Hacktivists' Claimed Breach of Nuclear Secrets Debunked

Mathew J. Schwartz • July 2, 2025

Security experts have dismissed pro-Iranian hacktivist group LulzSec Black's claim to have breached Indian nuclear secrets in reprisal for the country's support of Israel. Pro-Iran hacktivist groups' SCADA-targeting, DDoS launching, data leaking and nuisance-level activities have surged.

Critical Infrastructure Security

Food Retail Giant's Breach: 2.2 Million Employees Affected

Latest

Data Governance

Sovereign by Design: Data Control in a Borderless World

Rahul Neel Mani • July 3, 2025

From Schrems II to TikTok fines, data sovereignty is redefining the rules of digital engagement. It is no longer an option for enterprises. CIOs must navigate a maze of data laws and tech strategies to stay compliant and competitive in a world without digital borders.

Application Security

When AI Codes in Hours - But Security Fixes Still Take Months

Michael Novinson • July 2, 2025

Generative AI can write applications in hours when it once took months, but traditional security approaches can't keep pace. Sohail Iqbal, CISO at Veracode, explains why 40% of AI-generated code contains vulnerabilities and why organizations must rethink their security strategies.

Cyberwarfare / Nation-State Attacks

Chinese Hackers Exploited Ivanti Flaw in France

Akshaya Asokan • July 2, 2025

A hacking campaign linked to Chinese threat actors chained zero-days in Ivanti server software to target French government, defense and media entities, the national cyber agency said. The hacker has similarities to a Chinese threat actor tracked as UNC5174.

Data Privacy

Court Approves 23andMe Sale to TTAM Research Institute

Marianne Kolbasuk McGee • July 2, 2025

A bankruptcy court gave the green light for TTAM Research Institute - a firm launched by 23andMe's co-founder and former CEO Anne Wojcicki - to buy 23andMe for $305 million. TTAM has promised to uphold the consumer genetics testing firm's current privacy policies and implement more data safeguards.

Cyberwarfare / Nation-State Attacks

Iran's 'Robert' Hack Targets Trump - and Tests US Cyber Gaps

Chris Riotta • July 2, 2025

An Iranian hacking group collectively using the pseudonym "Robert" claims to have 100 gigabytes of emails from President Donald Trump's inner circle as Tehran seemingly attempts to project strength in cyberspace in the wake of U.S.-led attacks on three of its key nuclear sites.

Critical Infrastructure Security

Vulnerable Protection Relays Put Power Grid at Risk

Prajeet Nair • July 2, 2025

Vulnerabilities in networked devices programmed to instantaneously trip power grid substation circuit breakers could be the means hackers use to cause the next blackout, warn researchers. There are "systemic patterns across substations, utilities and industrial sites worldwide," Mandiant warned.

Data Privacy

Feds Notify 103,000 Medicare Beneficiaries of Scam, Breach

Marianne Kolbasuk McGee • July 2, 2025

The Centers for Medicare and Medicaid Services is notifying 103,000 people that their personal information was potentially compromised by fraudsters who set up scam beneficiary online accounts on Medicare.gov. CMS said it has deactivated the fake accounts and is taking other steps in response.

Endpoint Security

Connected Devices Pose Escalating Security Risks

Michael Novinson • July 2, 2025

IoT devices have surged from 20 billion to 75 billion in under a decade. Chris Rouland, CEO of Phosphorus Cybersecurity, outlines why these devices remain vulnerable and how outdated software stacks and poor patching practices create massive risk exposure.

Fraud Management & Cybercrime

Scattered Spider Suspected in Qantas Data Breach

Akshaya Asokan , David Perera • July 2, 2025

The band of English-speaking adolescent hackers collectively tracked as Scattered Spider are focusing on the airliners - and possibly preparing a pivot to the oil and gas sector. Its loose membership tends to hyperfocus on single sectors at a time.

Leadership & Executive Communication

Your Security Stack Is Only as Secure as Your Sales Team

Brandy Harris • July 2, 2025

Thanks to Cybersecurity Awareness Month, everyone knows security is a priority, but what are we doing differently to change the culture? If our goal is to reduce risk, not just meet regulatory expectations, then we need to focus on behavior, not just boxes on a checklist.

HIPAA/HITECH

20 States Sue HHS to Stop Medicaid Data Sharing with ICE

Marianne Kolbasuk McGee • July 1, 2025

California and 19 other states are suing the Trump administration to stop the U.S. Department of Health and Human Services from allegedly disclosing Medicaid beneficiaries' personal health information to the Department of Homeland Security and Immigration and Customs Enforcement.

Artificial Intelligence & Machine Learning

Senate Strips AI Moratorium Amid Sharp Bipartisan Opposition

Chris Riotta • July 1, 2025

Senate Republicans removed a state moratorium on artificial intelligence regulations from its version of President Donald Trump's "big, beautiful bill" following bipartisan warnings the component could risk data privacy and civil rights - particularly without a strong federal regulatory framework.