The British Medical Association (BMA) is investigating whether GPs could be held responsible for data breaches related to shared electronic healthcare records on the Kent and Medway Care Record system. This move followed concerns from GPs, some of whom disabled information sharing on the system to avoid potential privacy breaches. BMA’s legal team is now assuming responsibility for the case, identifying its outcome as having national implications.
New GitHub Actions Attack Chain Uses Fake CI Updates to Exfiltrate Secrets and Tokens
A new attack campaign is actively targeting open-source repositories on GitHub by carefully disguising malicious code as completely routine CI build configuration updates. The campaign,
