Beau Yarborough reports: Moreno Valley Unified has warned its employees that sensitive information may have been shared with someone outside the organization. “We are currently investigating a matter involving the accidental sharing of a folder that contained certain documents and information,” Superintendent Alejandro Ruvalcaba wrote in a June 6 email to all employees. “While we continue to determine…
The Growing Cyber Risks from AI — and How Organizations Can Fight Back
Joseph J. Lazzarotti writes: Artificial Intelligence (AI) is transforming businesses—automating tasks, powering analytics, and reshaping customer interactions. But like any powerful tool, AI is a double-edged sword. While some adopt AI for protection, attackers are using it to scale and intensify cybercrime. Here’s a high-level discussion at emerging AI-powered cyber risks in 2025—and steps organizations…
UPDATING: Credit Control Corporation denies any current breach
Update: And this is why we said “allegedly” and “unconfirmed.” CCC responded to yesterday’s inquiry with the following reply: Credit Control Corporation is not currently the subject of any data breach or security incident referenced in your message. The original post appears below for context. A seller on a forum claims to have data on 9.1…
Copilot AI Bug Could Leak Sensitive Data via Email Prompts
Rashmi Ramesh reports: A well-phrased email was all an attacker would have needed to trick Microsoft Copilot into handing over sensitive data until the operating system giant patched the vulnerability. The vulnerability in Microsoft 365 Copilot allowed attackers to extract sensitive data through a zero-click prompt injection attack, said researchers from Aim Security. Dubbed “EchoLeak” and tracked…
FTC Provides Guidance on Updated Safeguards Rule
Today, the FTC released Frequently Asked Questions that discuss the requirements of the Safeguards Rule, which was mandated by the Gramm-Leach-Bliley Act, and how it specifically applies to motor vehicle dealers. The FTC is committed to providing certainty to the marketplace and ensuring that it administers its regulations in a manner that minimizes burden to legitimate businesses. To…
Sentara Health terminates remote employees after realizing they couldn’t be sure who was doing the work.
Hiring employees who work remotely can pose additional challenges for security and compliance with regulations. In March, Sentara Health disclosed an incident concern that resulted in the notification of 1,620 patients. They described the concern this way: In December, the Sentara Health’s Lab Services department hired an individual to process lab requisitions. Lab requisitions are…