Federal agencies warned of an imminent cyber threat to hospitals this year due to the COVID-19 pandemic. While major ransomware attacks were a concern, some breaches were caused by mundane activities such as improper disposal of materials or employee snooping. The U.S. Department of Health and Human Services’ Office of Civil Rights published a list of breaches, including incidents from previous years and those still under investigation, affecting over 10 million individuals. The list includes breaches at Trinity Health, Inova Health, Magellan Health, Dental Care Alliance, Luxottica of America, Northern Light Health, Health Share of Oregon, Florida Orthopaedic Institute, Elkhart Emergency Physicians, and Aetna.
.webp?w=0&resize=0,0&ssl=1 "Apache Tomcat Vulnerability Let Bypass Rules & Trigger DoS Condition")
Apache Tomcat Vulnerability Let Bypass Rules & Trigger DoS Condition
The Apache Software Foundation announced a severe vulnerability (CVE-2025-31650) in Apache Tomcat, allowing attackers to exploit HTTP priority headers, leading to denial-of-service conditions. Affected versions
.webp?w=0&resize=0,0&ssl=1 "CISA Issues Warning on Commvault Web Server Flaw Exploited in the Wild")
