Last week, the United Kingdom instituted a requirement for residents to verify their ages before accessing online pornography and other adult content, aiming to enhance child protection. However, the implementation faced immediate challenges that aligned with expert forecasts. In response to the new regulations, UK residents swiftly adopted virtual private…
Data Breaches Increasingly Targeting Consumers, Experts Warn Cybersecurity analysts report that hundreds of data breaches occur each month, highlighting the growing risk for consumers and businesses alike. Ken Colburn from Data Doctors emphasized that the evolution of technology has complicated efforts to secure sensitive information, contributing to the constant rise…
Google Unveils Open Beta for Device Bound Session Credentials in Chrome, Enhancing Patch Transparency with Project Zero
July 30, 2025
Device Security / AI Security
Google has launched an open beta for its Device Bound Session Credentials (DBSC), a security feature aimed at protecting users from session cookie theft attacks. Initially introduced as a prototype in April 2024, DBSC binds authentication sessions to specific devices, preventing malicious actors from using stolen cookies to access accounts from unauthorized devices. “Available in the Chrome browser on Windows, DBSC enhances security after login by linking session cookies—small files that remember user information—to the device used for authentication,” said Andy Wen, senior director of product management at Google Workspace. This initiative not only secures user accounts post-authentication but also complicates the reuse of session cookies, bolstering session integrity. The company has also…
Google Unveils Open Beta for Device Bound Session Credentials (DBSC) in Chrome, Enhancing Security Measures On July 30, 2025, Google announced the open beta launch of its security feature, Device Bound Session Credentials (DBSC), aimed at bolstering protection against session cookie theft attacks. Originally prototyped in April 2024, DBSC is…
Google Unveils Open Beta for Device Bound Session Credentials in Chrome, Enhancing Patch Transparency with Project Zero
July 30, 2025
Device Security / AI Security
Google has launched an open beta for its Device Bound Session Credentials (DBSC), a security feature aimed at protecting users from session cookie theft attacks. Initially introduced as a prototype in April 2024, DBSC binds authentication sessions to specific devices, preventing malicious actors from using stolen cookies to access accounts from unauthorized devices. “Available in the Chrome browser on Windows, DBSC enhances security after login by linking session cookies—small files that remember user information—to the device used for authentication,” said Andy Wen, senior director of product management at Google Workspace. This initiative not only secures user accounts post-authentication but also complicates the reuse of session cookies, bolstering session integrity. The company has also…
Data Privacy, Data Security, Healthcare Voluntary Initiative Advocates for Standards and Patient Empowerment: A Privacy Perspective Marianne Kolbasuk McGee (HealthInfoSec) • July 31, 2025 President Donald Trump alongside leaders from the Department of Health and Human Services (HHS) announces a new strategy aimed at enhancing health data interoperability and access.…
Qantas Cyber Attack Linked to ShinyHunters and Scattered Spider Qantas recently confirmed that it was targeted in a cyber attack that compromised the personal data of millions of its customers. Initial assessments from cybersecurity experts indicated that the attack might have been executed by the Scattered Spider hacking collective. However,…
In mid-2025, the Google Threat Intelligence Group (GTIG) unveiled a significant cyber threat stemming from a highly coordinated campaign linked to a financially motivated hacking collective known as Scattered Spider, also referred to as 0ktapus and UNC3944. This group has a history of targeting major industries, including retail, airlines, and…
Data Privacy, Data Security, Healthcare Lawsuit Alleges BJC Health Disclosed Patient Data from MyChart Portal Without Consent Marianne Kolbasuk McGee (HealthInfoSec) • July 28, 2025 Image: BJC Health BJC Health, a Missouri-based healthcare system, has agreed to pay up to $9.25 million to resolve a proposed class action lawsuit. The lawsuit…
Fraud Management & Cybercrime, Social Engineering Hacking Tactics Linked to Retail and Airline Breaches Akshaya Asokan (asokan_akshaya) • July 25, 2025 Image: Shutterstock A group of adolescent cybercriminals known as Scattered Spider has recently targeted VMware hypervisors, successfully infiltrating corporate environments through Active Directory. This emerging threat landscape has led…
Recent reports highlight significant cybersecurity incidents, underscoring ongoing concerns about data privacy and system vulnerabilities. A notable case involves an analysis of the FBI’s Jeffrey Epstein prison video, which indicates that roughly 2 minutes and 53 seconds of footage may have been edited out. While there’s no evidence of deceptive…
