A data breach has leaked sensitive medical records of over 15 million French citizens after hackers breached a centralized health information management system used by various health facilities.
Cyber Security
Cyber criminals, state-sponsored hackers and even the occasional disgruntled employee are constantly looking to gain unauthorized access for a variety of purposes: theft of money, cyber espionage, personal information for sale or for use in scams, and damage to critical infrastructure for just a few of the most common.
So how does an organization mitigate an entire world full of continual cyber attacks? Just as buildings have a number of necessary elements of physical security: access control, cameras, alarms and so on; there are similar key elements of cyber security that are absolutely vital for just about any modern business.
It starts with identifying and closing the most common doors that attackers use. For example, phishing attacks on employees are far and away the most common initial point of entry. The breach of even a low-level employee account can quickly turn into an escalation in access privileges and the ability to reach sensitive information. This is also true of smart devices, which are generally more poorly secured than computers and phones.
Researchers with Truffle Security are warning that old and seemingly benign Google API keys might now be weaponized by threat actors after gaining Gemini AI authorization permissions, in a destructive attack that could target a victim's wallet.
The Oasis researchers document a vulnerability chain that can be initiated from any website the AI agent (or its user) visits, without users needing to interact in any way or being at all aware that they are being compromised. The attack targets the OpenClaw "gateway" that essentially acts as the AI agent's nerve center.
A third-party data breach at the online DIY platform ManoMano has affected nearly 38 million customers after attackers breached its subcontractor’s Zendesk instance.
A sophisticated vishing attack by the suspected ShinyHunters cybercrime gang has leaked business contact information from the New York-based ad tech company Optimizely.
A software security flaw in PayPal’s loan app leaked customer data for 6 months, forcing the payment giant to issue refunds after unauthorized transactions occurred in some affected accounts.
A long-term Chinese cyber espionage operation that has been active since at least 2017 and has a count of at least 53 victims has been substantially disrupted, according to the Google Threat Intelligence Group (GTIG) and Mandiant.
Wall Street is now demanding evidence of product uptake and pathways to profitability—and Microsoft is stumbling. The company’s latest earnings report led to a large drop in share prices, as investors and analysts raised concerns about its massive spending on AI infrastructure without the kinds of tangible returns that a really valuable product should demonstrate.
A security breach at France’s national bank registry has compromised the personal information of 1.2 million people, after a threat actor downloaded a database containing the information of all bank accounts in the country.
An INTERPOL-led law enforcement operation across 16 African countries has nabbed 651 suspects linked to online scams targeting victims across the continent and worldwide.










