News & Analysis as of August 29, 2025

Cyber Attacks

+ Follow

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now. less -

Salesforce Users: Organizations Using the Salesloft Drift AI Chat Agent with Salesforce Must Check Their Presence for Compromise

Lowenstein Sandler LLP on 8/28/2025

Salesloft issued a security notification on August 26 regarding its Drift application. It appears to be a broad opportunistic attack on Salesloft/Drift instances integrated with Salesforce tenants. Salesloft issued updates...more

Ten Key Insights from IBM's Cost of a Data Breach Report 2025

Baker Donelson on 8/26/2025

IBM and the Ponemon Institute have released the 2025 Cost of a Data Breach Report. The report, which has become an annual late-summer tradition, highlights the evolving risks and costs associated with data breaches. This...more

Class Action Filings in New England Surge in 2025, Poised to Set New Record Highs

Pierce Atwood LLP on 8/25/2025

A tidal wave of increased class action activity is breaking in New England courts. Through the first six months of 2025, total class action filings in First Circuit federal and state courts across New England have already...more

Data breach litigation targets wine company: Lessons for alcohol industry players

McDermott Will & Schulte on 8/22/2025

On July 30, 2025, a wine producer was sued in connection with a cyberattack that allegedly compromised the data of at least 26,000 customers. Among other things, the complaint alleges that the company failed to implement...more

Data Breach Preparedness: Protecting Your Organization Before, During and After a Cyber Incident

Downs Rachlin Martin PLLC on 8/20/2025

There’s an “old saying” when it comes to data breaches: it’s not whether your organization will face a potential data breach, but when. So, given the inevitability of a data breach, it only makes sense to prepare. As a data...more

The Silent Epidemic: Infostealers and the Evolution of Cybercrime in 2025

Ankura on 8/19/2025

"Infostealers" have transformed from niche threats into the backbone of modern cybercrime, fueling a $4.88 million average breach cost in 2024. In this article we synthesize the latest threat intelligence to expose critical...more

The 'Butler Attack' — Delivering Prompt Data Breaches Direct From Your Mailbox

Ankura on 8/15/2025

Forget the “Barbarians at the gate,” we may have bigger issues to deal with from the “Butler’s serving us at our Banquets.” While Business Email Compromise (BEC) and/or ransomware attacks have been effective cyber-crimes to...more

CISA Releases Malware Analysis Report for Microsoft SharePoint Vulnerabilities

Robinson+Cole Data Privacy + Security Insider on 8/11/2025

Threat actors continue to exploit ToolShell to gain unauthorized access to on-premises SharePoint servers. On August 6, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) released a malware analysis report...more

Best Practices for Cyber Incident Prevention for Law Firms

Integreon on 8/4/2025

In our global, digital-first economy, cyberattacks are no longer isolated incidents targeting large organizations. They are a very real threat to businesses of all types and sizes, and law firms are a common target of cyber...more

Microsoft Announces Two New On-Premises SharePoint Vulnerabilities

Alston & Bird on 8/1/2025

Introduction - On July 19, 2025, Microsoft announced two new vulnerabilities that are actively being exploited (CVE-2025-49704 and CVE-2025-49706) and that relate to on-premises Microsoft SharePoint instances that are exposed...more

No Password Required: Former Lead Attorney at U.S. Cyber Command, Cyber Law Strategist, and Appreciator of ‘Mad Men’ Hats

Carlton Fields on 7/29/2025

On this episode, hosts Jack Clabby of Carlton Fields and Kayley Melton, executive director of operations at the Cognitive Security Institute, sit down with Kurt Sanger — a seasoned cyber law leader and former deputy general...more

Cybersecurity challenges in the health care industry: Legal, regulatory, and risk considerations

Constangy, Brooks, Smith & Prophete, LLP on 7/28/2025

Health care remains one of the most targeted and vulnerable sectors when it comes to cyberattacks. In fact, a recent breach at a major health care analytics firm exposed the data of 5.4 million U.S. patients, making it one of...more

Hong Kong Passes First Cybersecurity Legislation for Regulating Critical Infrastructures

Mayer Brown on 7/25/2025

INTRODUCTION - The Protection of Critical Infrastructures (Computer Systems) Bill (the "Bill"), as the first law in Hong Kong to deal with cybersecurity was passed on 19 March 2025, and will come into force on 1 January 2026....more

