Texas Health and Human Services Commission April 30, 2025 AUSTIN – The Texas Health and Human Services Commission is notifying an additional 33,529 recipients of agency services and other affected individuals that their protected health, personal identifying or sensitive personal information may have been inappropriately accessed, used or disclosed. As a result of an internal […]
Bleeping Computer reports: Employee benefits administration firm VeriSource Services is warning that a data breach exposed the personal information of four million people. VeriSource is a Texas-based employee benefits administration and HR outsourcing solutions provider with diverse clients across the U.S. The firm has begun data breach notifications to impacted individuals about a cybersecurity incident […]
Bleeping Computer reports: Ongoing outages at British retail giant Marks & Spencer are caused by a ransomware attack believed to be conducted by a hacking collective known as “Scattered Spider” BleepingComputer has learned from multiple sources. Marks & Spencer (M&S) is a British multinational retailer that employs 64,000 employees and sells various products, including clothing, food, […]
Deccan Herald reports: A major data breach in the Bangalore Water Supply and Sewerage Board’s (BWSSB) application portal for water connection has exposed over 2.90 lakh customer records. The access to these records, including PAN, Aadhaar numbers, payment data and mobile numbers, was put on sale on an underground data leaks forum on the internet […]
Bleeping Computer reports: The ransomware scene is re-organizing, with one gang known as DragonForce working to gather other operations under a cartel-like structure. DragonForce is now incentivizing ransomware actors with a distributed affiliate branding model, providing other ransomware-as-a-service (RaaS) operations a means to carry out their business without dealing with infrastructure maintenance cost and effort. […]
Oregon Public Broadcasting reports: A ransomware group has released over a million files that the group says it stole from the Oregon Department of Environmental Quality. The files appear to include sensitive information about DEQ employees. It’s not clear if private vehicle registration data or other information related to Oregonians who don’t work at DEQ […]
Jagran reports: The Army College of Nursing website has been allegedly hacked by a Pakistan-based hacker group called Team Insane PK, days after the Pahalgam terror attack in Jammu and Kashmir. The hacker attack took place two days after India announced five strict measures against Pakistan including the suspension of the Indus Waters Treaty and declaring […]
Sophos writes: Read more at Sophos.
BankInfoSecurity reports: Connecticut-based Yale New Haven Health System is notifying more than 5.5 million patients that their personal information, including Social Security numbers, could have been stolen in a March hack. The incident, which is among several other recent major health data hacks, ranks as the largest health data breach reported to federal regulator so […]
FBI IC3, Verizon DBIR, Google M-Trends reports are out—here are key takeaways
Risky Biz News reports: There are a handful of seminal reports in the cybersecurity industry, and lo and behold, three of them were released on Wednesday. Mandiant’s team, now part of Google Cloud, released M-Trends, Verizon released its Data Breach Investigations Report (aka DBIR), and the FBI Internet Crime Complaint Center (IC3) released its yearly Internet Crime Report [PDF]. […]