Resources

Eight Hours. Millions at Risk, The New Reality of EHR Breaches

A recent cyber incident involving cloud-based EHR vendor CareCloud reinforces a critical shift in healthcare cybersecurity: duration of access no longer defines impact—data concentration does.

Read more

The New Cybercriminal

How Distributed Attackers—and Ideology—Are Reshaping Cyber Risk

Read more

Insider Cyber Threat Turns Extortion Attempt

What the $750K Bitcoin Case Reveals About Modern Risk

Read more

AI Chatbots Are Starting to Ignore Humans — What It Means for Cyber Risk and Control

A recent study shows a measurable increase in AI chatbots and agentic systems ignoring direct human instructions, bypassing safeguards, and exhibiting deceptive behavior.

Read more

FBI, DHS Investigating Indiana Cyberattack and What It Signals for Public Sector Cyber Risk

A recent cyberattack targeting the Jackson County, Indiana Sheriff’s Office has triggered a multi-agency federal investigation involving the FBI and the Department of Homeland Security.

Read more

When AI in the SOC Goes Wrong — And Why Human-Led SOCaaS Wins

AI in the SOC highlights a critical reality: organizations rushing to deploy AI-driven security operations are encountering failure modes that are not theoretical—they are operational.

Read more

Medusa Ransomware Hits Mississippi's Largest Hospital — and a Major New Jersey County

A nine-day digital blackout. Thirty-five closed clinics. An $800,000 ransom demand. Here's everything you need to know about the Medusa ransomware gang's latest — and most brazen — attacks on American public institutions.

Read More

When Your Management Tools Become the Weapon

Could your IT management tools be weaponized against you? Explore how the 2026 Stryker cyberattack exposed a critical blind spot in enterprise security — and the steps your organization should take now.

Read more

How to Measure Cyber Risk in Dollar Terms, Moving Beyond Severity Ratings

Most vulnerability management programs report in Critical/High/Medium/Low — but that doesn't tell you what risk costs. Here's how quantitative cyber risk measurement changes the equation.

Read more

IoMT Security and Healthcare Cyber Risk: Why Global Conflict Raises the Stakes for Connected Medical Devices

Geopolitical conflict is increasing healthcare cyber risk. Learn why IoMT security, medical device visibility, and cyber resilience now matter more than ever.

Read the latest

University of Mississippi Medical Center Ransomware Attack: What Healthcare Organizations Must Learn Now

The University of Mississippi Medical Center ransomware attack disrupted clinics, communications, and EHR access. Here is what healthcare leaders should learn about downtime readiness, cyber resilience, and patient care continuity.

See the latest

What CVE-2026-1670 Means for Camera Security

A critical Honeywell CCTV vulnerability, CVE-2026-1670, can enable account takeover and unauthorized camera access. Learn the risk, affected models, and the security steps organizations should take now.

Read the latest

Silicon Valley Trade Secret Theft Case Shows the Modern Insider Threat Playbook

DOJ charges allege chip security and cryptography trade secrets were exfiltrated from Google and others. Learn the insider tactics and controls that stop them.

Read the latest

Payroll Diversion Fraud, Help Desk Social Engineering Steals Pay

Attackers are hijacking identities through help desk resets and HR payroll portals to reroute direct deposits. Controls, detections, and response steps.

Read more

Ransomware at a Payment Processor Disrupts Local Government Billing and Utility Payments

A ransomware attack on BridgePay triggered credit card payment outages across multiple cities and utilities. Local governments need vendor resilience, segmentation, MFA, and tested recovery.

Read more

SolarWinds Web Help Desk RCE Exploitation Shows How One Exposed App Becomes Domain Compromise

Microsoft and incident responders report active exploitation of SolarWinds Web Help Desk. Patch fast, remove exposure, hunt RMM abuse, and protect AD.

Read more

How AI Turned an AWS Misconfiguration Into a Full Cloud Compromise

Exposed AWS credentials in public S3 plus AI-assisted automation led to admin takeover in minutes.

Read more

Central Ozarks Medical Center Breach Undercuts Patient Trust and Triggers Costly Fallout

Central Ozarks Medical Center disclosed a breach affecting nearly 12,000 patients. What was exposed, why healthcare breaches cost millions, and how to reduce impact.

Read more

Malicious ChatGPT Browser Extensions Are Stealing Session Tokens — What Enterprises Must Do Now

A wave of fake “ChatGPT productivity” browser extensions is hijacking authenticated sessions by stealing session tokens. Learn how the attack works, what data is exposed, and the controls enterprises need to shut it down.

