Massive Supply Chain Attack Targets ASUS Users Worldwide In a significant cybersecurity breach, researchers have identified a massive supply chain attack that compromised over one million computers manufactured by Taiwanese tech giant ASUS. This incident follows a troubling pattern of high-profile breaches, including the notorious CCleaner hack that impacted millions…
Californians Gain New Tools to Combat Data Brokers as New Law Takes Effect At the start of this year, California implemented a robust legal framework aimed at curbing the extensive practices of data brokers who accumulate and monetize personal information. This law is regarded as one of the strictest measures…
Governance & Risk Management, Remote Workforce Research Highlights Surge in Cyber Attacks During Pandemic Greg Sirico • January 5, 2026 Image: Summit Art Creations/Shutterstock The COVID-19 pandemic served as a critical test of the resilience of secure networking practices, particularly as businesses rapidly transitioned to remote work environments. The swift…
The hacking group known as Crimson Collective has reportedly gained access to the personal information of over one million residential customers from the U.S. fiber broadband provider Brightspeed. This claim was made in a post on January 4 via Telegram, where the group referenced a previous breach involving Red Hat…
Recent disclosures have revealed a significant security vulnerability affecting the libcue library, which supports GNOME Linux systems. This flaw, tracked as CVE-2023-43641, has been assigned a high CVSS score of 8.8, indicating its potential severity. The vulnerability stems from memory corruption associated with the libcue library, specifically affecting versions 2.2.1…
Recent developments reveal a significant cyber breach affecting ASUS customers, attributed to a sophisticated supply chain attack. Kaspersky, a Russian cybersecurity company, disclosed parts of this incident last week, though it withheld the complete list of hardcoded MAC addresses embedded in the malicious code targeting specific users. In lieu of…
In a significant development within the realm of cybersecurity, it has been reported that LeakedSource, a breach notification service infamous for aggregating and disclosing vast amounts of compromised user data, has gone offline following an alleged law enforcement raid. This site, which came into prominence in late 2015, has been…
Data Breach Notification, Data Security, Fraud Management & Cybercrime Insurer’s Breach Likely to Be the Largest Reported Health Data Breach in 2025 Marianne Kolbasuk McGee (HealthInfoSec) • January 2, 2026 Aflac is notifying 22.65 million individuals that their sensitive data may have been stolen in a June 2025 hacking incident.…
Data Breach Exposes Ledger Customers’ Information Ledger, a prominent provider of cryptocurrency hardware wallets, has confirmed that customer names and contact details were compromised following a data breach involving one of its payment processing partners. This incident marks yet another challenge for Ledger, which has faced multiple breaches in the…
