NetLib Security

06/03/2026

"Known denial-of-service (DoS) techniques can be chained together in a new exploit that can knock major web servers offline, Calif security researchers warn."

The default HTTP/2 configuration of major web servers is vulnerable to an attack chain combining a compression bomb and a Slowloris-style hold.

06/01/2026

"FMC Services, LLC, doing business as Family Medicine Centers, has agreed to a $2,150,000 class action settlement to resolve a lawsuit that alleged the family primary care provider failed to safeguard sensitive information in its care from a July 2022 data breach."

A $2.15M Family Medicine Centers settlement offers cash and medical data monitoring to individuals impacted by a July 2022 data breach.

05/27/2026

Sensitive Data at Risk 24/7 (Eleven)

Wasting no time while their prior breach story unfolds, the hacking group ShinyHunters continues to run amok. Now the group claims responsibility for an attack against 7-Eleven last month, which the company has confirmed.

Certain 7-Eleven systems were accessed, which contained personal information on an undisclosed number of individuals, including Social Security numbers. Unlike Instructure Canvas, which we examined previously, this time the company refused to pay the extortion. And so ShinyHunters posted it.

https://netlibsecurity.com/blog/sensitive-data-at-risk-247-eleven/?utm_source=facebook&utm_medium=post&utm_campaign=seveneleven

05/26/2026

Open Letter to Security Leaders: Let’s Discuss Our Strategy

We built an industry around detecting breaches faster. Meanwhile, attackers built an industry around making them more damaging.

In the AI era, the question isn’t how quickly you detect compromise. It’s whether stolen data is still usable once attackers get it. Detection matters, but if exposed data still has value, the breach is still a success.

Encryption is no longer a compliance checkbox. It’s infrastructure.

Read our CTO, David Stonehill's, Open Letter to Security Leaders.

https://netlibsecurity.com/articles/security-leaders-lets-discuss-our-strategy/?utm_source=facebook&utm_medium=post&utm_campaign=openletter

05/22/2026

"Municipal leaders, utility personnel, and even one retired city auditor attending a panel discussion were eager to learn about cyber threats that are targeting local governments and, more importantly, how to address them."

In spite of state laws meant to improve cyber hygiene, an analysis of incidents shows issues persist and visibility falls short.

05/20/2026

Ever wonder what happened to Visual FoxPro? Turns out, it’s still alive and kicking for thousands of businesses and government agencies, even though Microsoft stopped supporting it ages ago!

These applications, written with VFP, were developed at a time when the cybersecurity threat was not as great as it is in today’s modern world.
Data in these legacy applications is vulnerable to theft and abuse, and yet upgrading or rewriting these applications is costly.

But you can work to meet modern security and compliance standards with data-at-rest encryption, without requiring a complete application overhaul.
https://netlibsecurity.com/articles/protect-visual-foxpro-lock-it-down-with-encryption/

05/04/2026

"The Paris prosecutor's office has opened an investigation into a 15-year-old, suspected of having hacked the country's ID agency ‌and trying to sell the data of millions of French people ‌on the dark web this month, it said on Thursday."

The Paris prosecutor's office has opened an investigation into a 15-year-old, suspected of having hacked the country's ID agency ‌and trying to sell the data of millions of French people ‌on the dark ...

04/30/2026

"Cybersecurity in healthcare is not the same as it was a year ago.

Evolving artificial intelligence (AI) technologies have redefined the rules of engagement in cyber warfare, creating unprecedented challenges for hospitals, clinics, and healthcare networks worldwide."

AI-driven cyber threats are reshaping healthcare. Join an expert-led webinar to learn how to stay resilient with prevention-first strategies.

04/29/2026

Travel Season Puts Your Data on the Line - "Booking dot com? Booking dot Oh no! Wait, I don’t think that’s how the commercial is supposed to go. That might change for the time being, since the reservation giant has notified customers of a data breach, thanks to unauthorized access by a third party."

https://netlibsecurity.com/blog/travel-season-puts-your-data-on-the-line/?utm_source=facebook&utm_medium=post&utm_campaign=booking

04/28/2026

"The federal agency's co-deputy director warns that rising cyberattacks are disrupting care delivery and straining operations."