Although Pride Month does not officially start until June 1, 2026, cybersecurity experts have already noted a rise in phishing attacks targeting employees with Pride-themed emails, indicating that scammers are capitalizing on upcoming events well ahead of time. Organizations are currently facing a phishing campaign leveraging Pride Month and diversity…
Cybersecurity Implications Following Recent UK Ransomware Incidents Note: This summary has been edited for clarity and conciseness. In a recent dialogue, Mathew Schwartz from Information Security Media Group conversed with Jen Ellis, founder of NextJenSecurity. Their discussion centered on the escalating ransomware threats facing businesses in the U.K., notably referencing…
Data Breach Notification, Data Security, Fraud Management & Cybercrime Insurer’s Breach Likely to Be the Largest Reported Health Data Breach in 2025 Marianne Kolbasuk McGee (HealthInfoSec) • January 2, 2026 Aflac is notifying 22.65 million individuals that their sensitive data may have been stolen in a June 2025 hacking incident.…
Data Breach Notification, Data Security, Fraud Management & Cybercrime Aflac’s Cyber Breach May Stand as the Largest Health Data Breach in the U.S. for 2025 Marianne Kolbasuk McGee (HealthInfoSec) • January 2, 2026 Aflac is notifying 22.65 million individuals about potential data theft following a June 2025 hacking incident. (Image:…
Aflac Inc., one of the largest supplemental insurance providers in the United States, has confirmed a significant data breach affecting approximately 22.6 million individuals. Based in Columbus, Georgia, the company, well-known for its distinctive duck mascot, announced in late December 2025 that hackers had accessed sensitive personal and health information,…
CrowdStrike, a leading player in the cybersecurity sector, recently terminated the employment of an insider alleged to have leaked confidential information. The action was taken after a cybercriminal group claimed to have accessed CrowdStrike’s internal systems. This breach occurred amid rising concerns over insider threats within the cybersecurity landscape. On…
Over the last decade, the English-speaking cybercriminal landscape, known as “The COM,” has grown from a niche group dedicated to trading rare social media usernames into a complex, service-driven underground economy orchestrating a wide array of global cyberattacks. Foundational communities like Dark0de and RaidForums have played a critical role in…
Identity services provider Okta has reported discovering “additional threat actor activity” related to a breach affecting its support case management system that occurred in October 2023. The breach reportedly involved unauthorized access to the names and email addresses of all users within Okta’s customer support system, a significant concern for…
Salesforce is facing a serious cybersecurity threat as a criminal syndicate, identifying itself as Scattered LAPSUS$ Hunters, has made allegations of stealing around one billion records from multiple Salesforce customers. The group initiated this extortion campaign back in May, utilizing voice calls to reach organizations that utilize Salesforce for data…
