The Breach News

HHS OCR Initiates Latest Series of HIPAA Compliance Audits

Healthcare, HIPAA/HITECH, Industry Specific HIPAA Compliance Audits Target Security Rule Provisions Amid Rising Cyber Threats Marianne Kolbasuk McGee (HealthInfoSec) • March 25, 2025 Image: Getty Images The U.S. Department of Health and Human Services (HHS) has initiated HIPAA compliance audits of covered entities and business associates, marking the first round…

Read MoreHHS OCR Initiates Latest Series of HIPAA Compliance Audits

Company Partnering with Dayton Children’s Hospital Reports Data Breach

— In a recent security incident, a company responsible for pharmaceutical operations at Dayton Children’s Hospital has reported a data breach affecting sensitive employee information. The breach was identified by CPS Solutions, which disclosed that unauthorized access was gained to one of its employee email accounts. Investigations revealed that this…

Read MoreCompany Partnering with Dayton Children’s Hospital Reports Data Breach

Medusa Ransomware Neutralizes Anti-Malware Solutions Using Compromised Certificates

Cybercriminals Leverage Custom Drivers to Evade Security Measures in MEDUSA Ransomware Campaign Cybercriminals are increasingly employing custom and compromised drivers to circumvent endpoint detection and response (EDR) systems, thereby enabling undetected malicious activities. Elastic Security Labs (ESL) has uncovered a financially motivated campaign utilizing MEDUSA ransomware that deploys a loader…

Read MoreMedusa Ransomware Neutralizes Anti-Malware Solutions Using Compromised Certificates

Cyber Threats Propel CISOs to Ride the Wave of AI Excitement

Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development Gartner Highlights How Hype Can Propel Organizations Forward Brian Pereira (creed_digital) • March 25, 2025 Deepti Gopal and Dennis Xu from Gartner at the Gartner Security and Risk Management Summit in Mumbai Despite significant investments in artificial intelligence (AI), many…

Read MoreCyber Threats Propel CISOs to Ride the Wave of AI Excitement

Data Breach at Numotion Affects Close to 500,000 Individuals – SecurityWeek

Numotion Data Breach Affects Nearly 500,000 Individuals In a significant cybersecurity incident, Numotion, a prominent provider of complex rehabilitation technology, has reported a data breach that has impacted nearly 500,000 individuals. The company disclosed that unauthorized access to its systems may have resulted in the exposure of sensitive personal information…

Read MoreData Breach at Numotion Affects Close to 500,000 Individuals – SecurityWeek

Rapid7 Reaches Agreement with Activist Investor, Expands Board by Three Members

Governance & Risk Management, Security Operations Rapid7 and Jana Partners Forge Cooperation Deal, Expanding Board and Tightening Governance Michael Novinson (MichaelNovinson) • March 24, 2025 Rapid7 has reached an agreement with activist investor Jana Partners, resulting in the addition of three new members to its board of directors and fostering…

Read MoreRapid7 Reaches Agreement with Activist Investor, Expands Board by Three Members