The BASHE ransomware group has reportedly compromised the database of ICICI Bank, a prominent player in India’s private banking sector, and has claimed responsibility for the incident. This alarming breach has come to light on the dark web. The hackers have issued a ransom deadline of January 24, 2025, threatening…
In late November, researchers Curry and Shah disclosed critical security flaws within Subaru’s Starlink service, prompting the automaker to implement fixes swiftly. However, they caution that these vulnerabilities are merely the latest examples in a broader pattern of web-based security issues affecting numerous automobile manufacturers. Their findings highlight that similar…
A relatively obscure ransomware group known as Bashe, which may have ties to the notorious LockBit syndicate, has recently executed a cyberattack targeting ICICI Bank, a significant player in the Indian financial sector with a global footprint. Reports indicate that Bashe successfully infiltrated the bank’s systems and exfiltrated a portion…
Healthcare, HIPAA/HITECH, Industry Specific HHS’ Privacy Rule Update Limits Use, Disclosure of Reproductive Health PHI Marianne Kolbasuk McGee (HealthInfoSec) • January 22, 2025 Image: Getty Images In a significant legal challenge, the Biden administration’s HIPAA Privacy Rule, which restricts the disclosure of reproductive health information, is facing pushback from the…
The local branch of the international charity Oxfam has been found in violation of data protection laws following a significant data breach that occurred in July and potentially impacted up to 550,000 individuals. This conclusion was reached by Hong Kong’s Privacy Commissioner for Personal Data in an investigation report released…
DHS Shifts Direction on Cyber Safety Review Board Amid Political Tensions The Department of Homeland Security (DHS) has announced an immediate halt to any advisory committees perceived to undermine its mission of national security, President’s initiatives, or the constitutional rights of Americans. This decision directly impacts the operations of the…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime House Homeland Security Committee Considers Response to Volt Typhoon and Future of CISA David Perera (@daveperera) • January 22, 2025 Image: Shutterstock In a session on January 17, members of Congress underscored the urgent need for a more aggressive US strategy in…
Governance & Risk Management, Healthcare, Industry Specific Seven Texas Health and Human Services Employees Terminated Following Data Breach Affecting 61,000 Individuals Marianne Kolbasuk McGee (HealthInfoSec) • January 22, 2025 The Texas Health and Human Services Commission is alerting 61,000 individuals to a breach involving insider access over three years. (Image:…
Cloudflare has successfully mitigated a staggering 5.6 terabits per second (Tbps) DDoS attack, setting a new record and underscoring the escalating threat posed by hyper-volumetric assaults. The incident, attributed to a botnet variant of Mirai, involved approximately 13,000 Internet of Things (IoT) devices and targeted an East Asian Internet Service…