The Breach News

Edelson Lechtzin LLP Conducts Investigation

Data Privacy Violations Under Investigation at CODAC Behavioral Health EDELSON, Pa. – February 7, 2025 – Edelson Lechtzin LLP, a prominent national class action law firm, has launched an investigation into potential data privacy violations involving CODAC, Inc. operating as CODAC Behavioral Health. The examination follows the organization’s discovery of…

Read MoreEdelson Lechtzin LLP Conducts Investigation

Exploitation of 7-Zip 0-Day Vulnerability During Russia’s Ongoing Invasion of Ukraine

Zero-Day Vulnerability Discovered in 7-Zip Amid Ongoing Conflict in Ukraine In recent developments, security researchers have identified a zero-day vulnerability in the widely used 7-Zip archiving application, which has reportedly been exploited in connection with Russia’s military operations in Ukraine. The vulnerability poses a significant security risk, as it allows…

Read MoreExploitation of 7-Zip 0-Day Vulnerability During Russia’s Ongoing Invasion of Ukraine

Could Accessing CMS Data via DOGE Result in HIPAA Violations?

Data Governance, Data Privacy, Data Security Experts Express Concern Over Musk’s Team and Health Data Access Marianne Kolbasuk McGee (HealthInfoSec) • February 6, 2025 The White House’s DOGE initiative, spearheaded by Elon Musk, has begun accessing federal IT systems to investigate fraud, raising significant privacy concerns (Image: CMS) Privacy experts…

Read MoreCould Accessing CMS Data via DOGE Result in HIPAA Violations?

Impending Deadline for Claims in $21 Million Settlement Over Major Insurance Firms’ Data Breach – PennLive

Deadline Approaches for Claims in $21M Settlement Following Major Insurance Data Breach A significant cybersecurity incident involving major insurance firms has led to a $21 million settlement, with the deadline for filing claims fast approaching. This breach has raised alarm among businesses and individuals alike, highlighting the ongoing vulnerabilities in…

Read MoreImpending Deadline for Claims in $21 Million Settlement Over Major Insurance Firms’ Data Breach – PennLive

DeepSeek iOS App Transmits Data Without Encryption to ByteDance-Controlled Servers

Recent findings by security firm NowSecure have raised significant concerns about the security practices of certain applications. Thomas Reed, the staff product manager for Mac endpoint detection and response at Huntress, highlighted that the practice of disabling App Transport Security (ATS) presents serious risks. In an online interview, Reed emphasized…

Read MoreDeepSeek iOS App Transmits Data Without Encryption to ByteDance-Controlled Servers

Why Major Cybersecurity Firms Are Eager to Acquire DSPM Startups

Data Security Posture Management Gains Traction Amid Consolidation in Cybersecurity Landscape Recent developments in the cybersecurity realm highlight the growing importance of Data Security Posture Management (DSPM), a critical area for organizations seeking enhanced visibility into their cloud environments. Yet, experts caution that without the integration of security controls and…

Read MoreWhy Major Cybersecurity Firms Are Eager to Acquire DSPM Startups

Common Data Security Pitfalls and Strategies for Prevention | IT Security News, ET CISO

The Rising Tide of Data Breaches: A Call for Enhanced Cybersecurity Measures In recent years, the alarming trend of data breaches has underscored the urgent need for businesses to prioritize privacy and data protection. As organizations increasingly rely on digital platforms for their operations, the safeguarding of sensitive information has…

Read MoreCommon Data Security Pitfalls and Strategies for Prevention | IT Security News, ET CISO

DOGE Enthusiast Runs ‘Tesla.Sexy LLC’ and Previously Employed by Startup Hiring Convicted Hackers

A young technologist, identified online as “Big Balls,” has garnered attention due to his access to sensitive U.S. government systems through his role in Elon Musk’s Department of Government Efficiency (DOGE). Security analysts express concerns about whether he would qualify for the necessary security clearances, given his unconventional professional background…

Read MoreDOGE Enthusiast Runs ‘Tesla.Sexy LLC’ and Previously Employed by Startup Hiring Convicted Hackers

Google Calls for Pledge Against AI Utilization in Surveillance and Cyber Warfare

Cybersecurity Implications of AI Usage: A Double-Edged Sword Artificial Intelligence (AI) continues to be a double-edged sword in the technological landscape, offering significant benefits while also posing grave risks. The potential for AI to be weaponized or misused in malicious contexts brings a profound responsibility to those developing and implementing…

Read MoreGoogle Calls for Pledge Against AI Utilization in Surveillance and Cyber Warfare