A provider of criminal background checks in the U.K. is dealing with a breach at a third-party developer. The Register reports: A leading UK provider of criminal record checks for employers is handling a data breach stemming from a third-party development company. Access Personal Checking Services (APCS) has written to customers to notify them that […]
The Register reports: Microsoft-owned talk-to-text outfit Nuance has agreed to cough up $8.5 million to settle a class action lawsuit over the sprawling MOVEit Transfer mega-breach – although it admits no liability. The proposed deal [PDF], filed in a Massachusetts federal court last week, would draw a line under litigation brought by individuals who claimed that the company failed […]
FOX 5 in Atlanta reports: A cyberattack that shut down Georgia’s SNAP (Supplemental Nutrition Assistance Program) call center may not have been an isolated incident. Officials with the United States Department of Agriculture tell FOX 5 that similar attacks have happened in six other states recently. The backstory: On July 28, the Georgia Department of […]
BBC reports: Thousands of Afghans brought to safety in the UK have had their personal data exposed, after a Ministry of Defence (MoD) sub-contractor suffered a data breach. The names, passport information and Afghan Relocations and Assistance Policy (Arap) details of up to 3,700 Afghans have potentially been compromised after Inflite The Jet Centre, which […]
TechNadu reports: A vendor that serves the Los Angeles Unified School District, Kokomo24/7, has notified authorities about a network file exposure on its internal systems and data storage environment. Investigators determined that the suspicious activity discovered on December 11, 2024, allowed cybercriminals to access sensitive personal information. Since Kokomo24/7 is a vendor for the Los Angeles Unified […]
As reported by Mid-Hudson News: The company that administers employee healthcare benefits for Ulster County government employees has been hit with a data breach and the workers were only recently notified of the breach of Alera Group’s computer systems, which occurred in August 2024. Alera was unable to confirm the level of the breach until […]
Google’s Intelligence Threat Group (GITG) has been tracking various threat actor groups under tracking labels such as UNC 6040, UNC 6240, and UNC 3944. The first two overlap with threat actors known as ShinyHunters, while the third overlaps with Scattered Spider. The ShinyHunters group has been linked to attacks on customers of Salesforce. Google itself […]
The Record reports: Cleaning product giant Clorox has filed a lawsuit against Cognizant, a company it hired to operate its IT services call-in help desk, accusing the contractor of being directly responsible for a 2023 cyberattack that cost hundreds of millions. The case, filed on Tuesday in California Superior Court, alleges that contractors working for […]
July 22, 2025 – Gatineau, Quebec
The Daily Security Review reports: Episource, a key healthcare services provider under UnitedHealth Group’s Optum division, has disclosed a significant data breach that exposed the sensitive personal and medical data of more than 5.4 million individuals. The company, which offers risk adjustment and medical coding services to healthcare providers and insurers, identified unauthorized access to […]
