Data Privacy, Data Security, Healthcare March Breach Affected Nearly 5.6 Million; NextGen Proposed Settlement Also Reached Marianne Kolbasuk McGee (HealthInfoSec) • October 24, 2025 Yale New Haven Health System, Connecticut’s largest healthcare network, has agreed to pay $18 million to settle class action litigation stemming from a March breach impacting…
A significant security breach has come to light, involving the exposure of 183 million email accounts along with their corresponding passwords. This data, reportedly stemming from a malware-driven theft, has been added to the renowned breach-notification platform, Have I Been Pwned, run by cybersecurity expert Troy Hunt. Following its discovery…
The Lazarus Group, an advanced persistent threat (APT) linked to the North Korean government, has initiated two distinct supply chain attack campaigns aimed at infiltrating corporate networks and exploiting various downstream entities. Recent intelligence indicates that this group utilized the MATA malware framework along with backdoors known as BLINDINGCAN and…
Amazon Web Services (AWS) faced significant downtime on Monday due to Domain Name System (DNS) resolution issues that triggered widespread disruptions across various online platforms. This incident underscored the global dependency on large cloud service providers, known as hyperscalers, and highlighted the complications both for these companies and their clients…
Coinbase, a prominent cryptocurrency exchange based in the United States, recently disclosed a cybersecurity incident that compromised the personal information of some of its employees. On February 5, 2023, the company reported that its robust cyber controls successfully thwarted the attacker from gaining direct access to its systems, effectively preventing…
Litigation, Network Firewalls, Network Access Control, Security Operations Pension Funds Accuse Fortinet of Misleading Market with Optimistic Refresh Forecast Michael Novinson (MichaelNovinson) • October 24, 2025 A pair of class action lawsuits have recently been filed against Fortinet, alleging violations of federal securities laws through misleading claims about a “record”…
Recent analyses indicate a troubling rise in cyber intrusions, fueled by the proliferation of criminal tools and insufficient defenses. A recent episode of The Indicator from Planet Money delves into how data breaches are accelerating, the decreasing costs of entry for attackers, and the implications this holds for patients, consumers,…
Recently patched security vulnerabilities affecting Progress Kemp LoadMaster and VMware vCenter Server have been reported as actively exploited in the wild. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) highlighted the severity of these issues on Monday, adding CVE-2024-1212—which has received a maximum severity score of 10.0—to its Known Exploited…
A recent cyberattack in Iran has severely disrupted operations at petrol stations nationwide, leading to significant fuel supply issues and causing electronic billboards to broadcast messages that criticize the government’s management of gasoline distribution. Social media platforms have seen a surge of posts and videos depicting messages such as “Khamenei!…
