Star Health Insurance experienced a massive data breach involving around 7 TB of highly sensitive information. The point of contention is the allegation that the data was purchased from the company’s Chief Information Security Officer, Amarjeet Khanuja. Statements from multiple security researchers point to inconsistencies in the claims including false email screenshots and a potential impersonation attack by insider traders. CISOs are recommending a range of stronger security measures to prevent future breaches.

Mandiant warns of attacks on newly-disclosed Ivanti remote takeover threat
Google’s Mandiant team has issued an alert about a remote code execution flaw in the Ivanti Connect Secure VPN platform. The vulnerability, designated CVE-2025-22457, is