Security news aggregator

Latest coverage for Notification

Notifications can signal security events, policy changes, and required responses, helping organizations detect incidents and manage cyber risk.

16 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Notification in information security is the delivery of an alert about a security event, required action, system change, or confirmed incident. Notifications may target security teams, administrators, users, regulators, or affected individuals and can use email, messaging, phone, or monitoring dashboards. The term covers both automated technical alerts and formal communications about incidents or privacy impact.

Notifications support detection and incident response by directing people to investigate, contain, or remediate a problem. Their security depends on trustworthy event sources, authenticated delivery channels, clear severity and ownership, and records showing when messages were sent and acknowledged. Attackers may spoof alerts, interfere with delivery, or exploit exposed notification content; poorly tuned systems can also create alert overload that obscures important events. Notifications involving personal data should disclose only necessary information, while external incident notices must meet applicable legal deadlines and accurately describe known effects without overstating unconfirmed facts.

Volume over time

Weekly headline count for the current query.

Showing 16 most recent headlines Filtered view

University of Hawaii Cancer Center Paid RansomCancer patients who participated in University of Hawaii Cancer Center studies during the 1990s may soon receive a notification that ransomware hackers stole their data in an August 2025 incident. Experts said the hack spotlights concerning risks involving compromises of medical research data.

Breach Notification Service Details Peer-to-Peer Lending Marketplace Victim CountHackers appear to have stolen personal information pertaining to more than 17 million individuals from peer-to-peer lending marketplace Prosper, including Social Security numbers, contact information and some income and financial details, says the Have I Been Pwned breach notification service.

Texas-Based Harris Health Says FBI Just Gave Green Light to Notify 5,000 PatientsHarris Health is contacting 5,000 patients about a breach involving a former employee who improperly accessed electronic health records for over a decade. The Texas health entity said it discovered and reported the incident four years ago to the FBI, which just gave the green light for notification.

Horizon Healthcare RCM Hints at Paying Ransom in Data Theft IncidentHorizon Healthcare RCM is the latest revenue cycle management software vendor to report a health data breach involving ransomware and data theft. The firm's breach notification statement suggests that the company paid a ransom to prevent the disclosure of its stolen information.

United Natural Foods, Inc. Launches Investigation, Confirms IT Systems BreachA cyberattack on United Natural Foods, the largest U.S. health food distributor and a key Whole Foods supplier, has disrupted the company's fulfillment operations, prompting a notification to law enforcement and a forensic investigation as it works to restore affected systems.

Bank Info Security 1 year, 4 months ago

Breach Notification Service Tackles Infostealing Malware

'Have I Been Pwned' Flags Emails Found in Infostealer Malware Logs It ObtainsHow bad has the information stealing malware problem become? Here's a metric: The free breach-notification service Have I Been Pwned found a single infostealer service provided "284 million unique email addresses alongside the websites they were entered into and the passwords used."

Bank Info Security 1 year, 5 months ago

Texas Investigates Insider Breach, Theft of Benefit Funds

7 Texas Health and Human Services Workers Fired in Incident Affecting 61,000 peopleAuthorities in Texas are investigating an insider incident at the Texas Health and Human Services Commission that led to the firing of seven employees, an investigation into hundreds of thousands of dollars in stolen funds and notification of a breach of personal information affecting 61,000 people.

Bank Info Security 1 year, 10 months ago

UK Orgs Tout Government Help in Ransomware Incidents

Former Royal Mail and Manchester University CISOs Talk Ransomware ResponseTimely notification of ransomware incidents to British law enforcement agencies played a crucial role in understanding the threats and in developing mitigation strategies, the former security heads of Royal Mail and the University of Manchester said.

Bank Info Security 1 year, 10 months ago

Credit Union Issues Belated MOVEit Data Breach Notification

Texas Credit Union Only Just Notifying 500,000 Members About May 2023 Data TheftFifteen months after a massive supply-chain attack hit users of MOVEit secure file-transfer software, Texas Dow Employees Credit Union has issued a data breach notification pertaining to 500,474 victims, saying it only discovered last month their personally identifiable information got stolen.

Industry Associations Want Feds to Put Regulatory Onus on Change HealthcareTwo weeks ago, Change Healthcare began notifying thousands of medical practices about a massive data breach affecting millions of patients. The healthcare software firm says it will handle breach notifications, but industry groups want to ensure the government will go along with that plan.

Bank Info Security 2 years, 1 month ago

Lawmakers: UHG Violating HIPAA Breach Notification Rule

Bipartisan U.S. Senators Demand Change Healthcare Breach Notification by June 21Two U.S. senators are demanding UnitedHealth Group report a HIPAA breach and notify affected individuals no later than June 21, alleging the company is already violating HIPAA by dragging out the notification process in the aftermath of the Feb. 21 cyberattack on Change Healthcare.

Bank Info Security 2 years, 1 month ago

Feds Say Change Healthcare Can Handle Breach Notification

HHS OCR Advises HIPAA-Covered Entities to Coordinate Notification Duties With UHGTens of thousands of hospitals and medical practices can breathe a little easier now. Federal regulators have given the green light for Change Healthcare to handle the breach notification to tens of millions of individuals affected in a February cyberattack. But the devil is in the details.

Bank Info Security 2 years, 2 months ago

FTC Finalizes Health Breach Notification Rule Update

Regs Now Cover Wearables and Health Apps, Extend to More Types of BreachesThe Federal Trade Commission has finalized changes to its Health Breach Notification Rule, expanding the type of technologies that apply to regulations pertaining to non-HIPAA-regulated entities. The rule has been on the books for about 15 years, but the agency only recently began to enforce it.

Bank Info Security 2 years, 3 months ago

Company Says Change Healthcare Hackers Stole Sensitive Data

UnitedHealth Group Makes Low Key Admission in Online FAQUnitedHealthGroup said for the first time that hackers behind a February ransomware attack against Change Healthcare breached sensitive health information, an admission that triggers a regulatory countdown clock for public disclosures and individual notification.

Bank Info Security 2 years, 3 months ago

Hospitals Lobby Feds to Clarify Breach Duties in UHG Attack

AHA Wants Change Healthcare on Hook for Notification in Potential BreachAs thousands of hospitals, clinics and doctor practices potentially have to notify millions of patients about the Change Healthcare breach, the American Hospital Association said the IT services firm and parent company, UnitedHealth Group, should be the sole sender of notifications.

Bank Info Security 2 years, 7 months ago

FCC Approves Major Updates to Data Breach Notification Rules

New FCC Disclosure Rules Cover All Personal Information of Telecom CustomersThe FCC approved new guidelines that note how data breaches "have only grown in frequency and severity" since the commission adopted its privacy protection policies 16 years ago. The new rules aim to provide customers and law enforcement with real-time information about critical security incidents.