The Record

The hack into the account of the country’s top security official has drawn criticism online.

Three hospitals run by Catholic healthcare organization Covenant Health are dealing with a cyberattack that forced the facilities to shut off all access to data systems.

Several Senate Democrats called on Homeland Security Secretary Kristi Noem to reestablish the Cyber Safety Review Board (CSRB) so it could continue looking into China-linked hacks.

A 28-year-old civilian IT worker at the Defense Intelligence Agency has been arrested in Northern Virginia on suspicion that he leaked secrets to a foreign government.

The latest report from Meta on social media influence operations tracked some low-impact campaigns to China, Iran and Romania.

Russian internet service provider ASVT blamed widespread outages on a DDoS incident and attributed it to a pro-Ukraine collective.

The company said it “recently learned of suspicious activity” within its environment that it believes “was tied to a sophisticated nation state actor, which affected a very small number of ScreenConnect customers.”

Funnull Technology supports “hundreds of thousands of websites” dedicated to the scams, otherwise known as pig butchering, according to the sanctions announcement by the Treasury Department’s Office of Foreign Assets Control.

The retailer's domain now features a brief message to customers explaining that it has “identified and are taking steps to address a security incident.”

Google Threat Intelligence spotted the China-based operation known as APT41 leveraging the company's own Calendar app as part of a cyber-espionage campaign.

Researchers at cybersecurity firm DomainTools spotted a fake Bitdefender site spreading VenomRAT malware. The antivirus company said it is working to have the site taken down.

Britain's strategic defense review calls for a new Cyber and Electromagnetic Command to “lead defensive cyber operations and coordinate offensive cyber capabilities" with the military's National Cyber Force.

Decentralized finance platform Cork Protocol paused trading and launched an investigation after millions of dollars' worth of Ethereum were lost in a "security incident."

A second state passing such tough data privacy legislation, particularly around geolocation data, could be a significant factor in pushing other states to do the same, experts said.

The company said data held in GitHub pertaining to LexisNexis Risk Solutions had been acquired by an unknown third party.

Estonia said a man is suspected of unlawfully accessing a customer card database managed by Allium UPI, the parent company of the Apotheka pharmacy chain, in February 2024.

The suspects allegedly parked cars with activated dash cams near military targets and left them to record for up to 12 hours.

Hackers likely based in Vietnam advertised websites offering AI-powered video generation tools, according to Google's Mandiant unit, and then used the sites to spread infostealers and other malware.

Sina Gholinejad admitted to using the Robbinhood ransomware variant to extort ransom payments from dozens of victims.

A Russian court sentenced a former hospital programmer to 14 years in a high-security penal colony for allegedly leaking personal data of Russian soldiers to Ukraine, authorities said.