Recent investigations have unveiled a collection of suspicious browser extensions that collectively amassed around four million installations, raising significant concerns within the cybersecurity community. A comprehensive analysis revealed that the vast majority of these extensions operate under a layer of obfuscation, a tactic that serves to obscure their true functionality…
Government, Industry Specific Senior Cybersecurity and Technology Officials Depart from the Interior Department Chris Riotta (@chrisriotta) • April 11, 2025 (Image: Shutterstock) The U.S. Department of the Interior has removed several high-ranking cybersecurity and technology officials amid a contentious situation involving the Department of Government Efficiency. This follows…
Data Breach Investigation Launched by PDPC Following Unauthorized Access at Bangchak Bangchak, a prominent player in the oil industry, has confirmed that it has effectively blocked unauthorized access to its systems following a data breach. The company is now focused on addressing the incident comprehensively to prevent any future occurrences.…
NSO Group’s Efforts for Reintegration Amidst Ongoing Cybersecurity Concerns The Israeli spyware company NSO Group, notorious for its sale of specialized hacking tools, has been blacklisted by the U.S. Department of Commerce since 2021. Despite this challenging environment, investigations reveal the firm’s efforts to re-establish its presence in the U.S.…
Data Privacy, Data Security, Healthcare HHS Highlights Security Vulnerabilities in Data Breach Affecting Nearly 300,000 Individuals Marianne Kolbasuk McGee (HealthInfoSec) • April 11, 2025 (Image: Northeast Radiology) A medical imaging firm operating in New York and Connecticut has agreed to a settlement of $350,000 with federal regulators due to potential…
Attorneys associated with ClassAction.org are currently investigating the potential for filing a class action lawsuit stemming from a significant data breach involving the American Association of Colleges of Osteopathic Medicine (AACOM). The breach is reported to have compromised the sensitive personal information of over 67,000 individuals, according to a statement…
Storm-2372, a Russian state-backed APT group, utilizes device code phishing to circumvent Multi-Factor Authentication (MFA), targeting sectors including government, technology, finance, defense, and healthcare. Recent research by cybersecurity analysts at SOCRadar has uncovered an evolving tactic employed by the notorious Russian advanced persistent threat group, Storm-2372. This group has demonstrated…
The frequency of ransomware attacks has intensified in recent months, driven primarily by cybercriminals employing increasingly aggressive tactics such as double and triple extortion. These strategies compel victims not only to pay a ransom to regain system access but also to prevent the public disclosure of sensitive stolen data. A…
Cybercrime, Data Breach Notification, Data Security Laboratory Services Cooperative Reports Breach Affecting 1.6 Million Individuals Marianne Kolbasuk McGee (HealthInfoSec) • April 11, 2025 A medical testing laboratory serving Planned Parenthood clinics across 31 states reports that a hacking incident has impacted 1.6 million patients and associated individuals. (Image: Getty…
