Four non-CVE intelligence items cover cross-sector threat and governance developments: the FBI IC3 2025 Annual Report ($21 billion in cybercrime losses, 26% YoY increase) resets the enterprise threat model baseline around BEC, AI-enabled social engineering, and cryptocurrency fraud; a manufacturing sector infostealer-to-ransomware incident documents session cookie theft bypassing MFA via unmanaged devices; and two governance items reflect escalating board-level regulatory accountability (SEC, CIRCIA, FDIC) and banking sector risk prioritization (92% of bank boards citing cybersecurity as top risk). These items carry no patch actions but inform threat model updates, detection engineering priorities, and board-level risk communication.