Finance & Banking, Fraud Management & Cybercrime, Fraud Risk Management Incident Detected in March 2024 Marks Another Breach of Medical Billing Companies Marianne Kolbasuk McGee (HealthInfoSec) • March 28, 2025 Vendors providing revenue cycle management software and services manage vast amounts of patient health and financial information, making them…
Major Data Breach Involving 2.87 Billion Twitter Users Exposes Vulnerabilities A substantial data leak affecting approximately 2.87 billion users of Twitter, now rebranded as X, has emerged on Breach Forums. The information has been allegedly linked to a former employee of X, who is reported to have exfiltrated the data…
In a landscape increasingly marked by digital vulnerabilities, high-ranking government officials are facing unprecedented threats from sophisticated online adversaries, particularly nation-state hackers. Recent revelations indicate that while millions of everyday users are often caught in data breaches and maintain poor privacy settings, officials are subject to a broader array of…
Understanding the Risks of Personal Data Exposure in Today’s Digital Landscape As users access websites, they are often prompted to input their login credentials, many times with an option to save this information for convenience. While this feature provides ease of access, it poses significant security risks by storing usernames…
Fraud Management & Cybercrime, Ransomware, Video Also: Rapid7’s Boardroom Shake-Up, China’s Tactical Shift in Cyber Operations Anna Delaney (annamadeline) • March 28, 2025 Clockwise, from top left: Anna Delaney, Mathew Schwartz, Michael Novinson, and Tony Morbin. In this week’s analysis, ISMG editors delve into the contrasting strategies of ransomware attacks,…
Investigation Underway into Data Breach at St. Joseph’s College of Maine St. Joseph’s College of Maine is currently under investigation following a significant data breach that has raised concerns among stakeholders regarding the security of sensitive information. The New York-based law firm Levi & Korsinsky, LLP, has been enlisted to…
PCI DSS 4.0.1 Implementation: An Urgent Call to Secure Non-Human Identities As the deadline for compliance with the Payment Card Industry Data Security Standard (PCI DSS) version 4.0.1 looms on March 31, organizations must confront heightened security mandates, particularly concerning Non-Human Identities (NHIs). These identities include critical elements such as…
Finance & Banking, Fraud Management & Cybercrime, Fraud Risk Management Insights from Jason Costain on the Learning Opportunities Between Traditional and Digital Banks Suparna Goswami (gsuparna) • March 28, 2025 Jason Costain, former head of fraud analytics and threat management, NatWest Group Digital-only banks are often lauded for their rapid…
Phishing Attack Targets Creator of HaveIBeenPwned, Highlighting Evolving Threats This week, Troy Hunt, the founder of the widely-used data breach checking service HaveIBeenPwned, fell victim to a sophisticated phishing attack that compromised his personal Mailchimp account. The incident has raised concerns about the security of even established figures in the…