Read the latest

Patch or Perish: Exploit-Driven Intrusions Are Now the Default, and Fast Remediation Is the Only Defense

Vulnerability exploits now drive many intrusions. Learn why patch speed matters and how InfoSight Mitigator reduces exposure with risk-based prioritization and MTTR tracking.

Read More

Reprompt Attack and Microsoft Copilot Prompt Injection

Reprompt demonstrated one-click prompt injection and silent data exfiltration in Microsoft Copilot Personal. Controls to reduce AI assistant risk in enterprise.

Read More

ESA Credentials on the Dark Web and What It Means for the U.S.

ESA breaches expose why stolen credentials and tokens drive modern intrusions—and what U.S. organizations must do to contain identity-based attacks.

Read More

The Email Insider Threat Has Changed: Generative AI Turned “Normal” Email Into a Data Exfil Channel

Email has always been a high-value attack surface, but the center of gravity has shifted.

Read More

Fintech Cybersecurity 2026: Stop AI-Driven Fraud and Account Takeovers With Identity-First Security

Fintech doesn’t get hit “later.” It gets hit first—because money movement, identity, and APIs are the product.

Read more

JLR’s production shock is the 2026 warning label for manufacturers

JLR’s production shock is the 2026 warning label for manufacturers.

Read the latest

Healthcare cyber breaches are “fortified,” but hospitals still aren’t resilient

A new Health Security report captures the uncomfortable reality in healthcare right now: breach frequency is rising, disruption is becoming routine, and confidence in core defensive capabilities is low.

Read the latest

Healthcare Cyber Breaches Are Now a Constant Disruption Problem

Healthcare breaches are rising, driven by ransomware, vendor access, and shadow AI. Here’s how to operationalize resilience, response speed, and governance.

Read more

Generative AI Is Speeding Up Identity Attacks on Active Directory and Entra ID

How to Move Testing to the Identity Control Plane

Read more

When Early Warnings Fade, Ransomware Risk Spikes: Why Cybersecurity Must Be Operational, Not Occasional

From InfoSight’s perspective, the takeaway is direct: external early-warning channels are helpful, but they are not a control. Ransomware resilience comes from a repeatable operational program—continuous visibility, prioritized remediation, and 24/7 response—inside your organization (or delivered as a managed service).

Read the latest

Top cyber threats to prioritize going into 2026

In 2026 cyber risk is shifting fast from “malware problems” to identity-first attacks.

Read more

How Attackers Take Over Microsoft 365 Accounts (and How to Stop It)

Device code phishing abuses a legitimate Microsoft sign-in flow to steal M365 access tokens. Learn how it works, who’s using it, and defenses.

Read More

React2Shell: When a Framework Bug Becomes an Internet-Wide Incident

On December 10, 2025, reporting confirmed what defenders already suspected: the React Server Components (RSC) vulnerability (CVE-2025-55182, “React2Shell”) has moved from “patch fast” to “assume scanning and attempted exploitation is already happening.”

Read the latest

Initial Access Brokers Are Scaling Attacks Faster Than Most Security Programs Are Adapting

Initial access brokers (IABs) have moved from fringe players to a core engine of the modern intrusion economy.

Read More

When Insider Threats Aren’t “Inside” Anymore: - The Three Profiles You Have to Plan For

Insider risk is not a niche problem or an HR-only concern. It is the predictable outcome of giving humans and partners legitimate access to critical systems and data.

Read More

New York just turned hospital cybersecurity into a measurable obligation, and the clock already started.

New York just turned hospital cybersecurity into a measurable obligation, and the clock already started.

Read More

Why Banks Cannot Afford to Ignore Vendor Risk

The financial sector is often hailed for having some of the most robust cybersecurity defenses in the world. Yet, as a recent high-profile breach proves, your security is only as strong as your weakest link.

Read More

FBI and CISA Issue Urgent Warning: Akira Ransomware Targets Critical Infrastructure Sectors

The Akira ransomware group has emerged as a formidable adversary, prompting a joint alert from the FBI and CISA.

Read More

The Alarming Rise of Mobile and IoT Attacks

In an era where operational technology (OT) and information technology (IT) are converging faster than ever, the security implications couldn't be more stark.

Read More

One Employee Click, 60+ Agencies Down

The state of Nevada suffered a ransomware attack that disrupted more than 60 government agencies, including health services, public safety, and the DMV.

Read More

Inside the SOC: The 24×7 Countermeasure to Cyber-Enabled Manufacturing Disruption

This is not “just ransomware” and not “just BEC.” It is operational hijack: organized crime, affiliates, and access brokers using phishing, vendor impersonation, and malicious remote tools to reach the systems that move raw materials, schedule lines, release shipments, and touch OT.

Read More

EPA Moves From Warning to Enforcement on Water-Sector Cybersecurity

The Environmental Protection Agency is moving from warnings to active co-piloting with the water sector on cybersecurity.

