Two breach events with no associated CVEs require monitoring this period. Albemarle County, Virginia (priority 0.422) confirmed a June 2024 double-extortion ransomware attack resulting in PHI and PII exfiltration, triggering HIPAA breach notification obligations; organizations with data-sharing relationships with the county or comparable public-sector PHI environments should review behavioral detection coverage for T1078, T1041, and T1486 TTPs. The Nike incident (priority 0.252, SCC-DBR-2026-0063) remains unverified — WorldLeaks claims data exfiltration, Nike is investigating — with no confirmed attack vector or data scope; organizations with vendor or data-sharing relationships with Nike should heighten monitoring on those integrations pending official disclosure.