September 20, 2024 Windows MSHTML Platform Zero Day Vulnerability Actively Exploited by APT Group Microsoft patched a vulnerability on September Patch Tuesday yet attackers are still exploiting the vulnerability to install data-stealing malware. Vulnerability CVE-2024-43461 is identified as a ... Read more
August 22, 2024 464,000 People Impacted by Kootenai Health Ransomware Attack Health system Kootenai Health based in Coeur d’Alene, ID serves northern Idaho and the Inland Northwest. It recently reported a data security breach that affected ... Read more
August 1, 2024 Change Healthcare Cyberattack Reported to the U.S. Department of Health and Human Services The Change Healthcare cyberattack has caused massive disruption to healthcare services in the United States, including huge financial hardship for healthcare providers due to a ... Read more
July 11, 2024 SkinCure Oncology Email Account Breach SkinCure Oncology in Burr Ridge, IL has informed 13,434 individuals regarding an email attack that happened in June 2023. SkinCure Oncology has sent personal notifications ... Read more
June 29, 2024 Surgeon Who Exposed Transgender Care to Minors Charged with Criminal HIPAA Violations The Department of Justice has revealed the indictment against surgeon Eithan Haim, MD. Haim was the whistleblower who provided the press with documents regarding minors ... Read more
June 20, 2024 23andMe 2023 Data Breach Investigated by Security Regulators Data security regulators in the U.K. and Canada have started a mutual investigation of 23andMe concerning its 2023 data breach where about 7 million individuals ... Read more
June 18, 2024 Cyber Attack on the Snowflake Platform A financially driven threat actor monitored as UNC5537 is executing a cyber attack on Snowflake client databases. About 165 Snowflake clients are believed to have ... Read more
June 9, 2024 Cencora/Lash Group Faces Class Action Lawsuit Over Cyberattack Cencora Inc. and The Lash Group LLC are facing a data breach-related lawsuit filed by plaintiff Keith Wolford. Allegedly, the defendants were unable to enforce ... Read more
June 1, 2024 2.8 Million Individuals Affected by Sav-Rx Data Breach Medication Benefit Management solutions provider to health plans, A&A Services based in Fremont, Nebraska, also known as Sav-Rx, encountered a cyberattack on October 8, 2023. ... Read more
April 21, 2024 Alcohol Addiction Company Violates Consumer Data Privacy The Federal Trade Commission (FTC) has instructed the alcohol addiction treatment company Monument to cease sharing consumers’ health information with third parties for promotion purposes ... Read more
February 29, 2024 OCR’s HIPAA Compliance and Data Breaches Annual Report The Department of Health and Human Services (HHS) Office for Civil Rights has sent its annual reports to Congress regarding compliance with the HIPAA Privacy, ... Read more
February 23, 2024 Cyberattack Leader Faces 40 Years Imprisonment and LockBit RaaS Infrastructure Operations Disrupted Leader of Gang Responsible for the Attack on University of Vermont Medical Center Looking at 40 Years Imprisonment A Ukrainian male charged with being the ... Read more
February 8, 2024 PRC Hackers Inside U.S. Critical Infrastructure Systems in Preparation for Devastating Cyberattacks The Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the Federal Bureau of Investigation (FBI) have issued an alert to all ... Read more
February 5, 2024 AnyDesk Confirms Cyberattack and Breach of Production Environment AnyDesk, one of the most popular remote desktop software providers with more than 170,000 customers globally, has recently confirmed it fell victim to a cyberattack. ... Read more
January 24, 2024 The Impact of Artificial Intelligence on Cybersecurity and Cyber Attacks Artificial intelligence (AI) is reshaping the cybersecurity landscape. A recent UK National Cyber Security Centre’s report highlights AI’s potential to significantly enhance cyber threats, especially ... Read more
January 23, 2024 The Mother of All Breaches: Exposed Database Contains 26 Billion Records Cybersecurity researcher Bob Diachenko of Security Discovery and the team at CyberNews have uncovered what is thought to be the largest-ever collection of stolen data, ... Read more
December 5, 2023 23andMe Confirms Hacker Stole Data of 6.9 Million Users On Friday, the direct-to-consumer genetic testing company, 23andMe, confirmed that hackers gained access to the personal information of approximately 6.9 million customers in an October ... Read more
November 3, 2023 HHS Settles its First-Ever Ransomware Investigation for $100,000 The Department of Health and Human Services’ Office for Civil Rights (OCR) has announced its first-ever ransomware settlement. The investigation of the ransomware attack on ... Read more
October 31, 2023 25 LastPass Users Had $4.4 in Million in Crypto Stolen on October 25 Cryptocurrency totaling $4.4 million was stolen from 25 individuals on October 25, 2023, who all had one thing in common – They were users of ... Read more
October 25, 2023 1Password Says Okta Environment Compromised Using Stolen Session Cookie The password manager provider 1Password has announced it has been affected by the recent data breach at the San Francisco-based identity and access management company ... Read more
September 26, 2023 Canadian Pregnancy and Newborn Care Agency Reports 3.4 Million-Record MOVEit Data Breach BORN (Better Outcomes Registry & Network) in Canada has recently confirmed that the personal and health information of 3.4 million patients was stolen by the ... Read more
September 19, 2023 Publicly Shared SAS Token for Storage Account Causes 38 TB Data Leak at Microsoft Security researchers at Wiz have identified a major leak of internal data at Microsoft. The breach occurred three years ago in 2020 when an employee ... Read more
August 28, 2023 HHS Data, Hackers and Medical Records HHS data relating to hackers and medical records is not always the best source of information on which to base decisions about how to assign ... Read more
August 14, 2023 Bulletproof Hosting Service Utilized by Ransomware Gangs Seized by Authorities A ‘Bulletproof’ hosting service that was utilized by ransomware gangs and other cybercriminals has been seized by law enforcement, five individuals have been arrested, and ... Read more
July 25, 2023 Data Breach Costs Reach Record High of $9.48 Million in the United States Data breach costs have increased to record levels, with the average cost of a data breach now $4.45 million globally – a 2% increase from ... Read more
July 14, 2023 Critical Zimbra Zero-Day Flaw Actively Exploited in Targeted Attacks Zimbra has urged all users of the Zimbra Collaboration Suite to take immediate action to address a critical vulnerability that is being actively exploited in ... Read more
June 19, 2023 BlackCat Ransomware Group Threatens to Leak Data Stolen in Reddit Cyberattack The BlackCat ransomware group, aka ALPHV, claims it stole 80GB of data in a Reddit cyberattack in February 2023, and is now threatening to leak ... Read more
June 19, 2023 U.S. State Department Offers $10 Million Reward for Information on Clop Ransomware Group The U.S. Department of State is offering a reward of up to $10 million for information that links the recent attacks by the Clop ransomware ... Read more
June 8, 2023 Verizon 2023 DBIR: DoS Attacks Dominate 2022 Cyberattacks and BEC Attacks Double The recently published Verizon 2023 Data Breach Investigations Report provides insights into the tactics, techniques, and procedures that cyber actors are using to gain access ... Read more
May 31, 2023 Advanced Phishing Attacks Increased by 356% in 2022 An analysis of by the cybersecurity firm Perception Point shows there was a major increase in advanced phishing attacks in 2022, which increased by 356% ... Read more