SharePoint Server Vulnerabilities Exploited Despite Emergency Patch

Robinson+Cole Data Privacy + Security Insider on 7/25/2025

Microsoft has confirmed that vulnerabilities in its on-premises SharePoint Server installations, a network spoofing vulnerability (CVE-202549706), and a remote code execution vulnerability (CVE-2025-49704) are being actively...more

Illumination Zone: Episode 210 | Jeff Fleming of HaystackID sits down with Kaylee & Mary

EDRM - Electronic Discovery Reference Model on 7/25/2025

In the thirty-first episode of EDRM Trusted Partner, HaystackID’s monthly podcast series, Jeff Fleming, Managing Director for our wonderful Trusted Partner, HaystackID sits down with Kaylee & Mary to talk about his journey...more

Active and Critical Security Concern for SharePoint

Lowenstein Sandler LLP on 7/25/2025

On July 20, 2025, Microsoft and the Cybersecurity and Infrastructure Security Agency (CISA) issued urgent warnings about new, actively exploited vulnerabilities in Microsoft SharePoint Server. These vulnerabilities, known as...more

Engineering Cyber Resilience: Lessons from the Tallinn Mechanism

HaystackID on 7/25/2025

When the lights stayed on in Kyiv during a wave of missile attacks in early 2024, Ukrainian officials quietly acknowledged a second line of defense that received far less public attention than the nation’s air-defense...more

OIG Audit Finds Cybersecurity Gaps at Large Northeastern Hospital

Arnall Golden Gregory LLP on 7/24/2025

On July 11, 2025, the U.S. Department of Health and Human Services (“HHS”), Office of Inspector General (“OIG”) posted a report that announced the findings of a cybersecurity audit it conducted of a large Northeastern...more

Critical Microsoft SharePoint Vulnerability: What You Need to Know

Baker Donelson on 7/23/2025

Microsoft has just disclosed a serious vulnerability in SharePoint (CVE-2025-53770) that allows unauthenticated attackers to remotely execute code in a SharePoint server hosted on-prem – no user interaction required....more

Evading DOJ Crosshairs As Data Security Open Season Starts

Cohen & Gresser LLP on 7/23/2025

The U.S. Department of Justice has added a new weapon to its enforcement arsenal, aimed at enhancing its ability to prevent foreign adversaries from accessing and exploiting government related data and sensitive personal data...more

5 Challenges in Incident Management (and How to Stay Resilient)

Mitratech Holdings, Inc on 7/22/2025

A single outage can spiral into hours of downtime, frustrated customers, and significant revenue loss across your business....more

CISA Alert: Liteon Electric Vehicle Chargers

Robinson+Cole Data Privacy + Security Insider on 7/21/2025

If you own an electric vehicle, keep an eye on cybersecurity issues that may affect your car and its accessories. You wouldn’t think that an electric vehicle charger could include a vulnerability that allows threat actors to...more

June Sees Significant Jump in BECs

Robinson+Cole Data Privacy + Security Insider on 7/17/2025

According to Cybersecurity Dive, “Americans lost $16.6 billion to cyber fraud and internet crimes last year (2024), up 33% from the previous year. Phishing, spoofing and extortion topped the list of complaints, but investment...more

Cybercriminals Hit Your Inbox—Now What? Recovering Funds After Business Email Compromise and Fraud Schemes

Potomac Law Group, PLLC on 7/11/2025

The global cyber scam industry is a multi-billion dollar racket run by crime syndicates who often operate through massive compounds known as “scam farms” in far flung locations. On our shores, many businesses fall prey to...more

23andMe : une faille de sécurité qui rappelle l’importance d’une gouvernance proactive en matière de protection des renseignements...

Stikeman Elliott LLP on 7/9/2025

En 2023, une cyberattaque d’envergure a exposé les données génétiques personnelles de millions d’utilisateurs de 23andMe, une société américaine offrant des services d’analyse du code génétique aux particuliers, poussant les...more

1,287 Results

View per page

Page: of 52

Cybersecurity › Data Security › Cyber Attacks

"My best business intelligence, in one easy email…"