Latest News

Kaiser Permanente, a leading US healthcare provider, is notifying 13.4 million individuals that their data has been breached. The breach involved the accidental sharing of sensitive information with third-party advertisers. Revealed in a statement shared with TechCrunch, Kaiser Permanente mentioned

The Los Angeles County Department of Health Services (DHS) has reported a significant data breach. The breach occurred in February due to a successful phishing attack that compromised roughly two dozen employees’ email accounts, which then led to the exposure of sensitive personal and health

President Biden has passed a bill that forces TikTok to divest from its parent company ByteDance or face a ban. The Senate passed the bill on Tuesday, 24 April 2024, then President Biden signed the bill into law just a day later on Wednesday, April 25, 2024. The bill was included within a

UnitedHealth Group has acknowledged that a recent ransomware attack on its subsidiary Change Healthcare led to a massive data breach, affecting a "substantial proportion of people in America." The breach, one of the most significant in American healthcare history, resulted in the theft of sensitive

The US Senate has voted to reauthorize controversial surveillance laws, extending government spy powers for another two years. The bill, passed with bipartisan support by a vote of 60-34, extends Section 702 of the Foreign Intelligence Surveillance Act (FISA), allowing the government to gather

Cherry Health, a Michigan-based healthcare provider, revealed that a ransomware attack was responsible for a previously disclosed data breach. The breach compromised the personal and financial information of 184,372 victims, mostly from Michigan. The incident itself took place on December 21,

A critical bug in Palo Alto Networks' PAN-OS software, specifically affecting its GlobalProtect feature, has set the cybersecurity world on alert. Identified as CVE-2024-3400, this zero-day flaw was first spotted by Volexity on April 10, and it can be used by attackers to execute arbitrary code

Cisco Duo recently announced the theft of SMS MFA logs for its service, which resulted from a breach affecting a third-party telephony provider. This incident, occurring on April 1, 2024, led to unauthorized access to sensitive customer data, including phone numbers, carriers, and metadata.

Roku has confirmed that a credential-stuffing attack has compromised approximately 576,000 user accounts. This attack follows a similar incident that occurred last month, which affected over 15,000 accounts. The latest round of malicious activity was detected due to Roku’s close monitoring of

Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password protected database that contained over 700k documents belonging to Australia’s largest smoke alarm installation and service provider. The exposed database contained 762,856 documents and totaled