We bring to your attention a sampling of recent media stories involving cyber risk & privacy liability.

Among the stories we’re highlighting this month: Poor Risk Analysis Cost 4 Firms $1.7 Million in HIPAA Fines, Feuding Ransomware Groups Leak Each Other’s Data, Ransomware Negotiator Pleads Guilty to Conspiracy, AI Signals in Email Attacks, and more!

Breach Tracker

• Carnival Confirms Data Breach Impacting Nearly 6 Million (read more)
• Microsoft Hacked To Deliver Malware To Claude and Gemini Users (read more)
• ShinyHunters Hits Canvas Records, Risking School Data (read more)
• Labcorp Agrees to $35M Settlement to Resolve AMCA Data Breach Litigation (read more)
• NYC Health + Hospitals Says Hackers Stole Medical Data and Fingerprints During Breach Affecting at Least 1.8 Million People (read more)
• Iranian Hackers Responsible for Los Angeles Transit System Breach, Israeli Officials Say (read more)
• Charter Communications Confirms Data Breach, ShinyHunters Blamed After Threat To Leak User Information Online (read more)
• Data Breach Tracker 2026: Latest Breaches and Settlements (read more)
• U.S. Bank Discloses Security Lapse After Sharing Customer Data With AI App (read more)
• Massive Supply Chain Attack Hits Major Open-Source Packages; Microsoft Patches 137 Flaws as ICS Vulnerabilities Surge (read more)
• Cushman & Wakefield Confirms Data Breach Following Cyber Incident (read more)
• Ransomware Actors Steal Law Firm Data (read more)
• Beacon Mutual Ransomware Attack Exposed Data of 4,500 Current and Former Rhode Island State Employees (read more)

NetDiligence In the News

New Partnership Alert: We’re excited to announce our latest partnership with CRC-Oyster, expanding access to cyber incident response planning and best practices through our Breach Plan Connect® solution, powered by NetDiligence®.

Together, this partnership enables CRC-Oyster to deliver a simple yet modernized approach to incident readiness—one that helps organizations prepare for, respond to, and recover from cyber incidents with greater confidence, less disruption, and stronger operational resilience.

NetDiligence is proud to support CRC-Oyster as they bring this offering to their financial services clients in today’s fast-evolving cyber risk environment.

Read the full press release here.

Will we see you in Philadelphia this Fall?

We’re already getting geared up for our biggest event of the year…the annual NetDiligence Cyber Risk Summit Philadelphia! The event is scheduled to take place this Fall from October 5–7, 2026.

Registration and hotel blocks open up on July 14 so mark your calendars and we hope to see you there!

The Evolving Cyber Threat Landscape

• How a Fake Recruiter Earns Your Trust (read more)
• AI Governance in the States: May 2026 Update (read more)
• New Executive Order on AI Innovation and Security: What It Means for AI Developers, Government Contractors, and Critical Infrastructure Operators (read more)
• 500 Ransomware Statistics for 2026 (read more)
• CMMC 2.0 Requirements for Compliance Are Looming and the Consequences Are Real: Part 1 (read more)
• A Data-Driven View of Cyber Risk Structure: How Attack Pressure and Exposure Shape Damage (read more)
• The Surge in Privacy Class Action Litigation Continues (read more)
• Corporate Material Hygiene Is the New Front Line Against AI Threats (read more)
• Oceanair Federal Credit Union Closed the Gap Between Cyber Insurance and Ransomware Resilience (read more)

Insights for Small to Medium Businesses

• Quantum 101 for Leaders: What Every Organization Should Understand About Quantum Readiness (read more)
• How to Prevent Business Email Compromise (read more)
• Why Frontier AI Makes Third-Party Risk Management Your Most Urgent Security Priority in 2026 (read more)
• How to Create an Incident Response Plan (read more)
• Artificial Intelligence as a Litigation Multiplier: Contract and Risk Issues for AI-Enabled Services (read more)
• Quick Guide to Preventing Third-Party Cyber Incidents (read more)