Insights and analysis from the CYBERSOL team.
The 25-million-record healthcare data breach at Conduent Business Services, now under investigation by the Texas Attorney General, represents more than a...
The reported exfiltration of approximately 400 GB of data from ACWA Power (Saudi Arabia's leading independent power producer) and Larsen & Toubro (India's l
The compromise of LISI Group, a Tier-1 supplier to Airbus and Boeing, by the Qilin ransomware group represents a structural failure in supply chain vendor risk...
A US-based healthcare diagnostic firm's disclosure of a breach affecting 140,000 individuals represents a structural governance failure that extends far beyond...
When healthcare provider Bayada Home Health Care disclosed a data breach originating not from its own systems but from third-party vendor Doctor Alliance, it...
A breach affecting approximately 400,000 users at LexisNexis—including federal government accounts, enterprise customers, and internal system...
A data breach at Managed Care Advisors/Sedgwick Government Solutions—a federal government contractor managing workers' compensation and health administration...
The Staten Island University Hospital settlement over a January 2024 breach at vendor The Medibase Group Inc.
The Marquis Software Solutions ransomware incident exposes a structural governance failure that extends far beyond a single vendor compromise.
When a vendor or service provider experiences a cyber incident, the breach itself may originate outside your organization—but the regulatory, contractual, and...
Recent ransomware incidents affecting Insightin Health (a healthcare technology provider) and Clinic Service Corporation (a medical billing processor) expose a
When Conduent's breach exposed nearly 17,000 Volvo employee records, it revealed a structural governance failure that extends far beyond a single incident.
Third-party cybersecurity contract terms reveal a fundamental governance asymmetry that organizations routinely overlook: standard vendor agreements prioritize...
The Atlas Air ransomware incident, which exposed Boeing intellectual property through a suspected supply chain compromise, represents more than a single...
When a software vendor is breached through vulnerabilities in its own product, it exposes a critical structural weakness in how organizations evaluate and...
The alleged ransomware attack on Luxshare—a critical electronics supplier to Apple, Tesla, Nvidia, and others—is not primarily a cybersecurity incident.
When a third-party vendor's system is compromised, the liability cascade extends far beyond the vendor itself.
The January 2025 cyberattack on Oracle Health (formerly Cerner), affecting over 100,000 patients across Munson Healthcare and numerous other health systems,...
The security incident involving ENT & Allergy of Delaware and their third-party vendor TriZetto illustrates a structural governance blind spot that extends...
The evolution of supply chain attacks into self-perpetuating cybercrime cycles represents a critical governance failure that boards and risk committees can no...
Browse by month