McLaren Health Care Settles Class Action Lawsuit Following Major Data Breaches McLaren Health Care, headquartered in Grand Blanc, Michigan, has reached a $14 million settlement to address a class action lawsuit arising from two significant data breaches that potentially exposed patient information. The organization operates a network that includes 12…
In a recent security announcement, Fortra, the parent company of Cobalt Strike, disclosed a serious zero-day remote code execution (RCE) vulnerability within its GoAnywhere MFT tool. This vulnerability is reportedly being actively exploited by ransomware groups to access sensitive data. The vulnerability, designated as CVE-2023-0669 with a CVSS score of…
Recent trends indicate an alarming shift towards insider threats, as attackers increasingly resort to bribing support agents, manipulating insiders, or exploiting outsourced personnel. This method is being seen as more economical and discreet compared to the complexities involved in deploying zero-day exploits. Cybercriminals are broadening their attack vectors, specifically targeting…
Dec 29, 2026Ravie LakshmananHacking News / Cybersecurity The cybersecurity landscape during the final week of 2025 was dominated by a series of smaller-scale vulnerabilities rather than a single major incident. Trusted tools exhibited unintended behaviors, while both long-standing flaws and emerging weaknesses were quickly exploited. This growing trend emphasized a…
Fraud Management & Cybercrime, Ransomware U.S. Cybersecurity Professionals Plead Guilty to BlackCat Ransomware Scheme Targeting Medical Firms Mathew J. Schwartz (euroinfosec) • December 30, 2025 Image: Kevin Sto/Shutterstock In a significant development within the cybersecurity landscape, two professionals admitted guilt in a Miami federal court after being implicated as affiliates…
On Thursday, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) included a recently patched security vulnerability affecting Cisco’s Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software in its Known Exploited Vulnerabilities (KEV) catalog. This update comes in response to indications that the flaw is being actively exploited in…
In a significant cybersecurity incident, the FBI has revealed that in 2023, an individual named Martin sought to align himself with the notorious BlackCat ransomware group. This group is known for providing a comprehensive malware service, including access to sophisticated ransomware code and a dark web infrastructure, in exchange for…
The U.S. Department of Justice (DoJ) has formally declared the disruption of the BlackCat ransomware operation, providing a decryption tool for over 500 victims affected by the malware. This intervention is seen as a significant step in combating ransomware threats that have plagued businesses across the globe. According to court…
The FBI has issued a warning regarding the BlackCat ransomware-as-a-service (RaaS), which has reportedly impacted at least 60 organizations globally since its debut in November 2021. This sophisticated malware, also referred to as ALPHV or Noberus, is notably the first ransomware developed using the Rust programming language, renowned for its…
