The Breach News

Key Areas of Focus for HHS

Federal Enforcement of Information Blocking Regulations Begins Nearly a decade after the enactment of information blocking regulations under the 21st Century Cures Act, federal enforcement efforts are finally gaining momentum. The U.S. Department of Health and Human Services (HHS) is intensifying its focus on practices that impede access to, exchange…

Read MoreKey Areas of Focus for HHS

Regulators Shift Focus to Companies’ System Security Following Coupang Data Breaches

Lee Chan-jin, Governor of the Financial Supervisory Service, speaks at a press conference in Yeouido, Seoul, on December 1. [FSS] In the wake of significant data breaches affecting major companies like Upbit and Coupang, South Korean financial authorities are advocating for legal reforms aimed at bolstering the security frameworks of…

Read MoreRegulators Shift Focus to Companies’ System Security Following Coupang Data Breaches

Urgent: Apple Releases Critical Updates to Address Actively Exploited Zero-Day Vulnerabilities

Apple Releases Critical Security Updates to Address Exploited Vulnerabilities Apple has issued new security updates aimed at mitigating significant flaws in its operating systems, including vulnerabilities that have reportedly been exploited in the wild. The updates come in response to the discovery of two critical memory corruption issues affecting the…

Read MoreUrgent: Apple Releases Critical Updates to Address Actively Exploited Zero-Day Vulnerabilities

Why Cybersecurity Measures Remain Weak in Rural Hospitals

In an increasingly complex cyber landscape, rural and small community hospitals are grappling with mounting cybersecurity threats, according to Jackie Mattingly, senior director at Clearwater, a consulting firm specializing in privacy and security. Faced with shrinking resources and staffing deficits, these hospitals are particularly vulnerable to sophisticated cyberattacks. Mattingly highlights…

Read MoreWhy Cybersecurity Measures Remain Weak in Rural Hospitals

Authorities Warn that Hacked User Data from Coupang Could Facilitate Scams and Identity Theft

Coupang informs customers about data breach on Nov. 30. [KIM HYUN-DONG] Coupang, a prominent South Korean e-commerce platform, has disclosed a significant data breach affecting approximately 33.7 million user accounts. The incident raises alarms over potential secondary threats, such as phishing scams and identity theft. The compromised data set includes…

Read MoreAuthorities Warn that Hacked User Data from Coupang Could Facilitate Scams and Identity Theft

VMware Releases Security Updates for ESXi, Workstation, and Fusion Vulnerabilities

VMware Addresses Critical Security Vulnerabilities VMware has issued urgent patches to remediate four notable security vulnerabilities affecting its ESXi, Workstation, and Fusion products. Among these, two critical vulnerabilities could potentially enable attackers to execute arbitrary code on affected systems. These vulnerabilities, identified as CVE-2024-22252 and CVE-2024-22253, pertain specifically to use-after-free…

Read MoreVMware Releases Security Updates for ESXi, Workstation, and Fusion Vulnerabilities

North Korean Hackers Target Security Experts to Steal Confidential Research

On Monday, Google revealed a sophisticated cyber campaign orchestrated by a North Korean state-sponsored group aimed at security researchers involved in vulnerability research and development. This latest information highlights the increasing threat posed by adversaries adept at manipulating credible sources in the cybersecurity community. The Threat Analysis Group (TAG) at…

Read MoreNorth Korean Hackers Target Security Experts to Steal Confidential Research

Binance KYC Data Breach: Crypto Exchange Offers $290,000 Reward for Information on Blackmailer

Massive KYC Data Threat Targets Binance Amid Ransom Demands Malta-based cryptocurrency exchange Binance is currently grappling with a severe security threat, following claims from an unidentified hacker that they have compromised the Know Your Customer (KYC) data of a significant number of its clientele. The attacker is demanding a ransom…

Read MoreBinance KYC Data Breach: Crypto Exchange Offers $290,000 Reward for Information on Blackmailer