Infrastructure Operators Leaving Control Systems Exposed

Mathew J. Schwartz • July 1, 2025

Many types of commonly used types of industrial control systems continue to be deployed in a manner that leaves them publicly exposed to the internet, often by U.S.-based critical infrastructure operators, in what amounts to a preventable security risk, researchers warn.

Cyberwarfare / Nation-State Attacks

Breach Roundup: UK NHS Links Patient Death to Ransomware Attack

Latest

HIPAA/HITECH

20 States Sue HHS to Stop Medicaid Data Sharing with ICE

Marianne Kolbasuk McGee • July 1, 2025

California and 19 other states are suing the Trump administration to stop the U.S. Department of Health and Human Services from allegedly disclosing Medicaid beneficiaries' personal health information to the Department of Homeland Security and Immigration and Customs Enforcement.

Artificial Intelligence & Machine Learning

Senate Strips AI Moratorium Amid Sharp Bipartisan Opposition

Chris Riotta • July 1, 2025

Senate Republicans removed a state moratorium on artificial intelligence regulations from its version of President Donald Trump's "big, beautiful bill" following bipartisan warnings the component could risk data privacy and civil rights - particularly without a strong federal regulatory framework.

Artificial Intelligence & Machine Learning

Feds Identify $14.6 Billion in Healthcare Fraud in Takedown

Marianne Kolbasuk McGee • July 1, 2025

The Department of Justice in collaboration with the Department of Health and Human Services and other agencies said it has identified $14.6 billion in a wide range of healthcare fraud in 2025. The feds say a new "fusion center" using AI and other technologies will improve investigations moving forward.

Artificial Intelligence & Machine Learning

'Skynet' Tries to Outwit AI Malware Analysis

Rashmi Ramesh • July 1, 2025

If you can't outsmart the antivirus, maybe you can sweet-talk the algorithm into looking the other way. Security researchers discovered what appears to be the first known attempt to deploy prompt injection against artificial intelligence-powered malware analysis.

Events

Identity Security Demands a Zero-Standing Privilege Approach

Tom Field • July 1, 2025

Organizations face growing risks from attackers who no longer hack in. They log in using compromised credentials. Chris Hills, chief security strategist at BeyondTrust, said this shift in tactics makes identity-first cybersecurity technology a key requirement.

Artificial Intelligence & Machine Learning

Cloudflare Aims to Make AI Bots Pay for Crawling Websites

Rashmi Ramesh • July 1, 2025

An internet infrastructure firm that routes 16% of global web traffic will block AI bots from new domains it hosts unless it has explicit permission from the owner. Cloudflare on Tuesday launched "pay per crawl," a platform that allows publishers to charge AI crawlers each time they access a site.

Cybercrime

US Sanctions Aeza Group for Hosting Infostealers, Ransomware

David Perera • July 1, 2025

The United States cut off from the U.S.-dominated international financial system a Russian provider of digital infrastructure to cybercriminal groups, accusing St. Petersburg-based Aeza Group of hosting infostealers and ransomware operations. The U.S. said Aeza is a bulletproof hosting service.

Governance & Risk Management

LevelBlue, Trustwave Unite to Form $1B Managed Cyber Goliath

Michael Novinson • July 1, 2025

The merger of LevelBlue, Trustwave and Aon's cyber team brings together elite pen testing, IR and managed security services. The combined company will have a strong presence in the U.S. government and global markets and exceeds $1 billion in revenue and 2,000 employees.

Cloud Security

German BSI Head: Tech Sovereignty Needs Technical Solution

Akshaya Asokan • June 30, 2025

European ambitions to replace foreign tech solutions with domestic alternatives are "unrealistic" in the short term, warned the head of the German cybersecurity head cybersecurity agency in a call for greater technological control over cloud platforms.

Events

SIEM Vendors Fail to Address Migration Complexity

Michael Novinson • June 30, 2025

Next-generation SIEM vendors struggle to gain market traction because they focus on technological superiority rather than solving the fundamental challenge of migrating existing security infrastructure and operations, said Hugh Njemanze, founder and president of Anomali.

3rd Party Risk Management

Another Billing Software Vendor Hacked by Ransomware

Marianne Kolbasuk McGee • June 30, 2025

Horizon Healthcare RCM is the latest revenue cycle management software vendor to report a health data breach involving ransomware and data theft. The firm's breach notification statement suggests that the company paid a ransom to prevent the disclosure of its stolen information.

Endpoint Security

Rethinking IT Risk Assessments for OT Environments

Suparna Goswami • June 30, 2025

IT organizations can apply multiple frameworks to help reduce risk, but relying on them in OT environments could create blind spots. Security leaders must rethink compliance-driven strategies and adapt controls to meet the unique demands of industrial systems, said Sydney Trains' Maryam Shoraka.