Global Cyber Casebook

Real public incidents. Professional defence analysis.

Cybstyx was not involved in these incidents. The pages use public reporting and official sources to explain what similar organisations can learn and which security capabilities reduce related risk.

Open Global Observatory Compliance Hub

Cyber Casebook

Healthcare ransomware disruption

A connected healthcare service disruption shows why identity, endpoint, vendor access and evidence trails matter.

Third-party access
Business continuity
Payment and claims impact
Evidence preservation

Public incident patternDefence mappingEducational

Open details

Healthcare and vendor dependency

Change Healthcare ransomware disruption

A public healthcare cyber incident shows how one connected service provider can disrupt claims, payments and operational trust across a wider ecosystem.

Hospitality, identity and business continuity

MGM Resorts operational cyber disruption

A cyber incident can move quickly from IT screens to hotel rooms, payment desks, reservations, executive reporting and brand trust.

Critical infrastructure and continuity

Colonial Pipeline ransomware case

Ransomware against critical infrastructure can create public pressure, operational shutdowns and board-level continuity decisions.

File transfer and software exposure

MOVEit mass exploitation case

A single exposed file-transfer vulnerability can become a data exposure event across many organizations.

Software integrity and trusted updates

SolarWinds supply-chain compromise

Trusted software distribution can become a threat path when update integrity and telemetry correlation are weak.

AI governance and sensitive data

Shadow AI data leakage scenario

Unauthorized AI use can create sensitive-data exposure, unclear accountability and weak evidence trails.

Educational analysis only. Formal investigation, legal interpretation and audit conclusions must come from qualified professionals and the affected organisations.