Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

U.S. Healthcare Breach Report: May 2025 Trends

May 2025 marked one of the most active months for reported healthcare breaches in the United States. The HHS OCR Breach Portal documented 74 breach incidents involving more than 4.2 million individuals. This represents a 23% increase in affected records compared to April 2025. This month’s spike reveals a troubling trend: healthcare organizations are facing intensified cyber threats with limited improvements in prevention.

Mastering Accounts Receivable Underpayment Management

Accounts receivable (AR) underpayments can throw a wrench into financial management. Whether due to client misunderstandings, billing discrepancies, or simple rounding errors, these issues can complicate record-keeping, delay account reconciliation, and eat into your organization’s bottom line. Effectively managing AR underpayments is essential, ensuring both financial accuracy and a smoother billing process.

SSO can't secure every identity

This blog has been adapted from a section of 1Password’s ebook: Why SSO is not enough for identity security. To read the complete ebook, click here. Single sign-on (SSO) solutions are designed to manage and secure access to SaaS applications. By integrating with a company’s identity provider (IdP), SSO allows teams to authenticate an identity to multiple applications via a single log-in.

What is AI Red Teaming?

AI red teaming is the process of simulating adversarial behavior to test the safety, security, and robustness of artificial intelligence systems. It draws inspiration from traditional cybersecurity red teaming (where ethical hackers emulate real attackers to expose flaws) but applies that mindset to machine learning models, data pipelines, and the broader AI stack.

Warning: Crooks Are Using Vishing Attacks to Compromise Salesforce Instances

A criminal threat actor tracked as “UNC6040” is using voice phishing (vishing) attacks to compromise organizations’ Salesforce instances, according to researchers at Google’s Threat Intelligence Group. After gaining access, the attackers exfiltrate the victim’s data and hold it for ransom.

Built for the agentic era: Meet the Vanta MCP Server

The way developers interact with tools is changing fast. Language models like Claude and ChatGPT, and IDEs like Cursor and Windsurf are much more than assistants and environments—they’re powerful interfaces for interacting with enterprise data. ‍ At Vanta, we envision a world where compliance workflows can shift left to meet GRC teams and developers where they already are. By launching the Vanta MCP Server, we’re making that vision real.

Government Data Breaches Are Eroding Public Trust - It's Time for Stronger Cybersecurity in the Public Sector

The recent data breach at the Australian Human Rights Commission (AHRC) is a stark reminder of what's at stake when public sector cybersecurity falls short. The exposure of sensitive personal information—coupled with a delayed response that exceeded the Notifiable Data Breach (NDB) Scheme's 72-hour notification benchmark—highlights systemic challenges in how government agencies prepare for, detect, and respond to cyber threats. This breach isn't an isolated event.

Securing SSH on RHEL: 5 Essential Configuration Steps

Linux distributions, such as Red Hat Enterprise Linux (RHEL), dominate the enterprise and cloud computing sectors. One of the many reasons for the success and popularity of Linux is its support of convenient and straightforward remote access protocols, such as Secure Shell (SSH). In the right hands, SSH’s ability to securely access remote servers enables access to any Linux server, regardless of the environment. The problem is that, in the wrong hands, SSH can be a security nightmare.

How to Identify, Avoid, and Protect Against Counterfeit Software Product Keys

Software product keys are essential tools used to verify ownership and secure software usage. These keys function as unique access codes that grant authorized users permission to install and activate licensed software. Choosing legit software product keys ensures users receive reliable access while reducing the risk of malware or invalid licensing. By protecting intellectual property and reducing piracy, they allow developers to maintain control over distribution and ensure that only legitimate users gain full access. Additionally, product keys support user authentication and enable access to software updates or additional features.