The Record

NASCAR warned that a cyberattack that began in March exposed Social Security numbers.

Some crisis pregnancy centers (CPCs) still tell visitors that their data is protected under the HIPAA privacy law — despite guidance to the contrary from the government and CPCs' own umbrella organizations. Data privacy and abortion-rights groups want states to do more to end those claims.

The BlackSuit gang, which is believed to have been operational since April/May 2023, was a private ransomware group that did not license its tooling to other criminals like ransomware-as-a-service (RaaS) schemes.

Prosecutors said Chapman helped the North Korean IT workers obtain jobs at 309 companies, including a major television network, a car maker, a media company, a Silicon Valley technology company and more.

Kim Se Un, Jo Kyong Hun and Myong Chol Min are accused of helping North Korea evade U.S. and United Nations sanctions through an IT worker plot that involved tricking companies into hiring North Koreans using stolen identities.

The new regulations have been controversial because the California Privacy Protection Agency (CPPA) overhauled them to be significantly weaker than the originally-proposed rules.

Plankey pledged to ask Department of Homeland Security (DHS) Secretary Kristi Noem for more funding if he arrives at CISA and determines a larger budget is needed to effectively steer the agency.

Netherlands-based cybersecurity firm Eye Security told Reuters and Bloomberg that hackers have successfully breached at least 400 governments and businesses around the world.

Kateryna Chernohorenko, who oversaw the digitization of Ukraine’s armed forces and defense ministry, is stepping down as deputy for digital affairs.

A group dubbed 'Fire Ant' is targeting VMware ESXi hypervisors, a type of software that controls and hosts virtual machines for enterprise networks.

The agency released three bulletins about the group — which is composed primarily of English-speaking minors who focus on attacks like ransomware, swatting and DDoS.

According to a new report by blockchain intelligence firm TRM Labs, Kyrgyz-registered exchanges have repeatedly been used by sanctioned Russian entities.

A trial in the closely watched class-action lawsuit accusing a period tracking app of improperly sharing user data with Meta for targeted advertising opened in a Northern California federal court on Monday.

The Justice Department said it ended “the largest internet piracy case … ever to go to trial as well as the first illegal streaming case ever to go to trial.”

French law enforcement said the alleged administrator of the long-running cybercrime forum XSS, formerly known as DaMaGeLab, was arrested in Ukraine.

Help desk workers from the IT services company Cognizant were directly responsible for an August 2023 cyberattack that disrupted operations at the Clorox Company, the cleaning products giant alleges in a lawsuit.

New York Gov. Kathy Hochul unveiled proposed cyber regulations for the state's water sector intended to fend off increasing threats to public infrastructure from hackers.

Interlock ransomware is being used to target critical infrastructure and businesses across North America and Europe, the FBI and other federal agencies warned.

Microsoft said previously known Chinese nation-state operations that it tracks as Linen Typhoon and Violet Typhoon — as well as a third, less-known group — were among those exploiting serious bugs in SharePoint server software.

Russian cybersecurity researchers identified and dismantled a network of domains operated by the hacker group NyashTeam.