Recent reports have highlighted a growing cybersecurity threat, notably linked to the Robinhood ransomware. Given this alarming development, organizations are urged to assess their defenses promptly. The question confronting IT and security professionals is: how best to determine their system’s resilience to such threats? Historically, businesses have leveraged various methods…
Data Privacy, Data Security, Fraud Management & Cybercrime Class Action Lawsuit Claims Web Trackers Misused Patient Data Marianne Kolbasuk McGee (HealthInfoSec) • December 2, 2025 Kaiser Permanente has agreed to pay up to $47.5 million to resolve class action litigation related to its website tracking activities. Kaiser Permanente has reached…
Recent statements from House Democrats have attributed data security issues at the Consumer Financial Protection Bureau (CFPB) to the Trump administration’s attempts to limit the agency’s powers. However, a significant data breach occurred during the Biden administration when the CFPB was fully staffed, raising questions about the agency’s internal security…
Recent Security Flaw Uncovered in LiteSpeed Cache Plugin for WordPress A significant security vulnerability has been identified in the LiteSpeed Cache plugin for WordPress, which could enable unauthorized users to escalate their privileges on affected sites. This flaw, designated as CVE-2023-40000, was discovered in October 2023 during an update to…
Recent investigations reveal an escalating malware campaign targeting network-attached storage (NAS) devices operating on Linux systems. The attacks exploit widely reported vulnerabilities, co-opting these devices into an Internet Relay Chat (IRC) botnet for the purposes of launching distributed denial-of-service (DDoS) attacks and mining Monero cryptocurrency. The malware variant involved is…
The Everest ransomware group has recently made claims regarding a significant breach involving ASUS, one of the largest global hardware and electronics manufacturers. In a post on their dark web leak site, the group asserts they possess over 1TB of stolen data from ASUS, which reportedly includes camera source code.…
MongoDB Unveils Enhanced Security Features at Developer Conference In a recent developer conference held in New York, MongoDB announced the upcoming release of its database management software, MongoDB 4.2, which will introduce several advanced features, most notably Field Level Encryption (FLE), Distributed Transactions, and Wildcard Indexes. These enhancements aim to…
Artificial Intelligence & Machine Learning, Cybercrime, Fraud Management & Cybercrime Chinese Developer Linked to Coupang Data Breach Investigation Mathew J. Schwartz (euroinfosec) • December 2, 2025 Image: Shutterstock South Korea’s leading e-commerce platform, Coupang, has reported a substantial data breach that potentially exposed the personal data of 33.7 million customers—a…
AT&T Reaches Settlement in Major Data Breach Case In a significant development for consumers, AT&T has announced the finalization of its settlement related to a series of data breaches that affected its customers. This settlement, which totals up to $177 million, will provide affected individuals with compensation ranging from $100…
