New proposed commercial surveillance regulations are poised to be unveiled by the Federal Trade Commission in the next few months amid concerns of misuse and data security gaps, reports The Record, a news site by cybersecurity firm Recorded Future.
BleepingComputer reports that U.S., Germany, Japan, and UK systems have been subjected to ongoing attacks by suspected Vietnamese hacking group CoralRaider leveraging a content delivery network cache to facilitate the deployment of information-stealing payloads.
The Department of Health and Human Services has introduced updates to the Health Insurance Portability and Accountability Act that would prevent healthcare organizations, doctors, and insurers from providing protected health information to state prosecutors in a bid to bolster abortion providers' and patients' privacy protections, according to The Record, a news site by cybersecurity firm Recorded Future.
Stealthy industrial-scale data exfiltration attacks have been launched by Chinese cyberespionage operation ToddyCat against government entities, including defense organizations, across the Asia-Pacific through its arsenal of advanced hacking tools, according to The Hacker News.
Data exfiltration and privilege escalation attacks leveraging the novel GooseEgg hacking tool to exploit an already addressed Windows Print Spooler flaw, tracked as CVE-2022-38028, have been deployed by Russian cyberespionage operation APT28, also known as Forest Blizzard, against government, education, transportation, and non-government organizations since April 2019, BleepingComputer reports.
Approval has been given by the Senate to legislation that would extend Section 702 of the Foreign Intelligence Surveillance Act for another two years, which headed to the desk of President Joe Biden just minutes after the surveillance law expired, reports CyberScoop.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.
