Data Security

Cybersecurity
California AG Sues 23andMe Successor Over 2023 Genetic Data Breach
California AG Rob Bonta sued Chrome Holding Co., 23andMe's successor after bankruptcy, over the 2023 breach exposing genetic health data for millions of users.
Cybersecurity
NC Man Gets 121 Months for Selling Elderly Americans’ Data to Scammers
Troy Murray, 57, of North Carolina was sentenced to 121 months in prison and ordered to forfeit $5.2 million for selling elderly Americans' data to ...
Application Security
Microsoft: 14 npm Packages Linked to Single Actor Stealing AWS Keys
Microsoft attributed 14 malicious npm packages impersonating OpenSearch and Elasticsearch to a single threat actor who stole AWS credentials and CI/CD secrets from developer environments.
Cybersecurity
Play Ransomware Lists MyPillow, US Telecom in Six-Victim Batch
Play ransomware listed six victims on May 25, led by consumer brand MyPillow and a US telecom provider, in a multi-sector batch spanning four countries.
Cybersecurity
Incransom Hits Illinois Health Center and Manufacturer
Incransom claimed two US victims on May 25 — Open Door Health Center in Illinois and manufacturer PILLER AIMMCO — part of a three-victim, 48-hour ...
Cybersecurity
Incransom Claims Meirc Breach, Threatens to Leak 1TB of Client Data
Incransom has claimed a full-network breach of Meirc Training & Consulting on May 25, threatening to publish 1TB of employee and client data within one ...
Nova Ransomware Hits Brazilian Government Agency and Turkish Tech Firm
Cybersecurity
Nova Ransomware Hits Brazilian Government Agency and Turkish Tech Firm
Nova ransomware claimed Brazil's SECONT and Turkey's Adensa Teknoloji on May 24, its third posting in three days spanning South America, Europe, and Turkey.
Cybersecurity
Qilin Ransomware Batch-Lists 7 Victims Across Five Countries
Qilin ransomware disclosed seven victims in a single May 24 batch across five countries, including a Czech financial firm and US accounting services provider.
Cybersecurity
Nightspire Ransomware Hits US Healthcare in Nine-Victim Batch
Nightspire ransomware posted nine victims on May 24 including US adult day center La Familia, an Egyptian Papa John's franchise, and a consumer lender across ...
Cybersecurity
ShinyHunters Claims 42M Charter Records, Sets May 27 Deadline
ShinyHunters listed Charter Communications with 42 million claimed records and a May 27 dump deadline; Charter confirmed an investigation with authorities.