DataBreachToday.com

Analysis of Proposed Budget, Workforce Cuts Reveal Risks to Cyber Readiness
The Trump administration’s 2026 budget proposal would eliminate over 1,000 positions and nearly $425 million from CISA, gutting cyber ops, risk modeling and election security - prompting warnings that the U.S. is weakening its national cyber defense amid rising global threats.

Ex-Employee Faces Criminal Charges; Hospital Reports Incident as Big HIPAA Breach
A former worker of a New York hospital's sleep disorders center has been indicted on criminal charges alleging he hid cameras in the facility's bathrooms to record videos of staff and patients. The hospital reported the incident to federal regulators as a HIPAA breach affecting thousands.

Cyber Blueprint Spells Out Measures to Coordinate Against Disruptive Hacks
Europe is girding for a possibility of a transnational cybersecurity incident through recommendations outlining a continental response for transnational cybersecurity threats. The Council of the European Union on Friday a "EU Cyber Blueprint."

Unsigned Order Overturns District Court Injunction
The U.S. Supreme Court granted Friday a Trump administration cost-cutting effort known as the "Department of Government Efficiency" access to data on Americans held at the Social Security Administration. Two liberal justices accused their conservative colleagues of a double standard.

Ohio-Based Organization Says It's Making Progress Restoring IT, Beefing Up Security
Cybercrime group Interlock has begun publishing some of the 941-gbytes of data the gang claims to have stolen in a disruptive May attack on Kettering Health. The Ohio-based healthcare organization is making IT system restoration progress and cyber enhancements, but is still recovering.

Data Defense Startup Focuses on Unstructured Data and On-Device Endpoint Protection
Backed by Paladin and Crosspoint, Seattle-based data security startup Mind aims to double its team and develop small language models that power endpoint classification. The company is carving a niche in data loss prevention by prioritizing unstructured data and actionable enforcement.

BladedFeline Hackers Spying on Kurdish Officials Since at Least 2017
An Iranian state espionage group stayed hidden for more than half-a-decade until security researchers spotted it in 2023, researchers said Thursday in a report detailing a growing arsenal of hacking tools it deployed against Kurdish and Iraqi government officials.

Hackers Impersonate IT Support Staff
A hacking collective linked to recent British retailer attacks is targeting cloud companies through or voice phishing scams for data theft from European hospitality, retail and education sectors. Hackers impersonate IT support staff.

Enterprise Browsers Provide Increased Visibility, Robust Access Control, Encryption
In a world where 85% of work happens in the browser, it is the new enterprise front door - and attackers are knocking. Amid this changing dynamic, secure browsers can step in and prevent threats from unmanaged devices and SaaS sprawl, delivering enterprise-grade security without slowing teams down.

Invest in Preparation and Training During the Calmer Times Between Attacks
Cyberattacks may make headlines, but the daily discipline of security - patching routines, threat hunting, tabletop exercises and user education campaigns - is where resilience is forged. These tasks might not feel heroic, but they build technical and human infrastructure to handle the next crisis.

While healthcare organizations often know in general what they need to do in case they're faced with a ransomware attack, the devil is in the details of how comprehensive and well-rehearsed that incident preparedness plan is for optimal response, said Rick Doten, vice president and healthplan CISO at Centene Corp.

Identity security is still one of the most underinvested areas of cybersecurity across the healthcare sector, regardless of the depth of cyber resources available to many different types and sizes of entities, said Hugo Lai, CISO at Temple University Health System.

Onslought Also Paved Way for Rise of English-Speaking Hackers
An international law enforcement crackdown on the LockBit ransomware group caused fragmentation and distrust among Russian-speaking cybercrime groups, paving the way for English-speaking hacking groups to gain prominence, experts said Tuesday during a London conference.

BidenCash Was Notorious for Posting Free Tranches of Stolen Card Data
An online carder marketplace with a flair for publicity is now offline following a U.S. and Dutch law enforcement seizure. The site, BidenCash, began operations in March 2022, growing to 117,000 customers who facilitated the trafficking of more than 15 million payment card numbers.

Top Trump Official Touts Enforcement Wins as Firms Warn China Is Gaining Ground
Despite pushback from tech leaders like Nvidia, Commerce Secretary Howard Lutnick told Congress that expanded export controls, seizures and arrests are safeguarding U.S. innovation, as the Trump administration scraps Biden-era AI policies and targets Chinese access to chips.

Banking Sector Faces Challenges in Meeting March 2026 Compliance Deadline
The Central Bank of UAE has issued a directive asking financial institutions to eliminate weak authentication methods including SMS and email OTPs. Banks are also expected to implement real-time fraud monitoring and suspend sessions when malicious activity is detected.