News

OCR’s Latest HIPAA Guidance and Common HIPAA Pitfalls

Bys s January 17, 2026

As Theresa Defino recently reported, HHS OCR will prioritize risk assessments and expand its investigations into risk management in 2026. Alisa Chestler and Layna Cook Rush of Baker Donelson have summarized some recent recommendations from HHS OCR’s January 2026 Cybersecurity Newsletter that regulated entities may want to pay increased attention to at this point: Patching…

Source

News

Five major changes to the regulation of cybersecurity in the UK under the Cyber Security and Resilience Bill
Bys s November 19, 2025

Mark Young & Paul Maynard of Covington and Burling write: As the UK Government has recognized, cyber incidents—such as Jaguar Land Rover, Marks and Spencer, Royal Mail and the British Library—are costing UK businesses billions annually and causing severe disruption. The Government recognizes that cybersecurity is a critical enabler of economic growth (“we cannot have growth……

Read More Five major changes to the regulation of cybersecurity in the UK under the Cyber Security and Resilience Bill
News

Researchers Find Malicious VS Code, Go, npm, and Rust Packages Stealing Developer Data
Bys s December 9, 2025

Cybersecurity researchers have discovered two new extensions on Microsoft Visual Studio Code (VS Code) Marketplace that are designed to infect developer machines with stealer malware. The VS Code extensions masquerade as a premium dark theme and an artificial intelligence (AI)-powered coding assistant, but, in actuality, harbor covert functionality to download additional payloads, take

Read More Researchers Find Malicious VS Code, Go, npm, and Rust Packages Stealing Developer Data
News

ServiceNow Patches Critical AI Platform Flaw Allowing Unauthenticated User Impersonation
Bys s January 13, 2026

ServiceNow has disclosed details of a now-patched critical security flaw impacting its ServiceNow AI Platform that could enable an unauthenticated user to impersonate another user and perform arbitrary actions as that user. The vulnerability, tracked as CVE-2025-12420, carries a CVSS score of 9.3 out of 10.0 “This issue […] could enable an unauthenticated user to…

Read More ServiceNow Patches Critical AI Platform Flaw Allowing Unauthenticated User Impersonation
News

Meta Rolls Out New Tools to Protect WhatsApp and Messenger Users from Scams
Bys s October 21, 2025

Meta on Tuesday said it’s launching new tools to protect Messenger and WhatsApp users from potential scams. To that end, the company said it’s introducing new warnings on WhatsApp when users attempt to share their screen with an unknown contact during a video call so as to prevent them from giving away sensitive information like…

Read More Meta Rolls Out New Tools to Protect WhatsApp and Messenger Users from Scams
News

Meta Expands WhatsApp Security Research with New Proxy Tool and $4M in Bounties This Year
Bys s November 18, 2025

Meta on Tuesday said it has made available a tool called WhatsApp Research Proxy to some of its long-time bug bounty researchers to help improve the program and more effectively research the messaging platform’s network protocol. The idea is to make it easier to delve into WhatsApp-specific technologies as the application continues to be a…

Read More Meta Expands WhatsApp Security Research with New Proxy Tool and $4M in Bounties This Year
News

No need to hack when it’s leaking: Brandt Kettwick Defense edition
Bys s July 4, 2025

A recent survey of 500 U.S. law firms by Proton reported that one in five law firms were targeted in a cyberattack in the past year, and 8% of law firms (39% of those who reported a cyberattack) reported losing data or suffering exposure. To make matters even worse, Proton found that 65% weren’t familiar with…

Read More No need to hack when it’s leaking: Brandt Kettwick Defense edition

Similar Posts