Supply‑chain compromise of contractor enabling large‑scale data exfiltration.

⚡Strategic Intelligence Guidance

Execute third‑party compromise assessments across defense contractors.
Accelerate zero‑trust access for shared systems and datasets.
Expand insider threat and physical security coordination.
Use breach IoCs to hunt for related access in MoD networks.

Threats

Lynx

Targets

DefenseGovernment

Impact

Data Volume:≈4 TB (claimed)

🎯CORTEX Protocol Intelligence Assessment

⚡Strategic Intelligence Guidance

Threats

Targets

Impact

Tags