Crimson Collective has announced the alleged theft of personally identifiable information (PII) belonging to over 1 million Brightspeed customers, which includes names, emails, phone numbers, and partial payment details. Brightspeed has not validated these claims and is currently investigating reports of a cybersecurity incident. Headquartered in Charlotte, North Carolina, Brightspeed…
CISA Alerts on New Vulnerabilities Affecting JetBrains and Microsoft Windows On Wednesday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) updated its Known Exploited Vulnerabilities (KEV) catalog by adding two critical security flaws that are currently under active exploitation. The new entries underscore a growing concern among cybersecurity professionals regarding…
Recent analysis by cybersecurity experts has established a compelling connection between a global cyber espionage campaign, known as Operation Sharpshooter, and a North Korean advanced persistent threat (APT) group. The investigators have concluded this attribution with a high degree of confidence, following the examination of evidence from a command-and-control (C2)…
Governance & Risk Management, The Future of AI & Cybersecurity Insights on Modernization and Identity Management from CyberArk and Accenture Experts Michael Novinson ( @MichaelNovinson) • December 8, 2025 Barak Feldman, senior vice president at CyberArk, and Rex Thexton, senior managing director at Accenture The financial services sector is rapidly…
Rising Threat of Third-Party Data Breaches: Key Insights for Business Owners In an increasingly interconnected digital landscape, third-party data breaches have emerged as a significant cybersecurity threat. These incidents occur when malicious entities compromise vendors, suppliers, or contractors, thereby gaining access to sensitive information related to their clients. A recent…
A cybersecurity analyst has raised alerts about a newly discovered phishing campaign that specifically targets mobile users. This follows a previous warning concerning a similar threat, both of which exploit social engineering tactics to deceive individuals into surrendering their login credentials. The current attack employs a sophisticated technique where malicious…
In what is considered one of the most extensive data breaches recorded, Yahoo has revealed that the personal data of over 1 billion user accounts was compromised in an incident dating back to August 2013. This breach is distinct from an earlier disclosure in September 2016 concerning the hacking of…
Fraud Management & Cybercrime, Healthcare, Industry Specific Ransomware Group Qilin Claims to Have Stolen 852 GB of Data from a Healthcare Provider Marianne Kolbasuk McGee (HealthInfoSec) • January 5, 2026 Covenant Health is alerting nearly 480,000 patients about a data breach incident in 2025. (Image: Covenant Health) A significant data…
Government Response: New Zealand’s health minister has mandated a formal inquiry into a serious cyberattack on the ManageMyHealth platform. Patient Data Compromised: The breach may involve over 100,000 patients, with claims that the stolen data includes sensitive information such as passport scans, body images, and other health records. Ransom Demands:…
