Artificial Intelligence & Machine Learning, General Data Protection Regulation (GDPR), Next-Generation Technologies & Secure Development Privacy Concerns Arise from Data Storage Practices in China Akshaya Asokan (asokan_akshaya) • January 29, 2025 Residents of a Tuscan village can no longer access DeepSeek from Apple’s or Google’s app stores. (Image: Shutterstock) In…
Data Breach at Daytrip Exposes Customer Information Travel service Daytrip has confirmed a significant data breach affecting approximately 470,000 customer records and over 762,000 travel orders. This incident raises alarms about the security protocols of third-party vendors, as the leak reportedly occurred through a subcontractor responsible for managing an unsecured…
Phishing attacks targeting insecure communication channels have become increasingly prevalent, allowing cybercriminals to deceive victims into unwittingly divulging sensitive information. A particularly worrying evolution in this strategy is the emergence of “Mishing,” where attackers specifically exploit mobile devices through phishing links disseminated via SMS or popular messaging platforms like WhatsApp,…
Insights from Identity Theft Resource Center’s Lee on Lessons from 2024’s Major Cyber Breaches Anna Delaney (annamadeline) • January 29, 2025 James E. Lee, President, Identity Theft Resource Center In 2024, the cybersecurity landscape witnessed an unprecedented surge in data breaches, with a staggering 1.7 billion notices dispatched to victims—a…
Trial of Alleged Neofascist Plotter Highlights Cybersecurity Concerns Brandon Russell, a notable figure in the recent American neofascist movement, is facing trial this week for allegedly planning an attack to disrupt Baltimore’s power grid, potentially inciting a race war. The 29-year-old is identified as the co-founder of the Atomwaffen Division,…
Cyber threats are evolving rapidly, necessitating a more than just basic system patching approach to vulnerability management. As part of Cyber Rhino Threat Week—scheduled from December 9-13, 2024—that aimed to disseminate threat intelligence insights and best practices among customers, partners, and the broader industry, a panel discussion was held to…
Data Breach Notification, Data Security, Fraud Management & Cybercrime Experts Discuss the Complexity of UnitedHealth Group’s Recent Data Breach Assessment Marianne Kolbasuk McGee (HealthInfoSec) • January 28, 2025 UnitedHealth Group has announced the data breach has affected approximately 190 million individuals due to the ransomware attack on Change Healthcare in…
Security Breach Exposes Vulnerabilities in Azure Key Vault Access Policies In a recent analysis, cybersecurity professionals uncovered significant vulnerabilities associated with Azure Key Vault’s access policies following the compromise of Entra ID (formerly Azure Active Directory) credentials. The detailed walkthrough illustrates how attackers can manipulate these access policies to retrieve…
IntelBroker, a hacker notorious for previous cyber incidents, has once again targeted Hewlett-Packard Enterprise (HPE), claiming to have infiltrated the company’s internal systems. This latest assertion involves the theft of around 500 MB of data from HPE’s repositories; while this amount is smaller than typical breaches, it raises significant security…
