A surgery center in Tennessee may have had 100 GB of patient data stolen. An eye clinic in Utah notified about 5,800 patients, while a ransomware group claimed it took 1 TB of data. GitHub confirmed that a hacker stole at least 3,800 internal repositories after a developer used a ... Read More

A Virginia radiology practice is notifying 266,183 people after another major healthcare data breach. GitHub confirmed unauthorized access to at least 3,800 internal repositories after a developer used a malicious VS Code script. Foxconn confirmed a Nitrogen ransomware attack where the group claims it stole 8TB of data tied to ... Read More

Somewhere between a five-month investigation gap at a Minnesota hospital and 17 million vehicle records sitting on a contractor’s FTP server, a familiar story started taking shape again. Attackers didn’t need to be particularly sophisticated. They just needed time, a poorly segmented network, and a vendor nobody was watching closely ... Read More

Attackers are getting in. Security teams have long accepted that premise. What is unsettling is where they are entering from. They are coming through software packages that development teams trust by default, hijacking single sign-on accounts that serve as master keys to dozens of business applications, and pulling firewall configuration ... Read More

At some point in the last fortnight, a security team at Stryker Corporation watched data disappear from over 200,000 devices across 79 countries at once. Not because an attacker found a gap in the perimeter. Because someone who had gotten admin access to the company’s device management platform pressed a ... Read More

A hospital in Chicago is still dealing with stolen patient data. A major U.S. medical manufacturer is restoring order processing, manufacturing, and shipments after a destructive attack. A Washington-based employee benefits administrator is notifying 2,697,540 people that their data may have been exposed. Put those stories together and the same ... Read More

RSAC 2026 is here, and for ColorTokens, this year’s focus is “breach readiness for measurable risk reduction.” From March 23 to 26, at Booth #1933 in the South Expo Hall, Moscone Center, we are meeting with security leaders facing a hard reality. Attacks are moving faster. AI is reducing the ... Read More

In last month’s reporting cycle, we saw one of the largest healthcare data breaches in U.S. history, ransomware groups tied to North Korea targeting hospitals, and firewall vulnerabilities that allowed attackers to create rogue administrative accounts almost instantly. Taken together, these incidents raise a more important question than who was ... Read More

More than 25 million individuals are now tied to the Conduent Business Services breach as investigations continue to expand its scope. In Canada, approximately 750,000 investors were affected in the CIRO data breach. During roughly the same period, 2,451 vulnerabilities specific to industrial control systems were disclosed by 152 vendors ... Read More

More than 25 million individuals are now tied to the Conduent Business Services breach as investigations continue to expand its scope. In Canada, approximately 750,000 investors were affected in the CIRO data breach. During roughly the same period, 2,451 vulnerabilities specific to industrial control systems were disclosed by 152 vendors ... Read More