Equifax, a leading credit-reporting agency in the United States, is facing significant financial repercussions totaling up to $700 million in penalties due to extensive state and federal inquiries into a catastrophic data breach in 2017. This breach exposed sensitive personal and financial information of approximately 150 million Americans, representing nearly…
Federal Enforcement of Information Blocking Regulations Begins Nearly a decade after the enactment of information blocking regulations under the 21st Century Cures Act, federal enforcement efforts are finally gaining momentum. The U.S. Department of Health and Human Services (HHS) is intensifying its focus on practices that impede access to, exchange…
Lee Chan-jin, Governor of the Financial Supervisory Service, speaks at a press conference in Yeouido, Seoul, on December 1. [FSS] In the wake of significant data breaches affecting major companies like Upbit and Coupang, South Korean financial authorities are advocating for legal reforms aimed at bolstering the security frameworks of…
Apple Releases Critical Security Updates to Address Exploited Vulnerabilities Apple has issued new security updates aimed at mitigating significant flaws in its operating systems, including vulnerabilities that have reportedly been exploited in the wild. The updates come in response to the discovery of two critical memory corruption issues affecting the…
Data Breach Exposes Millions of Capital One Customers In a significant cybersecurity incident, Capital One, one of the largest credit card issuers in the United States, has reported a data breach that compromises the personal information of over 100 million credit card applicants in the U.S. and 6 million in…
In an increasingly complex cyber landscape, rural and small community hospitals are grappling with mounting cybersecurity threats, according to Jackie Mattingly, senior director at Clearwater, a consulting firm specializing in privacy and security. Faced with shrinking resources and staffing deficits, these hospitals are particularly vulnerable to sophisticated cyberattacks. Mattingly highlights…
Coupang informs customers about data breach on Nov. 30. [KIM HYUN-DONG] Coupang, a prominent South Korean e-commerce platform, has disclosed a significant data breach affecting approximately 33.7 million user accounts. The incident raises alarms over potential secondary threats, such as phishing scams and identity theft. The compromised data set includes…
VMware Addresses Critical Security Vulnerabilities VMware has issued urgent patches to remediate four notable security vulnerabilities affecting its ESXi, Workstation, and Fusion products. Among these, two critical vulnerabilities could potentially enable attackers to execute arbitrary code on affected systems. These vulnerabilities, identified as CVE-2024-22252 and CVE-2024-22253, pertain specifically to use-after-free…
On Monday, Google revealed a sophisticated cyber campaign orchestrated by a North Korean state-sponsored group aimed at security researchers involved in vulnerability research and development. This latest information highlights the increasing threat posed by adversaries adept at manipulating credible sources in the cybersecurity community. The Threat Analysis Group (TAG) at…
