A Maine-based third-party administrator that handles healthcare claims involving day care centers, youth sports and NCAA athlete accidents is notifying more than 181,000 individuals that their medical information and personal identifiers may have been accessed or stolen in a hacking incident.
New York-based medical supply fulfillment company Fieldtex is notifying its clients and more than 274,000 people about an August hack. Meanwhile, revenue cycle software firm TriZetto is also contacting its customer and patients about its own hacking incident.
Reduce the risk of business disruption by strengthening cybersecurity now. In today's rapidly shifting cybersecurity landscape, being prepared turns potential threats into proactive protections. Based on insights and data from the 2025 Unit 42 Global Incident Response Report, we compiled a fundamental checklist every...
Enterprises are racing to deploy Microsoft Copilot and other artificial intelligence tools, but misconfigured data access has created new exposures. Many enterprises are still unclear on where sensitive organizational data resides or who can access such data. Brian Vecci, field CTO at Varonis, said, "90% of...
Drug research firm Inotiv in a filing with federal regulators said it is still evaluating the financial and operational impact of an August cyberattack that's linked to ransomware gang Qilin. The company is also notifying nearly 10,000 people whose data was allegedly stolen in the incident.
Privacy requirements continue to expand, but for CISOs the real challenge is understanding how to integrate privacy operations into the broader risk and security framework without adding complexity. In this session, we will break down the core components of the privacy maturity curve and clarify which activities truly...
As part of its ongoing Chapter 11 bankruptcy proceedings, 23andMe Holding Co. - now named Chrome Holding - has reached a settlement with its cyber insurers for the carriers to buy back $16.5 million of the consumer genetics testing firm's unused cyber policy. What will the company do with the funds?
Kaiser Permanente has agreed to pay up to $47.5 million to settle litigation stemming from its use of tracking codes in its websites, patient portals and mobile apps. Claimants alleged the trackers unlawfully shared patients' information with third parties, including Google and Microsoft.
The state of Texas has dropped a federal lawsuit filed against the U.S. Department of Health and Human Services that sought to vacate the 25-year-old HIPAA privacy rule, as well as 2024 rule changes under the Biden administration that prohibit the disclosure of reproductive health information.
OpenAI has temporarily ceased use of Mixpanel after the analytics firm disclosed a breach affecting profile data of the artificial intelligence giant's API platform users. The company is notifying impacted organizations and watching for signs of data misuse.
The U.S cyber defense agency issued an alert outlining how commercial spyware and state-aligned groups are abusing messaging-app features through malicious QR-based linking and zero-click exploitation to monitor U.S. government, military and other high-profile figures.
Diego Jarne Munoz of PwC outlines how repeatable architectures, strong governance, and measurable use cases help enterprises scale AI, strengthen trust and reduce risk while lowering development costs.
Email breaches continue to plague the healthcare sector, resulting in data compromises that often affect the sensitive information of scores of patients. Two recent incidents illustrate the risks email breaches pose to patients, and the potential legal fallout for providers.
While information blocking regulations were authorized under the 21st Century Cures Act nearly a decade ago, regulators are only starting to ramp up enforcement of the prohibited practices. Attorney Nan Halstead of Reed Smith explains critical steps organizations need to take to comply.
Organizations that struggle with data security rollouts aren't burdened by financial constraints or poor tooling. But they often misjudge how much work goes into security planning, said Antonio Maio, managing director at global consulting firm Protiviti.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.
