Collaborate Disseminate
Pieter Arntz reports: Google has issued a patch for a high‑severity Chrome zero‑day, tracked as CVE‑2026‑2441, a memory bug in how the browser handles certain font features that attackers are already exploiting. CVE-2026-2441 has the questionable honor… Continue reading Update Chrome now: Zero-day bug allows code execution via malicious webpages
Marianne Kolbasuk McGee reports: U.S. federal authorities and industry officials are urging hospitals and clinics to address a critical flaw in BeyondTrust Remote Support and Privileged Remote Access software, which if exploited, could give an attacker… Continue reading Hospitals at Risk of BeyondTrust Ransomware Hacks
Regular readers of my companion privacy-oriented site, PogoWasRight.org, may recall that the site recently noted The Data Broker Directory: Who has your data, where they got it, and who they sell it to by Codamail’s Stephen K. Gielda of Packetder… Continue reading Resource: Privacy Law Directory — Codamail
Jonathan Greig reports: A 45-year-old Romanian national pleaded guilty this week to hacking into computers at Oregon’s Department of Emergency Management in June 2021 and selling the access he obtained for $3,000 worth of Bitcoin. Catalin Dragomir also… Continue reading Romanian hacker faces up to 7 years for breaching Oregon emergency management department
Emma Woollacott reports: Credentials stolen from a single government official enabled threat actors to access a French national database containing data on more than 1.2 million bank accounts. The attackers were able to access the Fichier des Comptes B… Continue reading A single compromised account gave hackers access to 1.2 million French banking records
When was the last time we read about a breach involving a lost or stolen USB drive? It’s been a while, but now Keith Menconi reports: San Jose administrators have disclosed that private information for current and former city employees may have b… Continue reading San Jose slow to tell workers about data breach
Emma Kirk reports: A hacker has exposed personal data belonging to hundreds of thousands of Australians it allegedly stole from a Sydney finance technology company. Finance platform youX confirmed its systems were accessed by an unauthorised third part… Continue reading Loan applications, drivers licences, personal data of 440k Aussies exposed after hacker hits Sydney finance tech company youX
Settlement Marks OCR’s 11th Enforcement Action in OCR’s Risk Analysis Initiative Today, the U.S. Department of Health and Human Services’ (HHS) Office for Civil Rights (OCR) announced a settlement with Top of the World Ranch Treatment… Continue reading HHS OCR Settles HIPAA Security Rule Investigation with Top of the World Ranch Treatment Center
Dysruption Hub is all over the breach news today. They report: Meriden, Connecticut, took city internet services and public Wi-Fi offline after officials reported an attempted disruption, limiting some municipal operations as police investigate. The ci… Continue reading Meriden, Connecticut shuts down city internet after disruption attempt
A report issued by the Office of the Information and Privacy Commissioner for British Columbia states: Between April 30, 2025 and June 20, 2025 the OIPC received breach notifications from the Vancouver Coastal Health Authority (VCH), the Fraser Health … Continue reading Privacy breaches following the Lapu Lapu Day Festival