Data Privacy, Data Security, Healthcare Nearly 200,000 Warby Parker Customers Impacted by Credential-Stuffing Breaches Marianne Kolbasuk McGee (HealthInfoSec) • February 20, 2025 Image: Warby Parker The U.S. Department of Health and Human Services (HHS) has imposed a civil monetary penalty of $1.5 million on Warby Parker, a prominent eyewear retailer,…
Kroll’s Cyber Risk team has unveiled its 2025 Data Breach Outlook, indicating a dramatic shift in the landscape of cybersecurity threats. The healthcare sector emerged as the most targeted industry in 2024, accounting for a concerning 23% of all reported data breaches. This statistic reveals a notable increase from previous…
Upcoming Layoffs at NIST Raise Concerns Among Staff and Stakeholders In a significant development for the National Institute of Standards and Technology (NIST), a series of layoffs may soon be enacted, potentially impacting hundreds of employees. NIST, a non-regulatory agency under the Department of Commerce, plays a crucial role in…
As cyber fraud becomes increasingly sophisticated, businesses face heightened risks, particularly in financial processes involving Accounts Payable (AP). Employees in these positions are prime targets due to their access to sensitive funds and the authority to approve or alter payments. This vulnerability is compounded by outdated security measures and financial…
A clinical research firm based in Dallas, Texas, has suffered a significant data breach, exposing sensitive personal health records of more than 1.6 million individuals, all due to a lack of security authentication. Recent investigations revealed that a poorly configured healthcare database, which contains over 1.6 million records from medical…
Patching Neglected: A Silent Threat to Cybersecurity Resilience In the evolving landscape of cybersecurity, the neglect of patch management stands out as a critical risk factor capable of undermining organizational defenses. As mentioned in a recent article from VentureBeat, the failure to promptly address vulnerabilities through timely patching has caused…
A collaborative advisory issued by the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) highlights the persistent threat posed by Ghost ransomware, also referred to as Cring. Active since early 2021, this cybercriminal group, which operates from…
The Rise of AI-Powered Cyber Threats: A Call for Action in Cybersecurity As the cyber landscape evolves, organizations find themselves confronting an accelerating wave of artificial intelligence-driven threats that reshape the rules of engagement. With AI technologies advancing rapidly, malicious actors are harnessing these tools to execute cyberattacks at unprecedented…
Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development EIT Oxford’s Dr. Laura Gilbert Discusses AI Accountability and Responsible Adoption Rahul Neel Mani (@rneelmani) • February 20, 2025 Dr. Laura Gilbert, head of AI for Government, Ellison Institute of Technology Oxford; Tony Blair Institute for Global Change; and AI…
