Policy
-
Thai Hospital Fined for Using Patient Records as Snack Bags
Thailand’s Personal Data Protection Committee has fined a private hospital 1.2 million baht for using patient files as snack bags, while also reporting a significant data breach by a state agency affecting over 200,000 citizens.
-
Mozilla Alerts Developers to Phishing Threats Targeting Add-On Accounts
Mozilla has warned browser extension developers of an active phishing campaign targeting accounts on its AMO repository, urging them to exercise caution and verify the authenticity of emails claiming to be from the organization.
-
North Korea’s Lazarus Group Shifts Tactics; Canadian City Faces Major Security Costs
North Korea’s Lazarus Group has reportedly transitioned to tactics involving the distribution of malware-laden open-source software, raising concerns over cybersecurity. Meanwhile, the city of Hamilton has incurred major costs due to a significant ransomware attack amid a slow rollout of security measures, while ethical hackers eye substantial rewards in the upcoming Pwn2Own competition. Additionally, CISA…
-
State-Sponsored Attack Targets Southeast Asian Telecommunications
A state-sponsored hacking group, CL-STA-0969, has targeted Southeast Asian telecommunications networks, employing sophisticated tools to establish remote access while avoiding detection. The report highlights significant overlaps with other espionage groups and emphasizes the need for robust cybersecurity measures.
-
New Encoding Attack Accelerates SS7 Vulnerabilities in Mobile Networks
Researchers have uncovered a new method that enables attackers to bypass SS7 protections through encoding manipulation, posing significant security risks to mobile networks. This technique has already been employed by a surveillance vendor to extract sensitive mobile subscriber location data.
-
Dollar Tree Hit by Major Data Breach, INC Ransomware Claims Responsibility
The INC Ransomware group claims to have stolen 1.2TB of sensitive data from Dollar Tree, raising serious cybersecurity concerns. The company denies any involvement and attributes the claims to data originating from 99 Cents Only Stores. The incident highlights the growing threat of ransomware attacks.
-
Apple Addresses Critical Safari Vulnerability with Software Update
Apple has released crucial updates to counteract a significant Safari vulnerability, classified as CVE-2025-6558, that may allow for exploits through crafted HTML content. The patch aims to protect users across multiple devices and systems.
-
National Guard Deployed in Response to Cyberattack in St. Paul, Minnesota
Minnesota Governor Tim Walz has activated the National Guard in response to a cyberattack that disrupted digital services in Saint Paul, ensuring the continuity of vital services while investigation and recovery efforts proceed.
-
Tea Dating App Data Breach Gets Worse, Exposes More Private User Information
The Tea app faces a significant data breach, exposing 59 GB of user data, including sensitive personal messages and images, due to vulnerabilities in its security. Authorities and cybersecurity experts are investigating the matter as the company attempts to mitigate the fallout and protect affected users.
-
U.S. Sanctions North Korean Hacker Linked to Remote IT Worker Fraud Scheme
The U.S. Treasury has sanctioned North Korean hacker Song Kum Hyok for facilitating a fraudulent IT worker scheme targeting American companies. This move highlights concerns over North Korea’s cyber operations as key to generating revenue under international sanctions.
