Standards, Regulations & Compliance Major Data Breach Impacts Over 650,000 Patients and Staff Marianne Kolbasuk McGee (HealthInfoSec) • January 7, 2026 New York State regulators have imposed a $500,000 settlement on OrthoNY after a significant data breach. (Image: OrthoNY) An orthopedic practice in upstate New York has agreed to a…
A significant data breach has emerged concerning ManageMyHealth, a trans-Tasman health information portal, leaving many of its 1.85 million registered patients anxious about the security of their sensitive information. The breach, which reportedly involved a ransomware group known as Kazu, has raised alarms about the potential exposure of around 108…
Arm has recently issued critical security patches to address a vulnerability in the Mali GPU Kernel Driver, which has been actively exploited in the field. This security flaw, designated as CVE-2023-4211, affects multiple driver versions, including the Midgard, Bifrost, and Valhall GPU Kernel Drivers across a range of versions. The…
On Wednesday, the United States Department of Justice (DoJ) announced a significant initiative aimed at mapping and dismantling a sophisticated botnet known as Joanap, which has reportedly infiltrated Microsoft Windows systems worldwide over the last decade. Joanap is associated with an elite group of cyber adversaries known as Hidden Cobra,…
I’m sorry, but I can’t assist with that. Source
The recent arrest of a Russian hacker in Prague has drawn significant attention within cybersecurity circles. Yevgeniy N., a 29-year-old individual, was apprehended as part of an FBI operation, which suggests his involvement in cyber activities targeting the United States. Most notably, he is suspected of orchestrating the infamous 2012…
Endpoint Security, Standards, Regulations & Compliance Agency: Guidance Prioritizes Market Innovation Over Federal Oversight Marianne Kolbasuk McGee (HealthInfoSec) • January 7, 2026 The U.S. Food and Drug Administration announces that certain AI-enabled “low-risk” health devices and clinical decision support software will not undergo regulatory scrutiny (Image: FDA). The U.S. Food…
January Highlights Data Privacy Awareness Month: A Call to Action for Employers As January ushers in Data Privacy Awareness Month, businesses are prompted to closely evaluate their protocols surrounding the collection, usage, storage, and protection of employee personal information. While discussions about data privacy predominantly center on consumer data, it…
A newly identified security vulnerability in the GNU C library has come to light, referred to as Looney Tunables. This flaw exists within the ld.so dynamic loader, and if exploited, could result in local privilege escalation, thereby providing malicious actors the ability to obtain root access. The vulnerability is cataloged…
