News

Sharpening the knife: GOLD BLADE’s strategic evolution

Bys s December 5, 2025

Updates include novel abuse of recruitment platforms, modified infection chains, and expansion into a hybrid operation that combines data theft and ransomware deployment

News

North Korean IT Worker Fraud Linked to 2016 Crowdfunding Scam and Fake Domains
Bys s January 15, 2025

Cybersecurity researchers have identified infrastructure links between the North Korean threat actors behind the fraudulent IT worker schemes and a 2016 crowdfunding scam. The new evidence suggests that Pyongyang-based threamoret groups may have pulled off illicit money-making scams that predate the use of IT workers, SecureWorks Counter Threat Unit (CTU) said in a report shared…

Read More North Korean IT Worker Fraud Linked to 2016 Crowdfunding Scam and Fake Domains
News

HHS Office for Civil Rights Imposes a $1,500,000 Civil Money Penalty Against Warby Parker in HIPAA Cybersecurity Hacking Investigation
Bys s February 20, 2025

There is a follow-up to a breach previously reported on DataBreaches.net in December 2018. February 20 — Today, the U.S. Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announced a $1,500,000 civil money penalty against Warby Parker, Inc., a manufacturer and online retailer of prescription and non-prescription eyewear, concerning violations of…

Read More HHS Office for Civil Rights Imposes a $1,500,000 Civil Money Penalty Against Warby Parker in HIPAA Cybersecurity Hacking Investigation
News

Medusa ransomware gang demands $2M from UK private health services provider
Bys s February 20, 2025

Iain Thomson reports: HCRG Care Group, a private health and social services provider, has seemingly fallen victim to the Medusa ransomware gang, which is threatening to leak what’s claimed to be stolen internal records unless a substantial ransom is paid. Previously known as Virgin Care and now owned by Twenty20 Capital, HCRG runs child and…

Read More Medusa ransomware gang demands $2M from UK private health services provider
News

Securing GenAI in the Browser: Policy, Isolation, and Data Controls That Actually Work
Bys s December 12, 2025

The browser has become the main interface to GenAI for most enterprises: from web-based LLMs and copilots, to GenAI‑powered extensions and agentic browsers like ChatGPT Atlas. Employees are leveraging the power of GenAI to draft emails, summarize documents, work on code, and analyze data, often by copying/pasting sensitive information directly into prompts or uploading files. …

Read More Securing GenAI in the Browser: Policy, Isolation, and Data Controls That Actually Work
News

First Android Update of 2025 Patches Critical Code Execution Vulnerabilities
Bys s January 8, 2025

This year’s first batch of monthly security updates for Android resolves 36 vulnerabilities, including critical remote code execution flaws. The post First Android Update of 2025 Patches Critical Code Execution Vulnerabilities appeared first on SecurityWeek.

Read More First Android Update of 2025 Patches Critical Code Execution Vulnerabilities
News

Teen on Musk’s DOGE Team Graduated from ‘The Com’
Bys s February 9, 2025

The insider threat on steroids? Brian Krebs reports: Wired reported this week that a 19-year-old working for Elon Musk‘s so-called Department of Government Efficiency (DOGE) was given access to sensitive US government systems even though his past association with cybercrime communities should have precluded him from gaining the necessary security clearances to do so. As today’s story explores, the…

Read More Teen on Musk’s DOGE Team Graduated from ‘The Com’

Similar Posts