DataBreachToday.com

Announcement Comes Hours After Trump Blacklists Anthropic
OpenAI said late Friday night it reached an agreement with the U.S. Department of Defense to deploy its large language models onto military classified networks. The announcement came hours after President Donald Trump instructed federal agencies to cease using AI developed by OpenAI rival Anthropic.

Request for Information Is Part of a Broader Medicare, Medicaid Fraud 'Crackdown'
The U.S. Department of Health and Human Services will use "advanced" AI tools to more quickly detect Medicare and Medicaid fraud before scam claims are paid. As part of the "major crackdown" on healthcare fraud, HHS is also seeking public input on AI as regulators ponder potential rulemaking.

Also, More ShinyHunters Breaches, North Korea Laptop Farm Operator Sentenced
This week, Finland's Aleksanteri Kivimäki sentenced. ShinyHunters breaches. Laptop farm rancher sentenced. Oregon state agency hacker sentenced. African scammers arrested. MuddyWater AI-assisted hacks. Advantest ransomware incident, SolarWinds and Microsoft patches. FileZen flaw. QualDerm breach.

New Plugins Push AI Beyond Coding Deeper Into Enterprise Workflows
Anthropic's announcement this week that it has launched more Claude Cowork plugins to tackle enterprise workflows is just the latest advancement in the artificial intelligence company's rollout of features aimed at upending the way companies do work.

Analysts Warn Pentagon Feud With Anthropic Could Trigger Cascading Defense Impacts
Defense Secretary Pete Hegseth's ultimatum to Anthropic over expanded Claude access could trigger a months-long AI capability gap and disrupt the defense industrial base, as analysts warn that supply chain risk designations and compelled safeguards may destabilize national security AI strategy.

State Officials Investigating Breach of Back-Office Services Provider Found in 2025
The victim count in the 2024 hack on back-office support services vendor Conduent Business Services has just ballooned again, with the Xerox-spinoff now reporting to Wisconsin regulators that the incident affected "25 million-plus" people nationwide.

Emergency CISA Directive Lands as DHS Shutdown Strains Cyber Operations
The Cybersecurity and Infrastructure Security Agency issued a directive Wednesday ordering civilian agencies to secure and hunt for compromise in vulnerable Cisco SD-WAN systems after officials observed active exploitation - while warning that shutdown-related disruptions heighten operational risk.

Lawsuit Claims SonicWall Cloud Backup Flaw Led to Ransomware Attack Against Marquis
Marquis Software Solutions has sued SonicWall alleging a cloud backup data breach exposed firewall configuration files, including credentials and multifactor authentication scratch codes. The firm says the breach enabled an August 2025 ransomware attack and triggered dozens of class action lawsuits.

Venture Capitalist Nick Davidov Points to Market Demand, Vulnerability Trends
Anthropic's new AI-powered code security tool may have triggered a market selloff this week, but venture capitalists aren't rewriting their investment plans for cybersecurity vendors, said Nick Davidov, co-founder and managing partner at San Francisco-based venture capital firm DVC.

Russian and Armenian Operators Tied to Logistics-Focused 'Diesel Vortex' Group
Cybersecurity investigators have identified, unmasked and disrupted a months-long organized criminal effort that developed a phishing-as-a-service designed to target Western users of popular logistics platforms, facilitating multiple types of fraud and displaying operators' deep industry knowledge.

Attack Spotlights Threats, Risks Facing Healthcare Supply Chain
UFP Technologies, a Massachusetts-based maker of single-use medical devices and other healthcare supplies, has notified the U.S. Securities and Exchange Commission of a cyber incident discovered on Valentine's Day that involved the theft or destruction of company data.

Officials Warn Funding Cuts, Fragmented Intelligence Sharing Slow Threat Response
State and local officials told lawmakers that funding cuts, fragmented intelligence pipelines and unresolved interoperability gaps are undermining cyber and critical infrastructure protections as the country prepares for the 2026 World Cup and a series of high-profile global events.

Council of the EU Rejects Redefinition of 'Personal Data'
A rejection by European Union member governments of proposal backed by the European Commission to make it easier to share data about individuals won cautious plaudits from Paul Nemitz, a key architect of Europe's General Data Protection Regulation.

Power Capacity Is Growing But 26% of Projects Faced Delays, Experts Warn
For years, enterprise cloud computing has felt like a "sky's the limit" endeavor, but that aspiration is coming crashing to the ground as the industry faces a hard new reality. Growth is being constrained by the very real physical limitations of the world's power grids.

Index Ventures Backs End-to-End Platform, Targeting of AI-Driven Vulnerability Risk
Astelia raised $35 million in Series A funding led by Index Ventures to scale its AI-powered exposure management tool. The company uses AI agents and network analysis to help enterprises prioritize exploitable vulnerabilities and reduce remediation noise across hybrid and on-premises environments.

Why Governance, Access Control and Vendor Oversight Now Define Patient Safety
Healthcare breaches do not start with a single technical failure. Digital risk has become clinical risk, driven by weak governance, excess access and unmanaged vendors. Resilience now depends on governance, not more tooling.