Identity services provider Okta has reported discovering “additional threat actor activity” related to a breach affecting its support case management system that occurred in October 2023. The breach reportedly involved unauthorized access to the names and email addresses of all users within Okta’s customer support system, a significant concern for…
The cybersecurity landscape is increasingly marked by a staggering disparity in the value of personal information on the dark web. In this context, Electronic Health Records (EHRs) command the highest price, selling for upwards of $1,000 each. This is significantly more than a credit card number, which averages around $5,…
The U.S. Department of Justice (DoJ) has formally declared the disruption of the BlackCat ransomware operation, providing a decryption tool for over 500 victims affected by the malware. This intervention is seen as a significant step in combating ransomware threats that have plagued businesses across the globe. According to court…
TLDR CoinGlass experienced a significant proxy attack that disrupted its global service. No data breaches have been reported as a result of the incident. The company’s technical team successfully restored services and is currently investigating the attack. This incident underscores vulnerabilities within the cryptocurrency sector’s reliance on cloud infrastructure. On…
Key Insights from Recent Data Breach Settlements Two major class action settlements have emerged from data breaches involving third-party administrators (TPAs) and their insurance co-defendants, culminating in nearly $20 million in total payments. The lawsuits originated from large-scale data breaches disclosed in 2023 and 2024, which compromised the personal information…
Palo Alto Networks Releases Critical Software Patches for Expedition Tool Palo Alto Networks has announced the rollout of crucial software patches aimed at mitigating multiple security vulnerabilities in its Expedition migration tool. Among these flaws, a significant one has been identified that permits authenticated attackers to gain access to sensitive…
Data Breach Notification, Data Privacy, Data Security Australian Clinical Labs Fined $5.8 Million for 2022 Data Theft Incident Marianne Kolbasuk McGee (HealthInfoSec) • October 9, 2025 An Australian court has mandated a $5.8 million penalty against Australian Clinical Labs for deficiencies in data management during a data theft incident in…
COLUMBIA, S.C. (WIS) – Residents of Camden find themselves grappling with uncertainty after receiving alarming notifications from Sheheen, Hancock & Godwin, LLP, a local accounting firm, indicating that their personal data could have been compromised. A detailed statement posted on the firm’s website revealed that an unidentified entity downloaded sensitive…
Ukrainian cybersecurity officials have reported a significant breach within the telecommunications company Kyivstar, attributed to the Russian state-sponsored hacking group known as Sandworm. The intrusion is reported to have started as early as May 2023, following initial reconnaissance efforts that may have begun even earlier. This breach was first highlighted…
