The Breach News

Adopting a Threat-Responsive Strategy for Vulnerability Management

Cyber threats are evolving rapidly, necessitating a more than just basic system patching approach to vulnerability management. As part of Cyber Rhino Threat Week—scheduled from December 9-13, 2024—that aimed to disseminate threat intelligence insights and best practices among customers, partners, and the broader industry, a panel discussion was held to…

Read MoreAdopting a Threat-Responsive Strategy for Vulnerability Management

What Caused the Breach Total to Soar to 190 Million?

Data Breach Notification, Data Security, Fraud Management & Cybercrime Experts Discuss the Complexity of UnitedHealth Group’s Recent Data Breach Assessment Marianne Kolbasuk McGee (HealthInfoSec) • January 28, 2025 UnitedHealth Group has announced the data breach has affected approximately 190 million individuals due to the ransomware attack on Change Healthcare in…

Read MoreWhat Caused the Breach Total to Soar to 190 Million?

Vulnerabilities in Azure Key Vault May Expose Sensitive Data Following Entra ID Breach

Security Breach Exposes Vulnerabilities in Azure Key Vault Access Policies In a recent analysis, cybersecurity professionals uncovered significant vulnerabilities associated with Azure Key Vault’s access policies following the compromise of Entra ID (formerly Azure Active Directory) credentials. The detailed walkthrough illustrates how attackers can manipulate these access policies to retrieve…

Read MoreVulnerabilities in Azure Key Vault May Expose Sensitive Data Following Entra ID Breach

Hackers Announce Second Breach at HP Enterprise and Aim to Sell Access

IntelBroker, a hacker notorious for previous cyber incidents, has once again targeted Hewlett-Packard Enterprise (HPE), claiming to have infiltrated the company’s internal systems. This latest assertion involves the theft of around 500 MB of data from HPE’s repositories; while this amount is smaller than typical breaches, it raises significant security…

Read MoreHackers Announce Second Breach at HP Enterprise and Aim to Sell Access

Whitehall at Risk: Cyber Attacks and Malware Threats Persist

Recent reports have brought to light serious cybersecurity vulnerabilities within Whitehall, the hub of British government administration located in central London. The National Audit Office (NAO) has highlighted that outdated IT infrastructure is leaving critical government departments susceptible to cyber threats. This reliance on antiquated systems coupled with a shortage…

Read MoreWhitehall at Risk: Cyber Attacks and Malware Threats Persist

DeepSeek’s Growth Highlights the Limitations of U.S. Chip Regulations

Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development, Standards, Regulations & Compliance China’s DeepSeek AI Model Ignites Policy Discourse in the U.S. Amid Rising Industry Anxiety Chris Riotta (@chrisriotta) • January 28, 2025 DeepSeek, a Chinese AI startup, has caught U.S. competitors off-guard. (Image: Shutterstock) A range of…

Read MoreDeepSeek’s Growth Highlights the Limitations of U.S. Chip Regulations

MGM to Compensate Victims with $45 Million Following 2019 Data Breach and 2023 Ransomware Incident

MGM Resorts International has reached a settlement agreement of $45 million to address multiple class action lawsuits stemming from a significant data breach in 2019 and a ransomware attack that occurred in 2023. This agreement was announced in a federal court in Las Vegas on January 21, with a final…

Read MoreMGM to Compensate Victims with $45 Million Following 2019 Data Breach and 2023 Ransomware Incident

Apple Chips Vulnerable to Hacking, Potentially Exposing Secrets from Gmail, iCloud, and More

Apple’s latest generation of A- and M-series chips, which power devices such as Macs, iPhones, and iPads, has been found to harbor critical vulnerabilities that can expose users’ sensitive data, including credit card information and location details accessed through browsers like Chrome and Safari. Notable affected sites include iCloud Calendar,…

Read MoreApple Chips Vulnerable to Hacking, Potentially Exposing Secrets from Gmail, iCloud, and More