Data Privacy, Data Security, HIPAA/HITECH Increased Push as HHS Intensifies Oversight of Data Sharing and Record Access Regulations Marianne Kolbasuk McGee (HealthInfoSec) • December 17, 2025 Sen. Ron Wyden is advocating for greater privacy controls for patients regarding their health information. (Image: Getty Images) Senator Ron Wyden of Oregon is…
Data Breach at DomainFactory: A Reminder of Cybersecurity Vigilance A significant data breach affecting DomainFactory, one of Germany’s leading web hosting providers and owned by GoDaddy, has recently come to light. The breach, which first occurred in January, only became public knowledge last week when an unidentified attacker disclosed details…
Fraud Management & Cybercrime, Litigation, Ransomware Cybercrime Group Rhysida Continues to Feature Victims on Its Leak Site Marianne Kolbasuk McGee (HealthInfoSec) • December 16, 2025 Sunflower Medical Group has agreed to pay $1.2 million to resolve class action litigation following a ransomware attack attributed to the Rhysida group. (Image: Sunflower…
A well-known banking trojan, Qbot, has resurfaced with enhanced capabilities targeting sectors vital to national security, including government, military, and manufacturing entities across the United States and Europe. Recent research from Check Point Research reveals that this revitalized malware not only seeks to pilfer bank account credentials but also leverages…
In a significant incident highlighting the vulnerabilities within the healthcare sector, Boys Town National Research Hospital has reported a major data breach affecting personal information of over 105,000 individuals. This breach marks a notable event as it is reported to be one of the largest incidents involving data theft in…
Agentic AI, Artificial Intelligence & Machine Learning, Next-Generation Technologies & Secure Development AI Emerges as a Key Focus in Efforts to Mitigate Budget and Staffing Challenges Jennifer Lawinski • December 16, 2025 Minnesota joins a number of U.S. states investing in AI for modernization and cybersecurity risk management in 2026.…
In a significant data breach, activist Emma Best has publicly released over 11,000 private messages from a Twitter group associated with WikiLeaks and its close supporters, dating from 2015 to 2017. This release has exposed the internal discussions of an organization known for disseminating confidential information. The exposed messages had…
Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime, Network Firewalls, Network Access Control Researchers Sound Alarm Over Misconfigured Customer Network Edge Devices Mathew J. Schwartz (euroinfosec) • December 16, 2025 Image: xfilephotos/Shuttertstock Cybersecurity experts have issued a warning regarding the vulnerabilities posed by misconfigured network edge devices, emphasizing that these…
In a troubling development for the cybersecurity landscape, Visa has alerted the public to a JavaScript web skimmer called Baka. Concurrently, a group of researchers from ETH Zurich has identified a critical authentication vulnerability in Visa’s EMV-enabled payment cards, which could be exploited by cybercriminals to unlawfully extract funds from…
