Cybersecurity and Data Breaches

CareCloud, a U.S. healthcare IT company that supports more than 45,000 medical providers, has disclosed a March 16 security breach in one of its environments that stores electronic health records, according to a filing with the Securities and Exchange Commission. The company says hackers had unauthorized access for more than eight hours before systems were restored the same day and believes the intruders have been removed from its network. CareCloud maintains that the incident was limited to a single environment and did not affect other systems, but investigators have not yet determined whether any patient data was exfiltrated or what types of information might be involved. Because CareCloud underpins back‑office systems many patients never see, security analysts warn that any confirmed data theft could fuel identity theft, insurance fraud and highly targeted scams across the country. The firm has hired outside cybersecurity experts and says its investigation is ongoing, as privacy advocates on social media continue pointing to this and the recent Change Healthcare attack as evidence that critical U.S. health infrastructure remains dangerously exposed.

Security researchers have disclosed a serious Android vulnerability, CVE-2026-20435, affecting some phones that use MediaTek processors and Trustonic’s Trusted Execution Environment, allowing attackers with physical access and a USB-connected computer to bypass the lock screen in under a minute. By exploiting the bug during the phone’s early boot process, an attacker can potentially recover the device PIN, unlock encrypted storage and extract sensitive data such as photos, passwords, messages, financial records and even cryptocurrency wallet seed phrases. The flaw is estimated to affect roughly one in four Android phones, particularly budget models, and stems from low-level firmware code rather than anything users can fix themselves. MediaTek says it has issued a firmware patch, but users are dependent on individual phone manufacturers to push security updates, and older or unsupported devices may never be patched. While the attack cannot be carried out remotely, it poses a major risk if a phone is lost, stolen, briefly confiscated or accessed during repair, adding to growing concerns U.S. cybersecurity experts are voicing online about weak long‑term support for cheaper Android devices.