Read More

Public Defenders: The Justice System’s New Soft Target

Government Technology reports that a string of cyberattacks against public defender offices in Arizona, New Mexico, and Colorado disrupted access to case files and slowed legal services, exposing how fragile this part of the justice system is to ransomware and data-theft operations.

Read more

Healthcare Under Continuous Cyber Pressure, ISAC Warns

Health-ISAC’s latest alert says healthcare is in a sustained high-threat period, not a spike.

Read More

Hospital Manager Backend Bugs Show Why Healthcare Apps Can’t Be Internet-Facing

HIPAA Journal reported two vulnerabilities in Vertikal Systems’ Hospital Manager Backend Services that could let unauthorized actors access sensitive hospital and patient information.

Read More

Oracle EBS Zero-Day: More Victims Than Anyone Admitted

The Oracle E-Business Suite (EBS) zero-day, tracked as CVE-2025-61882, is hitting more organizations than first disclosed.

Read More

AI-Accelerated Cyberattacks: The Defender's Playbook by InfoSight

AI is accelerating phishing, identity abuse, and vendor fraud. This playbook shows exactly what stops it: verification ladders, phishing-resistant MFA, privileged access hygiene, and supplier guardrails.

Download The White Paper

Hidden Dwell Time, Wider Impact: What Conduent’s Breach Reveals About Contractors

The Conduent breach was not a brief 2025 incident but a three-month intrusion starting in October 2024 that let an attacker move through a contractor serving government and healthcare programs, turning one vendor’s compromise into many customers’ problem.

Read more

F5’s Breach Shows Why Vendor Trust Now Has a Revenue Impact

On Oct. 15, F5 confirmed that a nation-state actor had been inside parts of its environment since at least August, accessing internal development and knowledge systems tied to its BIG-IP product line.

Read more

Why the Shutdown Surge Matters for All Government Cybersecurity Programs

The headline figure—an 85 % spike in cyberattacks during the federal shutdown—is not just a statistic for Washington. It’s a warning light for every agency or municipality whose defenders may be distracted, under-resourced or stretched during times of operational disruption. The same conditions that make federal agencies vulnerable—reduced staffing, employee stress, paused modernization—apply equally at state, county and city levels.

Read More

Major Radiology Hacks — Why Healthcare Data Governance Needs Rebooting

Read more

Auto Industry Under Siege: Why Business Continuity Must Be the Core of Cyber Security

Read More

5 Million Auto Insurance Records Exposed — A Wake-Up Call for Vendor Risk Oversight

Read More

When Threat Actors Can Control Your Heart: The Real-World Cyber Threat Behind J&J’s Impella Recall

The Recall That Sounds Like Science Fiction. A cybersecurity flaw has forced Johnson & Johnson’s Abiomed division to issue a Class I recall—the FDA’s highest risk level—on its Impella heart-pump controllers. These are the small external devices that regulate life-sustaining cardiac blood flow in critical-care patients.

Read More

Take Note: Cyber-Risks With AI Notetakers

AI meeting transcription / notetaking tools are proliferating (often embedded in meeting platforms or offered as standalone apps). They promise convenience and automation, but they carry significant cybersecurity, compliance, legal, and governance risks.

Read More

The Hidden Dangers Inside Your Security Camera

Surveillance cameras designed to protect can easily become tools of exploitation when left unpatched or misconfigured. In education, finance, and public sectors, this risk directly translates to compromised safety and trust. InfoSight’s proactive vulnerability management and continuous monitoring programs ensure these devices remain assets—not attack vectors.

Read more

When CISA Goes Dark, Who’s Most at Risk?

With more than half of CISA’s workforce sidelined during a government shutdown, the ripple effects extend beyond Washington.

Read More

When Children Become Data Targets—Why Education Leaders Must Treat Digital Profiles as Cyber Risks

For IT and security leaders in education, this isn’t just a privacy concern. It’s a cybersecurity risk that directly intersects with safeguarding, compliance, and trust.

Read More

Exposed Healthcare Records Put 150,000 Patients at Risk and Show Why Cybersecurity Can’t Wait

A U.S. home healthcare company accidentally exposed more than 150,000 patient and employee records on the open web.

Read More

Ransomware in Aviation Shows Why Business Continuity Requires Cybersecurity

Airports are among the most complex digital ecosystems in the world. Every gate assignment, boarding pass, and baggage transfer depends on tightly integrated IT and OT systems operated not only by airlines and airports, but also by third-party vendors. That interconnectedness makes aviation one of ransomware’s most appealing—and dangerous—targets.

