Data Breach Notification, Data Privacy, Data Security HHS Launches New Enforcement Program to Uphold Patient Confidentiality in Line with HIPAA By Marianne Kolbasuk McGee (HealthInfoSec) • February 16, 2026 The HHS Office for Civil Rights has introduced a new breach reporting portal focused on the privacy of substance use disorder…
LockBit Ransomware: Version 5.0 Targets Windows, Linux, and ESXi Systems In recent developments within the cybersecurity landscape, the notorious LockBit ransomware group has unleashed a new and highly sophisticated variant, version 5.0. This latest iteration is designed to target a multitude of operating systems, including Windows, Linux, and virtual environments…
F5 Networks has issued a warning about a critical vulnerability affecting its BIG-IP appliances, which poses risks of denial-of-service (DoS) attacks or arbitrary code execution. This vulnerability stems from the iControl Simple Object Access Protocol (SOAP) interface, impacting several versions of BIG-IP, specifically versions 13.1.5, 14.1.4.6 to 14.1.5, 15.1.5.1 to…
Massive Malvertising Campaign Targets Users Through Pornhub: Cybersecurity Risks Revealed A large-scale malvertising initiative alarming cybersecurity experts has recently been reported by Proofpoint, a prominent cybersecurity firm. This campaign, still active after more than a year, has exposed countless internet users across the United States, Canada, the United Kingdom, and…
Malware Incident at Japan’s Monju Nuclear Power Plant Raises Cybersecurity Concerns In a recent incident, Japan’s Monju Nuclear Power Plant became the unwitting target of a malware attack due to a routine software update on January 2. A plant employee inadvertently installed malicious software while updating a video playback program.…
Encryption & Key Management, Identity & Access Management, Security Operations ‘Malicious Server Threat Model’ Threatens ‘Zero Knowledge Encryption’ Guarantees Mathew J. Schwartz (euroinfosec) • February 16, 2026 Image: Pniti_Studio/Shutterstock Recent accusations from a group of Swiss and Italian security researchers challenge the advertised security of popular cloud-based password managers, namely…
Security Compromise Threatens Millions of WordPress Websites A significant security breach has placed millions of WordPress websites at risk, following the discovery of malicious code hidden within various popular plugins. Security researchers have documented a troubling vulnerability that allows cybercriminals to create unauthorized administrator accounts, thereby compromising the integrity of…
Atlassian Issues Security Patches for Critical Jira Vulnerability Atlassian has rolled out essential updates to address a significant security vulnerability in its Jira Service Management Server and Data Center products. This flaw could enable an attacker to impersonate another user and gain unauthorized access to affected instances, marking a substantial…
A new phishing scam targeting Facebook users has emerged, exploiting the platform’s “Trusted Contacts” feature to deceive victims into compromising their own accounts. Reports indicate that attackers are leveraging previously compromised accounts of friends to initiate urgent requests for recovery assistance, creating a facade of legitimacy that can trick even…