LATEST POST
Clorox lawsuit says help-desk contractors handed over passwords in 2023 cyberattack
The Record reports: Cleaning product giant Clorox has filed a lawsuit against Cognizant, a company it hired to operate its IT services call-in help desk, accusing the contractor of being directly responsible for a 2023 cyberattack that cost hundreds of millions. The case, filed on Tuesday in California Superior Court, alleges that contractors working for […]
IRL Com recruits teens for real-life stabbings, shootings, FBI warns
It started with cybercrime but has expanded to real world violence. Both the FBI and the NCA have issued warnings about a concerning trend whereby teens are being recruited to engage in real life harm such as violent attacks on others. The Register reports: A subset of an online group that recruits children and teens […]
Major Russian-language hacking forum administrator arrested; forum seized
Help Net Security reports that an alleged administrator of xss.is, a dominant Russian-speaking cybercrime forum, was arrested in Kyiv, Ukraine, on 22 July. The takedown followed a long-running investigation led by the French Police and Paris Prosecutor, in close cooperation with Ukrainian authorities and Europol. As Help Net summarizes the allegations: The forum’s administrator is […]
Genea IVF confirms sensitive patient health information leaked on dark web
There is an update to a data breach reported in February involving Australia IVF giant Genea. ABC News in Australia now reports: Patients of Australia’s third-largest IVF provider, Genea, have been informed that their sensitive information — including medical history — has been posted on the dark web. The update comes more than five months […]
Major European healthcare network discloses security breach
Bleeping Computer reports: AMEOS Group, an operator of a massive healthcare network in Central Europe, has announced it has suffered a security breach that may have exposed customer, employee, and partner information. The organization published a statement on its website, as required by Article 34 of the General Data Protection Regulation (GDPR), which mandates a […]
PowerSchool commits to strengthened breach measures following engagement with the Privacy Commissioner of Canada
July 22, 2025 – Gatineau, Quebec
Two more entities have folded after ransomware attacks
DataBreaches.net reports that two entities have recently ceased operations following ransomware attacks. One was in the healthcare sector while the other was in the business sector: It is still fairly rare for a ransomware victim to totally shutter its doors permanently as a result of an incident, but a relatively small breach in Georgia was […]
UK moves forward with plans for mandatory reporting of ransomware attacks
The Record reports: The British government’s proposals to overhaul its ransomware strategy reached a minor milestone on Tuesday as the Home Office published its formal response to a consultation on amending the law, but questions remain regarding how effective the measures will be. Public consultations are a regular part of the British legislative process. In […]