Cybersecurity Headlines US healthcare breach affects 140k, experts warn against replicating humans, Shai-Hulud-like worm targets devs
19 snips
Feb 24, 2026 A major U.S. healthcare breach exposed 140k records and payment data. Regulators urge limits on generative AI that creates realistic people. A Sandworm-style NPM worm is stealing developer secrets from the supply chain. Arrests and probes touch DDoS, malware, and airline data theft. The show questions whether compliance audits actually reduce risk.
AI Snips
Chapters
Transcript
Episode notes
Supply Chain Breach Exposes 140k Healthcare Records
- Everest ransomware hit a U.S. healthcare supply chain causing nearly 140,000 records to be exposed.
- The breach traced to compromised Catalyst RCM credentials and exposed names, DOBs, payment cards, medical and insurance data.
Global Regulators Demand Consent For AI People Replication
- Data protection authorities from 61 countries warn AI firms to block generation of realistic images or videos of identifiable people without consent.
- This follows Grok producing millions of nudified real-person images and pushes safeguards against non-consensual intimate imagery and defamation.
Rotate Credentials After NPM Supply Chain Worms
- Developers should rotate credentials and audit repos and CI after NPM supply-chain worms like Sandworm underscore Mode are removed.
- The worm typo-squatted 19 NPM packages to steal developer, CI credentials, crypto keys, and API tokens via rogue MCP servers.