🛰️ #OSINT Update for 18 August 2025 (CET) 🛰️

🇺🇸 United States — Cyber Defence • Judiciary Ops • Healthcare Security

→ Federal court (Eastern District of Missouri) tightened CM/ECF filing for criminal cases effective today in response to recent cyberattacks targeting judiciary systems.

→ Health sector ISAC reporting over the weekend flagged active ransomware leak-site activity and continued exploitation attempts against on-prem SharePoint servers; hospitals advised to validate exposure and segmentation.

🇺🇦 Ukraine — Drones • Air Defence • Infrastructure

→ Overnight UAV activity and air-raid alerts reported over Sumy region; air-defence engagements logged and local authorities assessing impacts on utilities.

→ Frontline UAV reconnaissance and counter-battery strikes remained active along the Kupiansk–Lyman and Zaporizhzhia axes; damage assessments pending.

🇷🇺 Russia — Information Controls • Military Logistics

→ Crimea authorities continue enforcing expanded information blackout rules on reporting strike aftermaths and military movements, limiting OSINT visibility around recent incidents.

→ Logistics channels highlight ongoing drone-defence reallocations around Black Sea facilities following repeated UAV attempts this month.

🇪🇺 European Union & Member States — Digital Identity Wallets • AI Implementation

→ Post-implementing-act coordination on European Digital Identity Wallets advanced this week, with several national authorities scheduling late-Q3 conformance testing windows and procurement updates.

→ EU AI governance teams circulated implementation notes to sectoral regulators for recruitment and high-risk systems ahead of autumn enforcement checkpoints.

🇩🇪 Germany — Surveillance Law • Data Oversight

→ States initiated re-reviews of digital-surveillance statutes and automated data-analysis deployments in the wake of this month’s constitutional constraints; supervisory bodies preparing compliance timetables.

→ Media-tech rulings last week triggered additional scrutiny of ad-tech data flows; regulators signalling stepped-up audits of profiling practices.

🇬🇧 United Kingdom — Immigration • Domestic Security

→ eVisa migration updates issued to broader cohorts as the Home Office expands digital status rollouts; biometric-enrolment communications stepped up ahead of late-August milestones.

→ Counter-extremism units increased monitoring of encrypted-platform procurement chatter linked to domestic groups; alert level unchanged.

🇨🇦 Canada — Crypto Oversight • Border Tech

→ Financial regulators continued consultations on MiCA-aligned stablecoin consumer-protection mechanisms; implementation options circulated to industry for late-summer feedback.

→ CBSA advanced biometric-screening pilots with incremental throughput and accuracy reporting dashboards for participating airports.

🇦🇺 Australia — Facial Recognition • AI Oversight

→ Parliamentary committees extended evidence-gathering on facial-recognition use in transport hubs; police body-cam AI-tagging ethics guidance approaching publication.

🇮🇱 Israel — Cyber Defence • Surveillance

→ Targeted cyber attempt against a national-level utility was contained; preliminary forensics indicate third-party compromise vector with no service disruption.

→ Additional AI-assisted plate-recognition units brought online at Gaza-area checkpoints to support interdiction of UAV components trafficking.

🇵🇸 Palestine — Humanitarian Aid

→ Aid logistics reported intermittent fuel and medical-oxygen constraints in Gaza hospitals; agencies coordinating contingency deliveries to pediatric wards and dialysis units.

🇨🇳 China — Digital ID • Online Censorship

→ National “cyber ID” rollout continues post-July launch, with integration guidance moving from pilot sites to provincial platforms; service providers updating onboarding flows.

→ New research this month detailed nation-scale targeted filtering of QUIC traffic; circumvention testing and protocol adaptations ongoing.

🇯🇵 Japan — Active Cyber Defence • Critical Infrastructure

→ Government briefings outlined implementation planning for the new active-cyber-defence framework; utilities and telecom operators engaged for incident-response playbook updates and GPS-spoofing countermeasures.

🇰🇵 North Korea — Military Posture

→ Commercial-satellite monitoring continues to show construction and reconfiguration at missile-production and coastal sites; no new tests confirmed today.

🏦 ECB — Digital-Euro • CBDC Readiness

→ No new public releases today; preparation-phase workstreams continue ahead of the October decision point, with sandbox participant exercises moving toward late-summer checkpoints.

🛰️ Intelligence Agencies — NSA • CISA • BND • MSS • Mossad

→ Threat bulletins emphasize deepfake-enabled phishing against critical infrastructure and OT environments; operators urged to harden identity flows and media-ingest pipelines.

→ European services tracked SIM-swap clusters targeting telecom and energy executives; mitigations include number-porting locks and step-up verification.

→ Regional services monitored frequency-hopping telemetry on UAV corridors linked to Iranian supply lines; collection tasking adjusted accordingly.

🔍 Cyberattack

→ Judiciary CM/ECF protections activated in the U.S. today following recent incursions.

→ Health-sector ransomware/leak-site activity elevated; SharePoint exploitation attempts continue.

→ Ukraine faced renewed UAV incursions overnight with localized alerting and interception.

📌 Forward Triggers

→ Any service impact or data exfiltration tied to U.S. judiciary CM/ECF hardening measures

→ Confirmed infrastructure damage from Sumy-region UAV activity and follow-on Russian strikes

→ EU member-state conformance-test schedules for Digital Identity Wallets (late-Q3)

→ EU regulator guidance on AI transparency for recruitment/high-risk systems

→ German state-level revisions to surveillance and automated-analysis laws

→ UK eVisa migration milestone outcomes and biometric-enrolment error rates

→ Canadian stablecoin framework draft revisions and pilot-phase consumer-protection tests

→ Publication of Australian body-cam AI-tagging ethics guidance and transport-hub FR decisions

→ Forensics summary from the Israeli utility cyber attempt and any sectoral advisories

→ QUIC-filtering circumvention efficacy and provider-side protocol adjustments

→ Japan’s active-defence implementation playbooks for utilities/telecom

→ ECB late-summer sandbox exercise readouts and October decision positioning

🛰️ End of report.