DataBreachToday.com

Mustang Panda Uses MAVInject to Evade Antivirus Detection
A Chinese state-sponsored hacking group is abusing a legitimate Microsoft tool to evade security and install backdoors on government systems in the Asia-Pacific region. The threat actor uses MAVInject.exe to inject malware into waitfor.exe.

Google Expects Tactics to Spread; Global Targets and Other Services at Risk
Russian nation-state hackers are using phishing attacks to target Ukrainian users of the chat app Signal, say security researchers. Rather than circumventing Signal's end-to-end encryption via a cryptographic attack, attackers use malicious prompting to prod victims into exposing messages.

Researcher Says Firm Failed to Secure Sensitive Health Data From Survey Forms
An unsecured database containing 2 terabytes of data allegedly exposed more than 1.6 million clinical research records to the internet, including sensitive personal and medical information of patients, said the security researcher who discovered the lapse. Why does this keep happening?

'Marstech1' Malware Targets Developers Through GitHub Repository
New North Korean malware is targeting crypto wallets with an unconventional command-and-control infrastructure and through malware embedded into a GitHub repository that's apparently the account of a Pyongyang hacker. The implant appears to have emerged late last December.

Investment Led by Bain Capital to Enhance Predictive Threat Detection Capabilities
Dream raised $100 million in Series B funding from Bain Capital on a $1.1 billion valuation to enhance its proprietary Cyber Language Model and expand globally, with a focus on U.S. market entry to address growing national security threats through AI-driven cybersecurity and predictive solutions.

Court Clears Way for Musk's DOGE Team to Continue Accessing Sensitive Federal Data
A federal judge has ruled against a lawsuit from 14 state attorneys general requesting a temporary restraining order against Elon Musk and the Department of Government Efficiency amid controversy surrounding the billionaire's access to sensitive government systems.

Flurry of Arrests a Potential Prelude to Russia-Ukraine Peace Negotiations
Even before Donald Trump took office on Jan. 20, there were signs that Russian President Vladimir Putin ordered cybercriminals operating inside his country's borders to be reined in, potentially as a bargaining chip in negotiations over Russia's stalemated war of conquest against Ukraine.

States will increasingly be stepping up to fill gaps in the healthcare sector with new cyber legislation and requirements as the Trump administration promises to roll back regulations, predicts attorney Amy Magnano of the law firm Morgan Lewis' healthcare practice.

Leaderboard Race May Be More Marketing Than Merit
Artificial intelligence model makers routinely publish benchmark scores of their performance, but the leaderboard race may be more of an exercise in marketing than an accurate reflection of the models' abilities. Understanding model failures can be more valuable than celebrating high scores.

Use Other Than for Police Purposes Can Invoke Fine Up to 20 Million Euros
The Italian Data Protection Authority warned against unlawful use of Graphite spyware following reports of mass hacking campaigns using the tool. The Italian privacy regulator published a warning targeting commercial spyware developed by Israeli firm Paragon Solutions.

Surge in Attack Attempts Spotted After Palo Alto Networks Details and Patches Flaw
Attackers have stepped up efforts to exploit a vulnerability in the software that runs Palo Alto Networks firewall appliances that could give them direct access to the underlying software. Unauthenticated hackers could use PHP scripts to bypass the PAN-OS management web interface.

Sluggish Sales Growth and Lower Relevance in Endpoint Could Make Trend Attractive
Endpoint security vendors are changing up their ownership or business models as Microsoft and CrowdStrike increasingly blot out the sun in this rapidly consolidating market. Reuters said that Advent International, Bain Capital, EQT AB and KKR have expressed interest in taking Trend Micro private.

Lawsuit Alleges Insurer Used AI Tool in Denying Patients Medically Necessary Care
A proposed class action lawsuit against UnitedHealth Group, which claims the company's insurance unit UnitedHealthcare used artificial intelligence tools to deny Medicare Advantage claims for medically necessary care, has the green light to proceed from a federal judge.

Who Are 'Death Clickers,' and How Do They Weaken Company's Cyber Defense?
Employees who repeatedly click on malicious links or "death clickers" are a risk to an organization's cybersecurity. This blog explains how awareness, behavior testing and simulations can help organizations strengthen their cybersecurity culture and manage human risks.