While discussions around cybersecurity often focus on external threats such as phishing attacks and ransomware, an overlooked but critical vulnerability stems from the mishandling of file uploads and deliveries. In 2024, malicious file detections saw a notable increase of 14% compared to the previous year, highlighting that the real danger…
Artificial Intelligence & Machine Learning, Data Security, Data Security Posture Management Integrated Tools for Generative AI Security and DSPM Vital to Growth Strategy Michael Novinson (@MichaelNovinson) • April 2, 2025 Howard Ting, CEO, Cyberhaven (Image: Cyberhaven) Cyberhaven, a data protection startup led by former executives from Nutanix and Palo Alto…
In a recent incident involving faculty member Xiaofeng Wang and his spouse, Nianli Ma, Indiana University (IU) has found itself at the center of a federal investigation, leading to the termination of Wang’s employment on March 28. According to Jason Covert, part of the legal team representing Wang and Ma,…
Data Privacy, Data Security, Healthcare FTC Asserts 23andMe’s Privacy Obligations Must Be Honored Amid Bankruptcy Marianne Kolbasuk McGee (HealthInfoSec) • March 31, 2025 Image credit: 23andMe The Federal Trade Commission (FTC) has issued a communication to the bankruptcy trustees of 23andMe, emphasizing that any prospective sale of the genetic testing…
Surge in Data Uploads to Generative AI Platforms Raises Concerns Over Security Risks Recent findings from the cybersecurity firm Netskope indicate a dramatic surge in the amount of sensitive internal business data uploaded to generative AI applications, revealing a startling 30-fold increase over the past year. This influx includes a…
Fraud Management & Cybercrime, Ransomware, Video Also: Rapid7’s Boardroom Shake-Up, China’s Tactical Shift in Cyber Operations Anna Delaney (annamadeline) • March 28, 2025 Clockwise, from top left: Anna Delaney, Mathew Schwartz, Michael Novinson, and Tony Morbin. In this week’s analysis, ISMG editors delve into the contrasting strategies of ransomware attacks,…
Data Security , Government , Industry Specific Sensitive Information of Senior Trump Officials Exposed Following Security Breach Chris Riotta (@chrisriotta) • March 28, 2025 Image: Shutterstock The personal contact information and vital details of key advisors to former U.S. President Donald Trump have been reportedly made accessible through various commercial…
Cloud Security, Data Breach Notification, Data Security Security Researcher Discovers Unsecured Database Exposing 1,864 GB of OrthoMinds Data Marianne Kolbasuk McGee (HealthInfoSec) • March 21, 2025 Image: OrthoMinds A cloud-based orthodontic practice management vendor, OrthoMinds, is in the process of notifying patients regarding a data exposure incident that lasted for…
The latest trends in 3rd Party Risk Management, Data Breach Notification, and Data Security are crucial for understanding the evolving landscape of cybersecurity threats. CPA Firm Reports Employee Benefit Plan Information Compromised in 2024 Incident Marianne Kolbasuk McGee (HealthInfoSec) • March 17, 2025 A significant hacking incident at Legacy Professionals,…
