DataBreachToday.com

Modular Mirai Malware Code Strikes Again
No fewer than two separate Mirai botnets are on the hunt for unpatched servers hosting open source SIEM solution Wazuh, an unusual variation of hackers' typical focus on Internet of Things devices for stringing together infected computers. Akamai dates the first campaign to March, the other to May.

NHS in England Urging One Million People to Donate Blood to 'Secure' Supply
The National Health System in England is still dealing with blood supply issues one year after a ransomware attack on a British pathology laboratory services provider disrupted patient care and testing services at several London-based hospitals and triggered a nationwide blood shortage.

Intrusion Involved ShadowPad Malware, Wielded in Attacks Tied to Chinese APT Groups
Cybersecurity firm SentinelOne said suspected Chinese attackers, wielding ShadowPad backdoor malware, infiltrated a logistics firm that it used for supplying hardware to its employees, but that the intrusion doesn't appear to have resulted in any infiltration of its own, corporate network.

White House Limits Cyber Sanctions, Cuts Digital ID Mandates and Refocuses AI Rules
President Donald Trump signed an executive order on Friday that rewrites key cyber policies from the previous White House administration, removing digital ID mandates, mandating secure software standards and narrowing cyber sanctions to foreign actors.

Over 1 Million Infected Off-Brand Android Devices Pose Global Fraud Risk
A China-based botnet operation called BADBOX 2.0 has infected more than 1 million off-brand Android smart devices globally. In an alert, the FBI advised consumers to check their home networks for suspicious activity that could be linked to multiple fraud schemes.

Analysis of Proposed Budget, Workforce Cuts Reveal Risks to Cyber Readiness
The Trump administration’s 2026 budget proposal would eliminate over 1,000 positions and nearly $425 million from CISA, gutting cyber ops, risk modeling and election security - prompting warnings that the U.S. is weakening its national cyber defense amid rising global threats.

Ex-Employee Faces Criminal Charges; Hospital Reports Incident as Big HIPAA Breach
A former worker of a New York hospital's sleep disorders center has been indicted on criminal charges alleging he hid cameras in the facility's bathrooms to record videos of staff and patients. The hospital reported the incident to federal regulators as a HIPAA breach affecting thousands.

Cyber Blueprint Spells Out Measures to Coordinate Against Disruptive Hacks
Europe is girding for a possibility of a transnational cybersecurity incident through recommendations outlining a continental response for transnational cybersecurity threats. The Council of the European Union on Friday a "EU Cyber Blueprint."

Unsigned Order Overturns District Court Injunction
The U.S. Supreme Court granted Friday a Trump administration cost-cutting effort known as the "Department of Government Efficiency" access to data on Americans held at the Social Security Administration. Two liberal justices accused their conservative colleagues of a double standard.

Ohio-Based Organization Says It's Making Progress Restoring IT, Beefing Up Security
Cybercrime group Interlock has begun publishing some of the 941-gbytes of data the gang claims to have stolen in a disruptive May attack on Kettering Health. The Ohio-based healthcare organization is making IT system restoration progress and cyber enhancements, but is still recovering.

Data Defense Startup Focuses on Unstructured Data and On-Device Endpoint Protection
Backed by Paladin and Crosspoint, Seattle-based data security startup Mind aims to double its team and develop small language models that power endpoint classification. The company is carving a niche in data loss prevention by prioritizing unstructured data and actionable enforcement.

BladedFeline Hackers Spying on Kurdish Officials Since at Least 2017
An Iranian state espionage group stayed hidden for more than half-a-decade until security researchers spotted it in 2023, researchers said Thursday in a report detailing a growing arsenal of hacking tools it deployed against Kurdish and Iraqi government officials.

Hackers Impersonate IT Support Staff
A hacking collective linked to recent British retailer attacks is targeting cloud companies through or voice phishing scams for data theft from European hospitality, retail and education sectors. Hackers impersonate IT support staff.

Enterprise Browsers Provide Increased Visibility, Robust Access Control, Encryption
In a world where 85% of work happens in the browser, it is the new enterprise front door - and attackers are knocking. Amid this changing dynamic, secure browsers can step in and prevent threats from unmanaged devices and SaaS sprawl, delivering enterprise-grade security without slowing teams down.

Invest in Preparation and Training During the Calmer Times Between Attacks
Cyberattacks may make headlines, but the daily discipline of security - patching routines, threat hunting, tabletop exercises and user education campaigns - is where resilience is forged. These tasks might not feel heroic, but they build technical and human infrastructure to handle the next crisis.

While healthcare organizations often know in general what they need to do in case they're faced with a ransomware attack, the devil is in the details of how comprehensive and well-rehearsed that incident preparedness plan is for optimal response, said Rick Doten, vice president and healthplan CISO at Centene Corp.