HealthEC LLC, a healthcare tech firm based in New Jersey, experienced a significant data breach that compromised the personally identifiable information of 4.5 million individuals who received care through one of the company’s customers.
SMTP smuggling is an emerging technique used by threat actors to send spoofed emails with fake sender addresses, bypassing security measures.
Nudge Security, a leading cybersecurity startup, had a successful year in 2023, specializing in providing practical and effective SaaS security solutions to help IT security leaders manage their expanding SaaS footprint.
CloudSEK researchers have discovered a surge in the sale of stolen or fake X Gold accounts on the dark web, raising concerns about potential phishing and disinformation attacks.
XCast Labs, a Californian VoIP provider, settles charges with the FTC and DoJ for enabling billions of illegal robocalls, and will be required to implement screening processes and sever ties with non-compliant firms.
Google has identified a vulnerability that allows malware to exfiltrate files from Chrome and gain access to Google Accounts, exploiting an undocumented Google OAuth endpoint called MultiLogin to steal session tokens and generate persistent Google cookies, granting continuous access to Google services even after a password reset or logging out.
