HIPAA Pulse
The tools your practice uses determine your security profile. EHR platforms, communication tools, cloud services, and security infrastructure all carry HIPAA implications. These stories cover technology developments, vendor security incidents, and infrastructure best practices — helping you make informed decisions about the systems that touch patient data.
This Week
The Israeli company has developed a cryptographic posture and post-quantum cryptography management platform. The post QIZ Security Raises $17 Million for Cryptographic Governance Platform appeared first on SecurityWeek.
The investment will accelerate Keyfactor's machine identity, PKI, and cryptographic security platform as enterprises prepare for AI-driven and post-quantum threats. The post Keyfactor Scores $1 Billion+ Investment for AI, Post-Quantum Security appeared first on SecurityWeek.
Trigger Warning: This post includes content from tips submitted to anonymous tiplines by or about students. While identity information is redacted, tips may include obscenities and explicit references to sexual abuse, rape, assault, self-harm, violence, suicidal ideation, pornography, and pedophilia. Overview On March 18, 2026, DDoSecrets and Straight Arrow News reported on a dataset provided... Source
Earlier
Yes, another entry in our "no need to hack when it's leaking" archives, and another example of entities trying to excuse their security failures by claiming they were "hacked." Danny Bradbury cuts to the chase: Some organizations exist to be exclusive. They’re invite-only, and discreet, the kind of place where the membership directory is the... Source
From Arctic Wolf: Summary In mid-June 2026, security researchers identified an active, large-scale credential compromise campaign affecting Fortinet FortiGate firewalls, dubbed FortiBleed. Threat actors have been systematically extracting configuration files from internet-facing FortiGate devices and cracking the stored credential hashes, resulting in verified working administrator credentials for between 30,000 and 75,000 devices across 194 countries.... Source
Russell Myers reports: A hospital worker at the private clinic where the Princess of Wales had abdominal surgery is set to face a criminal prosecution following an investigation into claims that the Princess' medical records had allegedly been accessed by staff in 2024, it is understood. A total of three trusted employees, who worked at The... Source
Harriet Alexander and Julie Lewis report: The privacy watchdog has ordered American Express to rectify security flaws in five of its data systems to guard against “insider threats” and to restrict employee access to specific customer information to protect vulnerable and high-profile customers. Privacy Commissioner Carly Kind found the payments giant had “failed to implement... Source
From Mandiant and Google Threat Intelligence Group, an advisory: Mandiant and Google Threat Intelligence Group (GTIG) have identified an active compromise and extortion campaign attributed to UNC6240 (ShinyHunters) targeting Oracle PeopleSoft application infrastructure. The activity was observed between May 27, 2026, and June 9, 2026 and is consistent with the exploitation of CVE-2026-35273, a critical remote... Source
The bigger they are, the harder they fail? Global Schools Foundation (GSF) is a Singapore-headquartered, not-for-profit K–12 education organization. With a global network of schools, the foundation strives to provide world-class education to students across multiple countries. Global Schools Group (GSG), an initiative of GSF, manages and operates a network of 12 international school brands... Source
Want to take action? Get mobile alerts with Signal→
Curated breach alerts and compliance intelligence — before the workday starts.
No spam. Unsubscribe anytime.