Security news aggregator

Latest coverage for Incident

Incident coverage examines breaches, outages, and response failures to explain how security events affect systems, data, and organizations.

12 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

An incident is a suspected or confirmed event that threatens the confidentiality, integrity, or availability of information or systems, or violates a security policy. Examples include unauthorized access, malware execution, exposed credentials, data loss, and disruptive attacks. Not every alert is an incident: triage determines whether an event is credible, its scope, and the assets or data involved.

Incident handling requires timely detection, analysis, containment, eradication, and recovery. Practitioners must preserve relevant evidence, identify affected accounts and systems, assess whether data was accessed or altered, and prevent recurrence. Clear escalation and documentation support privacy or regulatory notifications when applicable. Findings should feed security improvements such as closing exploited vulnerabilities, strengthening access controls, and updating detection and response procedures.

Showing 12 most recent headlines Filtered view

Cybersecurity researchers have called attention to a cyber attack in which unknown threat actors deployed an open-source endpoint monitoring and digital forensic tool called Velociraptor, illustrating ongoing abuse of legitimate software for malicious purposes

Bank Info Security 10 months, 2 weeks ago

Nevada Dental Practice Notifying 1.2M of Hack

Absolute Dental Says Breach Involved Third-Party Managed Services FirmA Nevada dental practice is notifying more than 1.2 million individuals of a hacking incident that compromised sensitive health and personal information. The incident involved "inadvertent execution of a malicious version of a legitimate software tool," said Absolute Dental.

Bank Info Security 10 months, 2 weeks ago

Breach Roundup: TransUnion Discloses Breach Affected 4.5M

Also: DSLRoot Turns Homes Into Proxies, Cyberattack Disrupts Swedish TownsThis week: TransUnion incident affects 4.5 million, DSLRoot residential proxies, Operation Serengeti 2.0, ZipLine campaign exploits contact forms, a cyberattack disrupts 200 Swedish municipalities, Maryland Transit Administration hit by ransomware, TAG-144 escalated attacks in South America.

Bank Info Security 10 months, 2 weeks ago

CISA Probes Nevada Cyber Breach Amid Surge in State Attacks

US Cyber Defense Agency Deploys Support to Nevada Following Ransomware IncidentThe Cybersecurity and Infrastructure Security Agency and FBI are aiding Nevada after a cyberattack disabled state services, exposing how local governments - amid surging ransomware, IT shortfalls and federal funding cuts - are increasingly reliant on strained national cyber defense resources.

Bank Info Security 10 months, 3 weeks ago

Facility Laundry and Dining Vendor Hack in 2024 Hits 624,500

Crime Gang 'Underground' Claimed Data Theft From Healthcare Services GroupA publicly traded Pennsylvania-based firm that provides dining, housekeeping and laundry services to long-term care and skilled nursing facilities is notifying nearly 624,500 people of a 2024 hacking incident that took nearly nine months for the company to investigate.

Bank Info Security 10 months, 3 weeks ago

Nevada State Offices Halt Services After Cyber Incident

Nevada Grappling With Statewide IT Disruption, Forcing Suspension of ServicesNevada officials are investigating a network security breach that forced state offices to suspend services and knocked key systems offline, including websites and phone lines, though emergency services remain active and no data exposure has been confirmed.

Bank Info Security 10 months, 3 weeks ago

Nevada State Offices Halts Services After Cyber Incident

Nevada Grappling with Statewide IT Disruption, Forcing Suspension of ServicesNevada officials are investigating a network security breach that forced state offices to suspend services and knocked key systems offline, including websites and phone lines, though emergency services remain active and no data exposure has been confirmed.