Data Breach Notification, Data Security, Healthcare Ransomware Group Rhysida Claims to Have Leaked 3.7TB of Data From Maryland Hospital System Marianne Kolbasuk McGee (HealthInfoSec) • December 18, 2025 MedStar Health is alerting patients about a hacking incident involving compromised data. Ransomware group Rhysida claims to have obtained the entity’s stolen…
Data Breach Report: Former Employee Misuses Patient Information at Evoke Wellness In a significant breach of patient confidentiality, a former employee of Evoke Wellness has been found to have unlawfully obtained and misused sensitive patient data. This incident raises critical concerns regarding data security practices within healthcare organizations and the…
The threat actor identified as UAC-0099 has intensified its campaign targeting Ukraine, utilizing a critical vulnerability in the WinRAR software to distribute the malware variant known as LONEPAGE. This method highlights a significant shift in tactics, emphasizing the exploitation of existing software vulnerabilities to facilitate attacks. According to cybersecurity firm…
The European Union has enacted its inaugural sanctions aimed at individuals and entities implicated in cyber-attacks that target European citizens and member states. This unprecedented directive has identified six individuals and three entities linked to various cyber intrusions, including notable incidents such as the WannaCry ransomware attack and NotPetya malware…
Recent investigations by mobile security experts have unveiled extensive vulnerabilities within Firebase databases used by numerous iOS and Android applications. These deficiencies have exposed over 100 million data records, including unencrypted passwords, user identifiers, geographical data, and in certain instances, sensitive financial information related to banking and cryptocurrency transactions. As…
Cybercrime, Fraud Management & Cybercrime, Incident & Breach Response Also: Texas AG Sues Smart TV Manufacturers, Fortinet SSO Flaws Pooja Tikekar (@PoojaTikekar) • December 18, 2025 Image: Shutterstock/ISMG This week, Information Security Media Group presents a roundup of significant cybersecurity breaches globally. Major developments include a leadership transition at Coupang,…
University of Sydney Hacked: Compromised Data of Students and Staff Uncovered In a significant cybersecurity breach, the University of Sydney has reported unauthorized access to the personal data of its students and staff. This incident raises urgent concerns regarding the protection of sensitive information within educational institutions, as cyber threats…
New Phishing Campaign Deploys Nim-Based Malware via Microsoft Word Documents A recently uncovered phishing campaign is exploiting Microsoft Word documents as bait to deliver backdoor malware written in the Nim programming language. This development poses significant challenges for cybersecurity experts, as malware created in less common languages can hinder research…
ICE Expands Cybersecurity Monitoring Amid Heightened Internal Leak Investigations As the Biden administration intensifies efforts to address internal leaks, Immigration and Customs Enforcement (ICE) is quietly renewing a crucial cybersecurity contract focused on monitoring and preserving employee activity within its systems. The operation, termed Cyber Defense and Intelligence Support Services,…
