Data Privacy, Data Security, Fraud Management & Cybercrime Class Action Lawsuit Claims Web Trackers Misused Patient Data Marianne Kolbasuk McGee (HealthInfoSec) • December 2, 2025 Kaiser Permanente has agreed to pay up to $47.5 million to resolve class action litigation related to its website tracking activities. Kaiser Permanente has reached…
The recent data breach at Capital One, one of the largest banks in the United States, has sparked significant debate regarding cloud security principles and assumptions. This incident, which compromised the accounts of over 106 million customers, has prompted a reevaluation of how companies approach data storage and security in…
Data Privacy, Data Security, Endpoint Security Cyber Advisory Highlights Exploitation of Linked Devices in Monitoring Sensitive Communications Chris Riotta (@chrisriotta) • November 25, 2025 Image: Shutterstock The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about cyber threat actors targeting current and former high-ranking government officials, military…
A critical breach of cybersecurity measures can have devastating implications for organizations, especially when it involves a failure to detect intrusions. InfoTrax Systems, a technology firm based in Utah, serves as a stark example. The company fell victim to multiple breaches—over 20 instances—between May 2014 and March 2016, revealing significant…
Data Privacy, Data Security, Healthcare Sensitive Data of Nearly 470,000 Patients and Employees Potentially Exposed on Dark Web Marianne Kolbasuk McGee (HealthInfoSec) • November 18, 2025 Omni Family Health, a nonprofit operating approximately 40 community health centers in California, has reached a $6.5 million settlement over a 2024 cyber incident…
Access Management, Data Privacy, Data Security NIH Working on Fixes to Address National Security Risks and Weak Access Controls Marianne Kolbasuk McGee (HealthInfoSec) • November 17, 2025 A federal watchdog agency identified security vulnerabilities that could permit unauthorized access to genomics data collected under the NIH’s All of Us research…
Data Breach Notification, Data Security, Fraud Management & Cybercrime Cybercrime Gang Kazu Demands $200K Ransom, Leaking 1.2 Million Patient Records Marianne Kolbasuk McGee (HealthInfoSec) • November 14, 2025 Texas-based Doctor Alliance investigates claims by the Kazu cybercrime gang, which alleges it stole 1.2 million records. (Image: Doctor Alliance) The Kazu…
Data Privacy, Data Security, Healthcare State Authorities Highlight Security Lapses Leading to Illuminate Education’s Late 2021 Data Breach Marianne Kolbasuk McGee (HealthInfoSec) • November 10, 2025 Illuminate Education faces a $5.1 million settlement after a cyberattack in late 2021 that compromised data of over 3 million students. (Image: Illuminate) A…
Data Privacy, Data Security New Research: Pedestrians Can Reveal Identity via Directional Radio Signals Greg Sirico • November 10, 2025 Image: Shutterstock Recent findings by a team of German researchers reveal that the unique way individuals walk—especially when traversing environments equipped with Wi-Fi fields produced by directional antennas—can be used…
