The Breach News

Navigating the Complexity of Aligning Substance Use Privacy Regulations with HIPAA

Legal expert David Holtzman, founder of HITprivacy LLC, highlighted the complexities surrounding the impending realignment of federal regulations that govern the confidentiality of substance use disorder patient records under 42 CFR Part 2, particularly in relation to HIPAA’s privacy requirements. As the updates unfold, Holtzman emphasizes that the changes are…

Read MoreNavigating the Complexity of Aligning Substance Use Privacy Regulations with HIPAA

Munson and Hagerty: Latest Traverse City Organizations Affected by Significant Data Breaches

Data Breach at Munson Healthcare Affects 120,000 Patients In a significant cybersecurity incident, Munson Healthcare recently disclosed that approximately 120,000 patients may have had their personal information compromised due to a breach involving a third-party vendor. This situation attracted the attention of Michigan’s Attorney General, Dana Nessel, who issued a…

Read MoreMunson and Hagerty: Latest Traverse City Organizations Affected by Significant Data Breaches

Cisco and VMware Issue Security Updates to Address Critical Vulnerabilities in Their Products

Recently, Cisco and VMware disclosed critical security vulnerabilities in their software that could potentially be exploited by adversaries, leading to unauthorized code execution on targeted systems. At the forefront of these vulnerabilities is a critical command injection flaw identified in Cisco Industrial Network Director, tracked as CVE-2023-20036, which has an…

Read MoreCisco and VMware Issue Security Updates to Address Critical Vulnerabilities in Their Products

France Telecom Orange Breached Again: Personal Data of 1.3 Million Customers Compromised

Data Breach at Orange: 1.3 Million Customers Affected In a significant cybersecurity incident, French telecommunications giant Orange has reported a second major data breach within a span of just three months. This latest attack has resulted in the theft of personal information belonging to 1.3 million customers from its online…

Read MoreFrance Telecom Orange Breached Again: Personal Data of 1.3 Million Customers Compromised

Concerns Arise Over Changes to Substance Abuse Privacy Regulations

As the mid-February compliance deadline looms for new regulations aimed at aligning federal laws governing the confidentiality of substance use disorder records with HIPAA, treatment facilities supported by federal funding are facing crucial uncertainties. Legal expert Aleksandra Vold, a partner at the law firm BakerHostetler, emphasized that several significant questions…

Read MoreConcerns Arise Over Changes to Substance Abuse Privacy Regulations

How Cybercriminals Exploit Deception to Compromise Your Security: The Psychological Triggers Behind Data Breaches – Urgency & Fear: “Your account will be locked!” This tactic creates panic, leading to hasty actions.

Cybercriminals Exploit Psychological Triggers to Compromise Security In an unsettling development within the cybersecurity landscape, recent reports reveal how hackers are leveraging psychological manipulation to infiltrate systems and access sensitive data. Specifically, these cybercriminals frequently utilize three core psychological triggers that prompt individuals into swift, often ill-considered actions. This strategy…

Read MoreHow Cybercriminals Exploit Deception to Compromise Your Security: The Psychological Triggers Behind Data Breaches – Urgency & Fear: “Your account will be locked!” This tactic creates panic, leading to hasty actions.

CISA Updates KEV Catalog with 3 Actively Exploited Vulnerabilities, Featuring Critical PaperCut Flaw

On Friday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) expanded its Known Exploited Vulnerabilities (KEV) catalog by adding three security flaws, highlighting the urgent need for businesses to address vulnerabilities currently being exploited in the wild. The newly identified vulnerabilities include CVE-2023-28432, a significant information disclosure issue affecting MinIO,…

Read MoreCISA Updates KEV Catalog with 3 Actively Exploited Vulnerabilities, Featuring Critical PaperCut Flaw