HIPAA Journal reports: A $35,000,000 settlement has been agreed to resolve a long-running class action lawsuit against Labcorp over a 2018 cybersecurity incident at American Medical Collection Agency. Laboratory Corporation of America Holdings (Labcorp), a provider of diagnostic testing services, had contracted with a company called Retrieval-Masters Creditor’s Bureau, Inc., which does business as American Medical […]
Claim Depot reports: Paylogix, a New York-based insurtech company that provides technology and billing solutions for voluntary employee benefits, disclosed a data breach that occurred in November 2025. Paylogix posted a notice of the data event on its website stating that between Nov. 13 and Nov. 18, 2025, unauthorized individuals gained access to certain Paylogix computer systems […]
WBRZ reports: he St. George Fire Protection District is suing Baton Rouge cybersecurity company General Informatics, blaming them for allowing hackers to gain access to the fire department’s network in 2023. The lawsuit, filed by the fire department on May 23, claims that General Informatics was hired to prevent cyberattacks and now seeks damages from […]
HealthcareInfoSecurity reports that Conduent has updated its already-large data breach numbers: The victim tally in back-office support services firm Conduent Business Services‘ 2024 hack has more than doubled to over 62.2 million people. The revised, eye-popping total Conduent reported to federal regulators apparently in recent days brings the breach closer to tying the nearly 79 […]
When the federal agency that directs organizations and agencies to quickly attend to vulnerabilities and breaches has its own breach, people notice. Brian Krebs reports: Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA […]
Hackers stole data of 119,000 Vimeo users in April. The breach, linked to a third‑party vendor, exposed personal details. Security Affairs reports: Vimeo confirmed a data breach after the ShinyHunters gang stole personal information of 119,000 users in April 2026. According to Have I Been Pwned, the attackers accessed user data through a compromise at Anodot, a third‑party analytics […]
The Eastern Herald reports: A critical error in Microsoft’s flagship security platform has sent shockwaves across the global cybersecurity community, after Microsoft Defender wrongly flags DigiCert certs as Trojan, triggering widespread panic among enterprises and system administrators. The issue emerged in early May 2026, when a faulty security intelligence update caused Defender to misidentify trusted DigiCert […]
Security Week reports that Instructure is the latest edtech firm to fall prey to hackers. Based in Salt Lake City, Utah, the edtech firm is best known for Canvas, one of the most widely used learning platforms across educational institutions and other organizations. Disclosed on April 30, the cyberattack was blamed for “disruption to tools […]
DEFCROS News reports: Senators Maggie Hassan and Jim Banks are pressing for answers from Navigate360 following a cyberattack that reportedly compromised sensitive student data from school safety tip lines. The incident has raised significant concerns about the security of information intended to protect students and the integrity of the systems designed to facilitate anonymous reporting. […]
Rhode Island Current reports that the state has settled with Deloitte, the contractor responsible for the RIBridges data breach. A $7 million handshake between the Rhode Island Department of Administration and global consultancy Deloitte over the latter’s role in the 2024 RIBridges data breach has brought the state’s total windfall to $12 million for the […]
