Ransomware DataBreachToday.com

Researcher Finds Database of Sensitive Patient Info With No Password Protection
An unencrypted database containing nearly 150,000 patient records of a California provider of home health and palliative care services was left exposed on the internet, said a cybersecurity researcher who discovered the unsecured data cache. Why does this keep happening in the healthcare sector?

Newly Implemented Rule to Boost Cloud Competition and AI Development
The EU Data Act is now in its second phase of implementation, shifting the balance of power by granting users rights over the data generated by their connected devices and services. Beyond banning unfair contract terms and eliminating vendor lock-in, the act mandates data portability and access.

CISA Issues Emergency Directive After Cisco Exploits Persist After Reboot
CISA issued an emergency directive Thursday after discovering an advanced hacking campaign exploiting two persistent zero-days in Cisco firewall gear - malware that survives system reboots and upgrades - forcing agencies to disconnect vulnerable devices by Friday.

'RedNovember' Has Hacked Organizations in the US, Asia and Europe
A hacking group associated with widespread compromise of edge devices is a Chinese-state-aligned group, says cybersecurity firm Recorded Future. The firm says the threat actor, which it now tracks as RedNovember, is "highly likely a Chinese state-sponsored threat activity group."

Pentesting Tools Uncover Vulnerabilities but White Hat Skills Are Still in Demand
Automated pentesting tools offer faster visibility and robust integration with daily security operations, but automation doesn't eliminate the need for humans in the loop. Automation raises the baseline for vulnerability management and changes what white hat hackers need to know to stay relevant.

Recent Incidents Highlight Patient Record Cyber Risks Tied to Third-Party Suppliers
Vendor security risk has long been a source of pain for many healthcare providers. Veradigm - formerly Allscripts - and ApolloMD are among the latest software and services vendors reporting hacking incidents potentially triggering headaches for customers and their patients.

Researchers Uncover Covert Chinese Access to US Service Provider Infrastructure
Mandiant said it has tracked a Chinese-linked espionage campaign using BRICKSTORM malware to quietly embed within U.S. infrastructure and service providers for over a year, exploiting appliance-level blind spots to maintain persistence, evade detection and potentially develop zero-day exploits.

Effects of Friday Cyberattack Still Felt in European Airports
British police arrested Tuesday night a man in his forties suspected of causing days of flight cancellations and delays at several major European airports by hacking an aviation technology company. Impacted airports include London Heathrow, Brussels Airport and Berlin Brandenburg Airport, as well as Dublin Airport.

CS4CA Nordic Summit Speaker Andreas Östrin on Key Steps to Comply With NIS2 Regs
Andreas Östrin, CIO at LSAB Group, discusses different approaches to the new NIS2 regulations and how the directive affects operational technology security and supply chain security.

'More Research' Needed, Says Google
Google DeepMind expanded its risk framework to cover scenarios where artificial intelligence models might manipulate people or resist shutdown, marking the company's most explicit warning yet about potential misalignment. DeepMind frames many of these scenarios as a malfunction.

Attackers Hid Malware in Vector Image
Hackers behind a phishing campaign appear to have used artificial intelligence-generated code to hide malware behind a wall of overly complex and useless code, said Microsoft. "Not something a human would typically write from scratch due to its complexity, verbosity and lack of practical utility."

What's Left After Raking In Millions From Other People's Blood, Sweat and Tears?
Things that continue to elude scientific observation: the Loch Ness Monster, Bigfoot and the ransomware hacker who voluntarily chose retirement. "There's no such thing as 'retirement' in cybercrime," despite some ransomware hackers dangling promises to leave the field.

Cloudflare's Christian Reilly on Practical AI Security, Extreme AI Implementation
Christian Reilly, field CTO at Cloudflare, shares how organizations can harness artificial intelligence technology while maintaining security. He warns against extreme AI approaches and emphasizes practical security measures for enterprise adoption.

Splx Says Hardened Prompts Lower Hallucinations But Security Gaps Persist
DeepSeek is touting its newest model as its entry into the "agent era" and performance benchmarks show a notable leap in capabilities. Security testing shows progress and persistent vulnerabilities in the Chinese company's upgraded V3.1 model. The raw model swore in response to testing prompts.

Bayhealth Medical Center Was Among Cybercrime Group's Many 2024 Healthcare Victims
Bayhealth Medical Center in Delaware - an alleged victim of a 2024 hack by the "notorious" and prolific ransomware gang Rhysida that resulted in a breach affecting nearly a half-million people - has agreed to a preliminary settlement in a proposed class action lawsuit stemming from the incident.

Attackers Could Siphon Gmail Data Unnoticed From Users Who Let AI Tool Access Email
OpenAI patched a flaw in ChatGPT's Deep Research agent that could have enabled hackers to extract Gmail data without the user's knowledge. Radware researchers said the flaw affected subscribers who authorized the artificial intelligence tool to access their email accounts.

CISOs, Regulators and Innovators Unite in New York to Safeguard Healthcare's Future
From discussions on health data explosion to the keynote on AI deployment, the Healthcare Security Summit: New York offered practical strategies to manage data risks, ensure continuity of patient care and prepare for a regulatory landscape that is rapidly reshaping cybersecurity priorities.

Speaker for Upcoming CS4CA Europe London Event Discusses OT Risk and Collaboration
IT and OT teams at critical infrastructure companies face the imperative of balancing digitalization and automation with cybersecurity. In advance of the CS4CA Europe London Conference (Sept. 30 - Oct. 1, 2025), event speaker Marta Majtenyi previews some of the major themes.

Major European Airports Continue to Face Service Disruptions Following Friday Hack
European cyber defenders classified as a ransomware attack an incident that disrupted several major European airports including London Heathrow resulting in flight cancelations and delays over the weekend and Monday.

Now-Dormant Gang Claimed North Carolina, Florida Groups on Data Leak Site This Year
Two medical practices - in North Carolina and Florida - are notifying a total of more than 700,000 patients whose information was potentially stolen in separate hacks earlier this year. The now-dormant ransomware gang BianLian had claimed both organizations as victims on its dark website.