Data Breach at Orange: 1.3 Million Customers Affected In a significant cybersecurity incident, French telecommunications giant Orange has reported a second major data breach within a span of just three months. This latest attack has resulted in the theft of personal information belonging to 1.3 million customers from its online…
As the mid-February compliance deadline looms for new regulations aimed at aligning federal laws governing the confidentiality of substance use disorder records with HIPAA, treatment facilities supported by federal funding are facing crucial uncertainties. Legal expert Aleksandra Vold, a partner at the law firm BakerHostetler, emphasized that several significant questions…
Cybercriminals Exploit Psychological Triggers to Compromise Security In an unsettling development within the cybersecurity landscape, recent reports reveal how hackers are leveraging psychological manipulation to infiltrate systems and access sensitive data. Specifically, these cybercriminals frequently utilize three core psychological triggers that prompt individuals into swift, often ill-considered actions. This strategy…
On Friday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) expanded its Known Exploited Vulnerabilities (KEV) catalog by adding three security flaws, highlighting the urgent need for businesses to address vulnerabilities currently being exploited in the wild. The newly identified vulnerabilities include CVE-2023-28432, a significant information disclosure issue affecting MinIO,…
Recent developments have unveiled a serious cyber threat affecting various operating systems, including Windows, macOS, Solaris, and Linux. The emergence of a new genre of ‘undetectable’ spying malware underscores the evolving nature of cybercrime, raising concerns for users across these platforms. Last week, an investigative report by EFF and Lookout…
In January 2026, a construction firm in the UK uncovered a notorious digital intruder on its Windows Server, identified by security experts from the eSentire Threat Response Unit (TRU) as Prometei, a Russian-affiliated botnet that has been operational since 2016. While Prometei primarily focuses on mining Monero cryptocurrency, TRU’s investigation…
Bitly, a leading URL shortening service, is currently grappling with a significant data breach that puts user account credentials at risk. In a blog post released yesterday, the company alerted its users that their account details may have been compromised in an incident involving potential unauthorized access to sensitive information.…
Merav Vered Vice President, GRC & Strategic Initiatives, Vendict Merav Vered holds the position of Vice President for Governance, Risk Management, and Compliance (GRC) and Strategic Initiatives at Vendict. In this role, she plays a pivotal part in overseeing the GRC team while developing methodologies that integrate seamlessly with Vendict’s…
Transforming Contracts in the Wake of Data Privacy Legislation The Indian hospitality sector is currently experiencing a profound reassessment of its contractual agreements, catalyzed by the introduction of the Digital Personal Data Protection (DPDP) Act, 2023. Hotel operators are pursuing renegotiations of existing contracts with global partners and booking platforms,…