Cybercriminals have recently exploited vulnerabilities in computer systems across the globe, utilizing malware to compromise Point-of-Sale (PoS) terminals through brute-force techniques. As reported by researchers from FireEye, attackers have successfully breached 60 PoS terminals by targeting inadequately secured connections to obtain remote administration credentials. This new campaign, identified as BrutPOS,…
Cybercrime, Fraud Management & Cybercrime, Healthcare Former Employee Accused of Theft of 1 Million Patient Records Marianne Kolbasuk McGee (HealthInfoSec) • February 5, 2026 A former employee of Nuance Communications is facing heightened federal charges for allegedly downloading and storing over one million patient records from Geisinger Health on a…
Cybersecurity specialists are urging Substack users to remain vigilant against potential phishing scams following a recent data breach on the platform. The blogging service has experienced a security incident that compromised user data. In a communication sent to users, Substack CEO Chris Best disclosed that the breach resulted in the…
WordPress users employing the Advanced Custom Fields (ACF) plugin are being strongly advised to update to version 6.1.6 due to the emergence of a critical security vulnerability. The flaw, identified as CVE-2023-30777, pertains to a type of reflected cross-site scripting (XSS), which can be exploited to inject harmful scripts into…
On February 28, 2018, GitHub’s widely used code hosting service experienced a monumental distributed denial-of-service (DDoS) attack, peaking at an unprecedented 1.35 terabits per second (Tbps). This incident marks a significant milestone in the realm of cybersecurity, illustrating both the evolving nature of attack methods and the vulnerabilities that persist…
Just three days before Substack informed its users of a security breach, an alternative narrative was making rounds within underground cybercrime forums. On February 2, 2026, a user on BreachForums, operating under the alias “w1kkid,” alleged that they had scraped Substack and gathered nearly 700,000 user records. This revelation was…
Chinese hackers have reportedly breached the computer systems of the United States Office of Personnel Management (OPM), a critical government agency that manages the personal data of federal employees. According to a report from the New York Times, the intrusion has raised significant concerns among U.S. officials regarding the security…
Cybercrime, Fraud Management & Cybercrime, Healthcare Former Employee Charged with Stealing Over 1 Million Patient Records Marianne Kolbasuk McGee ( HealthInfoSec) • February 5, 2026 A former Nuance Communications employee has been indicted on additional federal charges linked to a data breach involving over 1 million patient records from Geisinger…
A recent incident has highlighted significant concerns surrounding data protection and employee privacy. The matter arose when the supervisor of a complainant unceremoniously shared a termination notice within a work-related instant messaging chat group, a decision that has since raised eyebrows within the corporate community. This notification inadvertently resulted in…