Industry Intel

Compliance & Security News

Data breaches, regulatory enforcement, AI governance updates, and compliance industry developments — updated every 6 hours.

Breach & EnforcementRegulatoryAI Governance
RegulatoryHIPAA Journal2d ago

FREE Webinar: 2025 HIPAA Breaches & Fines: What Went Wrong and Your 2026 Action Plan

In 2025, hundreds of healthcare data breaches exposed tens of millions of patient records — and the OCR enforcement record […] The post FREE Webinar: 2025 HIPAA Breaches & Fines: What Went...

RegulatoryHIPAA Journal10h ago

Vendor Data Breaches Announced by Six HIPAA-Regulated Entities

There have been several announcements about data breaches at business associates of HIPAA-regulated entities recently, including Providence St. Joseph Orange […] The post Vendor Data Breaches...

RegulatoryHIPAA Journal1d ago

Settlements Agreed to Resolve Two Class Action Healthcare Data Breach Lawsuits

Settlements have received preliminary approval from the courts to resolve class action data breach lawsuits against Dove Healthcare Management Services […] The post Settlements Agreed to...

RegulatoryHIPAA Journal2d ago

SAG-AFTRA Health Plan Settles Lawsuit Over 2024 Phishing Incident

SAG-AFTRA Health Plan has settled a class action lawsuit over a September 2024 email data breach for $950,000. Hackers gained access […] The post SAG-AFTRA Health Plan Settles Lawsuit Over 2024...

Breach & EnforcementBleeping Computer3h ago

New Bluekit phishing service includes an AI assistant, 40 templates

A new phishing kit named Bluekit offers more than 40 templates targeting popular services and includes basic AI features for generating campaign drafts. [...]

Breach & EnforcementThe Record5h ago

Zambia cancels global digital freedoms conference days before start

On Tuesday, Zambia’s Minister of Technology and Science offered the first hint that the conference would be cancelled, telling a Zambian news outlet that participants’ security clearances were...

Breach & EnforcementThe Record6h ago

France investigates 15-year-old over alleged hack of national ID agency

The minor was taken into police custody on April 25 on suspicion of involvement in a data breach affecting the National Agency for Secure Documents (ANTS), which processes applications for passports,...

AI GovernanceMIT Technology Review6h ago

This startup’s new mechanistic interpretability tool lets you debug LLMs

The San Francisco–based startup Goodfire just released a new tool, called Silico, that lets researchers and engineers peer inside an AI model and adjust its parameters—the settings that determine a...

RegulatoryHIPAA Journal8h ago

Sandhills Medical Foundation Ransomware Attack Affects 169,000 Patients

Sandhills Medical Foundation in South Carolina and Laurel Eye Clinic in Pennsylvania have experienced security incidents that exposed patient data. […] The post Sandhills Medical Foundation...

Breach & EnforcementBleeping Computer8h ago

New Linux ‘Copy Fail’ flaw gives hackers root on major distros

An exploit has been published for a local privilege escalation vulnerability dubbed "Copy Fail" that impacts Linux kernels released since 2017, allowing an unprivileged local attacker to gain root...

Breach & EnforcementBleeping Computer11h ago

Critical cPanel and WHM bug exploited as a zero-day, PoC now available

The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in the wild and has been leveraged in attempts since late February. [...]

RegulatoryHIPAA Journal12h ago

Southern Illinois Healthcare Enterprises Pixel Settlement Approved

A settlement has been agreed to resolve litigation against defendants Southern Illinois Healthcare Enterprises, Southern Illinois Hospital Services, and Southern […] The post Southern Illinois...

Breach & EnforcementBleeping Computer1d ago

cPanel, WHM emergency update fixes critical auth bypass bug

A critical vulnerability affecting all but the latest versions of cPanel and the WebHost Manager (WHM) dashboard could be exploited to obtain access to the control panel without authentication. [...]

RegulatoryHIPAA Journal2d ago

Medical Device Maker Medtronic Announces Data Breach

The medical device manufacturing giant Medtronic has confirmed that hackers breached its network and exfiltrated data. The company announced the […] The post Medical Device Maker Medtronic...

Breach & EnforcementKrebs on SecurityApr 6, 2026

Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab

An elusive hacker who went by the handle "UNKN" and ran the early Russian ransomware groups GandCrab and REvil now has a name and a face. Authorities in Germany say 31-year-old Russian Daniil...

Breach & EnforcementKrebs on SecurityMar 23, 2026

‘CanisterWorm’ Springs Wiper Attack Targeting Iran

A financially motivated data theft and extortion group is attempting to inject itself into the Iran war, unleashing a worm that spreads through poorly secured cloud services and wipes data on...

Don't wait for a breach to prioritize compliance.

Every headline above is a company that didn't act in time. Schedule a scoping call — 30 minutes to know exactly where you stand.

Schedule a scoping call →
+1 (202) 793-7151Schedule a scoping call →