A third-party vendor lost the personal data of at least 2.5 million Genworth Financial policyholders, including Social Security numbers, to the Russian Cl0p ransomware gang, according to the Fortune 500 insurer.

A new cyber incentive framework from the Federal Energy Regulatory Commission could help utilities adapt to new threats at a faster pace, by providing flexibility for them to invest in pre-qualified cybersecurity measures.

BlackLotus has been circulating on hacking forums since October 2022, marketed as malware capable of evading detection, withstanding removal efforts, and neutralizing multiple Windows security features such as Defender, HVCI, and BitLocker.

A proposed federal class action lawsuit alleges that patient debt collection software firm Intellihartx was negligent in its handling of third-party risk, contributing to a breach affecting nearly 490,000 individuals.

“The attack chain ends with the victim machine infected with multiple unique remote access trojan malware instances, such as Warzone RAT and Quasar RAT,” Securonix researchers Den Iuzvyk, Tim Peck, and Oleg Kolesnikov said.

The top French privacy regulator has imposed a fine of 40 million euros against a Parisian advertising technology company for its use of website tracking cookies and failure to process users’ personal data in compliance with privacy laws.

The notorious extortion crew, aka ALPHV, added the Beverly Hills Plastic Surgery to its list of compromised organizations, and bragged about swiping people’s personal information and healthcare records.

The Russian APT28 group has launched a spear-phishing campaign that has affected a regional prosecutor’s office, an undisclosed executive authority, a military aviation company, and other government entities in Ukraine. It is suggested that users update the vulnerable Roundcube webmail servers to its latest version.

The breach was initially discovered by security researcher Jeremiah Fowler. Upon further investigation, it was revealed that the primary insurer associated with all the policies listed in the exposed database was USA Underwriters.

Security experts came across a new campaign—from late 2022 to early 2023—by the Chinese state-sponsored threat group APT15, which used a novel backdoor called Graphican that possesses several capabilities. Symantec has published the IOCs for a better understanding of the threat to protect against it.