Data Privacy, Data Security, Fraud Management & Cybercrime Class Action Lawsuit Claims Web Trackers Misused Patient Data Marianne Kolbasuk McGee (HealthInfoSec) • December 2, 2025 Kaiser Permanente has agreed to pay up to $47.5 million to resolve class action litigation related to its website tracking activities. Kaiser Permanente has reached…
Recent cybersecurity intelligence has revealed that the infamous Lazarus Group has exploited a newly patched privilege escalation vulnerability in the Windows Kernel as a zero-day attack. This exploit allows the adversaries to gain kernel-level access, enabling them to disable crucial security software on affected systems. The vulnerability, identified as CVE-2024-21338…
On Wednesday, Microsoft provided additional insights into the methodologies employed by the attackers behind the SolarWinds breach, one of the most intricate cybersecurity incidents in recent history. This deeper understanding is crucial as cybersecurity firms endeavor to gain a more definitive grasp of the attack’s sophisticated nature. Describing the attackers…
On Monday, Google revealed a sophisticated cyber campaign orchestrated by a North Korean state-sponsored group aimed at security researchers involved in vulnerability research and development. This latest information highlights the increasing threat posed by adversaries adept at manipulating credible sources in the cybersecurity community. The Threat Analysis Group (TAG) at…
Webinar Announcement: Navigating Innovations in Cybersecurity with Darktrace and Microsoft In an evolving landscape characterized by sophisticated cyber threats, a new webinar titled “Building a Smarter Ecosystem” will showcase the latest joint innovations from Darktrace and Microsoft. This event aims to equip business leaders with insights into the cutting-edge technologies…
In 2020, enterprises faced unprecedented IT challenges as they rapidly transitioned to remote work and embraced automation technologies. As the year drew to a close, companies began to reassess their cybersecurity infrastructures in an effort to prepare for a return to normalcy in 2021. However, the revelation of a significant…
The surge of online activities during the COVID-19 pandemic has created unprecedented opportunities for cybercriminals, enabling them to exploit an expanded pool of potential victims. As businesses, educational institutions, and individuals migrated online, they became increasingly vulnerable to an array of cyberattacks, including “zoombombing,” where unauthorized individuals disrupted Zoom meetings…
In the evolving landscape of cybersecurity, identity management has become a crucial front line for defenders. According to Verizon’s 2025 report, a staggering 88% of web application attacks were initiated with compromised credentials. Over the past decade, data indicated that one-third of breaches involved such leaks, highlighting the increasing reliance…
A recently identified malware campaign, dubbed DarkGate, has raised alarms in the cybersecurity community. It exploits a now-patched security vulnerability in Microsoft Windows, known as CVE-2024-21412, which was used as a zero-day attack vector through fraudulent software installers. This incident was first observed in mid-January 2024, wherein attackers deceived users…
