It’s been a week filled with sobering reminders that no system is too secure, no platform too big, and no data too small to be a target. From university hacks to insider leaks, major health data breaches, and critical browser and VPN vulnerabilities—this week’s cyber headlines underscore the urgent need for layered defenses and proactive response plans. Whether you’re leading a nonprofit or securing enterprise systems, these stories matter.
Cyber Insurance Puts Pressure on CISOs
Cyber insurance is becoming a must-have, but it’s also putting more pressure on Chief Information Security Officers. Higher premiums, stricter compliance requirements, and growing board-level expectations are reshaping the role of the CISO and how organizations manage cyber risk.
Read more on HelpNetSecurity
Numotion Data Breach Impacts Nearly 500,000 Individuals
Mobility equipment provider Numotion has reported a breach affecting almost half a million people. The exposed data includes personal and possibly health-related information, marking another major blow to the healthcare-adjacent services sector.
Read more on SecurityWeek
NYU Website Hacked, Data Leak Confirmed
New York University confirmed that one of its websites was hacked, resulting in a data leak. While the full scope is under investigation, the breach has raised concerns about academic institutions’ digital infrastructure and the importance of protecting student and faculty information.
Read more on NYU News
ALN Medical Management Reports Patient Data Breach
ALN Medical Management disclosed a breach that compromised sensitive patient and healthcare provider data. The third-party vendor is working with affected healthcare organizations to manage notifications and remediation.
Read more on JDSupra
Major Breach Hits US Hospitals and Health Systems
Several hospitals and health systems in the U.S. have fallen victim to a large-scale data breach. Patient records, including names, health details, and financial data, were reportedly accessed by attackers, deepening concern over ongoing targeting of the healthcare sector.
Read more on CyberNews
Oracle Health Breach Compromises Hospital Patient Data
Oracle Health, a key technology provider to hospitals, confirmed a breach that exposed patient data. The company is working with affected institutions to investigate and mitigate the impact. This is another example of how vendor vulnerabilities ripple through the healthcare ecosystem.
Read more on BleepingComputer
Insider Blamed for Massive Twitter/X Leak of 2.8 Billion Records
A data leak involving 2.8 billion Twitter/X records appears to be the result of insider misconduct. The leak includes usernames, emails, and other user-linked data, sparking privacy concerns and speculation about how platforms manage internal access.
Read more on HackRead
Apple Patches Zero-Day Flaws in Older iPhones
Apple has released emergency patches for zero-day vulnerabilities affecting older iPhones. These flaws were reportedly being exploited in the wild. Users of legacy devices are strongly encouraged to update immediately.
Read more on SecurityWeek
Firefox and Tor Browser Patch Critical Sandbox Escape Vulnerability
Mozilla has fixed CVE-2025-2857, a critical sandbox escape flaw in Firefox and the Tor Browser. The vulnerability could allow attackers to execute malicious code beyond the browser’s confines. Updates have been issued and should be applied without delay.
Read more on HelpNetSecurity
Ivanti Patches Connect Secure Zero-Day Exploited Since March
Ivanti has patched a zero-day vulnerability in its Connect Secure VPN solution that was being actively exploited as early as mid-March. Organizations using the platform are advised to patch immediately and inspect logs for signs of compromise.
Read more on BleepingComputer
HopeNet reviews a variety of security news sources so you do not have to! This list is curated specifically for churches, nonprofits, and other Organizations of Hope. The headlines and our added comments are meant to provide enough to get an overview of recent happenings, but links are also provided for readers that want to explore certain topics deeper.
If this was shared with you and you would like to receive a copy directly to your email, please sign up for this FREE newsletter at HopeNetCISO.com. Also, check out the Services section of our site for ways we can help! Thanks for reading!