Hackers have reportedly stolen about $7.5 million from a Department of Health and Human Services grant payment system in a series of cyberattacks last year. The news comes in the midst of HHS and other authorities warnings about rising threats involving social engineering and payment scams.
A dedicated cybercrime unit under the French National Police is set to scale up operations ahead of the upcoming Olympics as authorities warn that cyberattacks are among the greatest threats to the event. Authorities on Friday unveiled the unit's new headquarters in Parisian suburb Nanterre.
Non-bank mortgage lending giant LoanDepot says hackers stole "sensitive personal information" pertaining to 16.6 million customers when they breached its systems earlier this month as part of a ransomware attack. The company said it will directly notify all affected customers.
An Akira ransomware attack that hit a data center run by Finnish IT software and services firm Tietoevry has led to widespread outages across Sweden. Healthcare, local governments, retail outlets and the country's largest cinema chain are among the organizations experiencing ongoing disruptions.
A federal judge sentenced "Pompompurin," the administrator of a now-defunct data breach marketplace, to 20 years of supervised release - instead of the recommended 15-year prison sentence - for his role in BreachForums, once considered the largest English-language data breach forum of its kind.
The French data regulator imposed a fine of 10 million euros on Yahoo after determining that the company's advertising cookie policy had violated the country's privacy regulations. Yahoo deposited more than 20 tracking cookies without giving consumers a chance to withdraw consent.
Russian state hackers obtained access to the inboxes of senior Microsoft executives for at least six weeks, the computing giant disclosed late Friday afternoon. "There is no evidence that the threat actor had any access to customer environments, production systems, source code, or AI systems."
The U.S. Cybersecurity and Infrastructure Security Agency published guidance for water and wastewater sector owners and operators to bolster their cyber defenses with comprehensive incident response plans and enhanced practices for sharing information with the federal government.
Two tech advocacy groups are pushing the Federal Trade Commission to investigate Google, alleging the company has reneged on a promise it made after the Supreme Court's 2022 overturn of Roe v. Wade to promptly delete location data about users' visits to sensitive places, such as abortion clinics.
A Finnish man accused of hacking and leaking mental health records downplayed his tech skills and said during cross-examination in court he had no part in the data breach. Kivimäki said he's been engaged with computers since aged three but described his programming skills as "pretty insignificant."
The U.S. Cybersecurity and Infrastructure Security Agency directed federal agencies to implement mitigation measures for two zero-day exploits that affect Ivanti’s popular VPN products while they await a patch, in what one official described as "a rapidly evolving situation."
Cyberattacks are more advanced and integrated than ever, and now cybersecurity defenses must be, too. Hunter Ely of Palo Alto Networks shares insights on why an integrated security platform is best for SLED organizations to detect and counter advanced attacks.
It's never been more important to manage one's attack surface, and for public sector entities and educational institutions, the attack surface has never been so complex. Hunter Ely of Palo Alto Networks shares insights on how to reduce this complexity.
A December cyberattack on Ukraine's top telecom operator, which authorities in Kyiv attribute to the Russian military, will cost the parent company nearly $100 million. Ukraine in mid-December accused the Russian General Staff Main Intelligence Directorate of perpetuating the incident.
Skateboarding shoe and outdoor apparel maker VF Corp. said data pertaining to 35.5 million customers appears to have been stolen in a data breach the company detected and disclosed last month. The breach disrupted e-commerce order fulfillment as well as inventory replenishment at retail stores.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.