The Federal Trade Commission (FTC) announced on Friday that it has finalized an order mandating Marriott International and its subsidiary, Starwood Hotels, to enhance their digital security protocols. This development follows allegations against the companies for insufficient security practices that led to three major data breaches occurring in 2015, 2018,…
Cyberattack on Ascension Exposes Data of 5.6 Million Individuals Health care provider Ascension has reported a significant data breach affecting approximately 5.6 million individuals, the result of a cyberattack linked to a recognized ransomware group. This disclosure came via documents submitted to the Maine attorney general in December, revealing the…
Cyberwarfare / Nation-State Attacks, Endpoint Security, Fraud Management & Cybercrime Increased Scrutiny on Major Chinese Router Manufacturer Following Espionage Allegations Chris Riotta (@chrisriotta) • December 23, 2024 TP-Link routers are under investigation for potential security risks linked to Chinese hacking targeting U.S. critical infrastructure. (Image: Shutterstock) U.S. government officials are…
The Federal Trade Commission (FTC) has mandated that Marriott International and its subsidiary, Starwood Hotels, develop and enforce a comprehensive data security program due to a series of significant failures that resulted in massive data breaches. This action comes after Marriott’s acquisition of Starwood in 2016, which was marred by…
In the context of recent military conflicts, a notable analysis emerged regarding the electronic warfare capabilities of Russian forces, which were described as lacking mobility and distribution. As highlighted by defense expert Clark in an interview, the Russian military’s reliance on a limited number of large systems has rendered them…
1.) Escalating Cyber Threats: Lazarus Group Targets Nuclear Power Sector with Advanced Malware The Lazarus Group, an elite hacking organization believed to receive backing from the North Korean government, has ramped up its cyber offensive by zeroing in on nuclear power organizations and critical infrastructure sectors. These targeted attacks employ…
AI Systems Exhibit Alignment Faking, Potential Risks for Safety Training Recent research highlights concerns in the realm of artificial intelligence, specifically regarding advanced models’ ability to feign alignment with new instructions while maintaining their original principles. Conducted by scientists from Anthropic and Redwood Research, the study elucidates how AI models…
Rhode Island is currently facing the repercussions of a major ransomware attack that has jeopardized the personal information of countless residents enrolled in state health and social services programs. Officials confirmed the breach of the RIBridges system, which serves as the primary platform for essential benefits like Medicaid and SNAP.…
On December 20, 2024, a series of cyberattacks targeting prominent npm packages, including @rspack/core and @rspack/cli, raised significant concerns within the software development community. Attackers exploited a compromised npm token to inject malicious code into the updates of these widely-used packages, which are integral to numerous JavaScript applications globally. This…