In late May 2023, a zero-day vulnerability in MOVEit Transfer — a widely used managed file transfer software — was exploited by a ransomware group known as Cl0p. Within weeks, the breach had cascaded across hundreds of organizations: federal agencies, state governments, universities, financial institutions, and healthcare providers. The scale was staggering. The breach eventually […]
The FTC Is Watching What Health Apps Do With Your Data The Federal Trade Commission made its position clear in early 2023: health apps that share sensitive user data without proper consent are violating the law. The agency issued warning letters to several digital health companies and followed up with enforcement action against GoodRx, which […]
In 2023, five comprehensive state privacy laws go live: California’s CPRA (the updated CCPA), Virginia’s CDPA, Colorado’s CPA, Connecticut’s CTDPA, and Utah’s UCPA. Each law gives consumers new rights — the right to access their data, correct it, delete it, and opt out of its sale or use in targeted advertising. The laws vary in […]
Neopets Got Hacked. 69 Million Accounts. The Hackers Were Inside for 1 In July 2022, a hacker posted a database on a forum with the personal information of 69 million Neopets users — names, email addresses, birth dates, zip codes, and account data. The asking price was four Bitcoin. The kicker: investigators determined the attackers […]
IBM’s annual Cost of a Data Breach Report dropped in 2022 with a number that should get the attention of any business leader: $4.35 million. That is the global average total cost of a data breach — the highest figure recorded in the 17-year history of the report, up from $4.24 million the year before. […]
In July 2022, the HHS Office for Civil Rights wrapped up 11 HIPAA enforcement actions in a single month — all of them for the same violation: failing to give patients access to their own medical records. The list included hospitals, surgical groups, dental practices, and psychiatric consultants. Fines ranged from $3,500 to $65,000 per […]