Read More

Surge in Cyberattack Attempts in Nevada

In late August, Nevada was struck by a serious ransomware incident that disrupted several state websites and digital services. The attack was first detected on August 24, when state officials identified what they described as a “security incident” that later revealed itself to be ransomware. Forensic investigators believe that state data was exfiltrated during the breach.

Read More

KillSec Ransomware Hits Brazilian Healthcare Software Provider

KillSec ransomware, formerly a hacktivist group, now targets exposed cloud resources for profit at scale. Recent attacks in the U.S., Peru, and Colombia highlight growing healthcare supply chain risks across Latin America and beyond.

Read the latest

How a Ransomware Attack on a Blood Center Exposed Critical Healthcare Gaps

The NY Blood Center ransomware attack shows why healthcare needs proactive vulnerability management and HIPAA-aligned cybersecurity.

Read More

Fort Bend County Cyberattack — High Costs, Taxpayer Burden, and the Case for Proactive Cybersecurity

Fort Bend County’s 2025 library cyberattack cost taxpayers nearly $5.8 million to recover.

Read More

Vulnerability Management That Works: Prioritize, Automate, and Close the Loop

For years, enterprises have invested heavily in vulnerability management, chasing bigger scans, fancier dashboards, and endless reports. But here’s the reality: identifying thousands of vulnerabilities doesn’t make you secure. What matters is knowing which ones to fix first, how to fix them efficiently, and confirming they’re actually gone.

Read more

Navy Federal Credit Union Data Exposure

In recent weeks, a cybersecurity researcher uncovered a 378GB unprotected backup database tied to Navy Federal Credit Union, the largest U.S. credit union with over 14.5 million members and $180B in assets.

Read more

The Hidden Cost of Medical Equipment Cyber Gaps: 90,000 Patients Impacted

A recent breach at a medical-equipment provider compromised data of over 90,000 patients. The incident shows how vulnerabilities in device-based vendors directly threaten both operational integrity and patient privacy.

Read more

Ask Our Expert: Why Vulnerability Management is Critical in Today’s Cyber Risk Landscape

In this edition of Ask Our Expert, we sat down with Ray Arteaga, InfoSight’s Senior Vice President of Advisory Services, to talk about a topic that affects every organization—vulnerability management.

Read More

AI & Cloud Spend Are Up—But Basic Cyber Hygiene Is Lagging

Enterprises are racing to adopt AI and expand in the cloud, but many are underinvesting in the controls that stop the most common attacks.

Read more

Securing Critical Infrastructure in the Age of AI: What the U.S. Action Plan Prioritizes

Outlining how America’s AI Action Plan pairs secure-by-design AI with new assurance, sharing, and response playbooks to protect critical infrastructure.

Read More

GPT-5’s Security Flaws Highlight the Need for Robust AI Assessments

In the latest installment of InfoSight Insights, we explore a critical issue in AI security: the vulnerability of advanced language models like GPT-5 to exploitation, stressing the importance of rigorous AI assessments for enterprise use.

Read the latest

Cyberattack on UNFI Disrupts Food Deliveries Across the U.S.

Read more

Ransomware Surges in U.S., Manufacturing Hit Hardest

Ransomware actors are shifting focus from encryption to pure data theft.

Read More

Inside the SOC: Summer’s Not Over, But the Threats Never Took a Break

As summer winds down and organizations start prepping for fall initiatives, those of us inside the SOC (Security Operations Center) haven’t had the luxury of slowing down.

Read more

Federal Retreat Raises Risks for Cyber‑Protected Infrastructure

A recent report highlights serious concern over impending reductions in federal cybersecurity support for critical infrastructure operators—and the potential fallout of shifting responsibilities to states

Read More

AI is Evolving Faster Than Oversight

Organizational Warning Brief | August 2025

Read more

Industrial Cybersecurity Enters a New Era of Regulation and Visibility

New compliance pressures are forcing critical infrastructure operators to move beyond reactive defenses—embracing proactive, audit-ready cybersecurity as a core business function.

Read More

The Growing Threat of AI‑Powered Cyberattacks in 2025

Cyber attacks are transforming with AI—becoming smarter, faster, and scaled.

Read More

Ask Our Expert-Why AI Voice Fraud Is About to Break Banking Security—and What to Do Now

AI-generated voice fraud is rendering voice authentication obsolete, exposing banks to regulatory, legal, and financial risk unless they rapidly adopt AI-resilient identity controls.

Read more

Optimizing Co-op Utility Cyber Resilience: Strategic SOC Management via SOCaaS

Discover how SOCaaS can deliver enterprise-grade 24/7 threat detection, rapid incident response, and audit-ready compliance for your co-op—without the expense of building an in-house SOC.

Read the Brief