Tag: healthcare
-
Medusa Rides Momentum From Ransomware-as-a-Service Pivot
Shifting to a RaaS business model has accelerated the group’s growth, and targeting critical industries like healthcare, legal, and manufacturing hasn’t hurt either. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/medusa-momentum-ransomware-as-a-service-pivot
-
For healthcare orgs, DR means making sure docs can save lives during ransomware infections
Organizational, technological resilience combined defeat the disease that is cybercrime First seen on theregister.com Jump to article: www.theregister.com/2025/04/02/disaster_recovery_healthcare/
-
HSCC Urges White House to Shift Gears on Health Cyber Regs
The Health Sector Coordinating Council is urging the Trump administration to drop work on a proposed HIPAA security rule update and instead engage in a collaborative dialogue with healthcare sector leaders to create alternative cyber requirements, said Greg Garcia, executive director of HSCC. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/hscc-urges-white-house-to-shift-gears-on-health-cyber-regs-i-5472
-
Native tribe in Minnesota says cyber incident knocked out healthcare, casino systems
The Lower Sioux Indian Community warned residents on Wednesday that a cyberattack caused disruptions for the local healthcare facility, government center and casino. First seen on therecord.media Jump to article: therecord.media/native-minnesota-tribe-says-cyber-incident-disrupted-healthcare-casino
-
Total Cost of Ownership (TCO) Analysis: Seceon Platform vs. Siloed Cybersecurity Solutions for a 5,000+ Staff Hospital in the USA
Cyber threats targeting healthcare organizations are at an all-time high, with ransomware, insider threats, medical device exploits, and data breaches putting patient data and hospital operations at risk. To defend against these threats, hospitals have traditionally relied on siloed security tools, which result in high costs, operational complexity, and slow response times. This analysis compares…
-
Unhealthy Cybersecurity Postures
Updates from Enzoic’s Threat Research Team In the last Enzoic research update, we briefly discussed the travails of the healthcare industry and their challenges in establishing a successful cybersecurity posture in the face of a salivating cadre of identity thieves and ransomware operators. In the intervening few weeks, more analyses have been published, including the……
-
Prince Ransomware An Automated Open-Source Ransomware Builder Freely Available on GitHub
Tags: attack, cyber, cybercrime, cybersecurity, exploit, github, healthcare, open-source, programming, ransomware, toolThe cybersecurity landscape has witnessed a concerning development with the emergence of >>Prince Ransomware,
-
For healthcare orgs, disaster recovery means making sure docs can save lives during ransomware infection
Organizational, technological resilience combined defeat the disease that is cybercrime First seen on theregister.com Jump to article: www.theregister.com/2025/04/02/disaster_recovery_healthcare/
-
Balancing data protection and clinical usability in healthcare
In this Help Net Security interview, Aaron Weismann, CISO at Main Line Health, discusses the growing ransomware threat in healthcare and why the sector remains a prime target. … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/04/02/aaron-weismann-main-line-health-healthcare-data-protection/
-
The UK’s Cyber Security and Resilience Bill will boost standards and increase costs
Tags: attack, breach, cyber, cyberattack, cybersecurity, data, government, healthcare, msp, ransomware, resilience, service, technologyWhy is it needed?: In 2024, the NCSC responded to 430 cybersecurity incidents, including 89 it said were rated as “nationally significant.” That included the large ransomware attack on the NHS pathology services provider Synnovis last June that ended up costing an estimated £32.7 million ($42 million) to fix.”Last year’s cyber attack on a supplier…
-
Data breaches prevalent in US healthcare sector
First seen on scworld.com Jump to article: www.scworld.com/brief/data-breaches-prevalent-in-us-healthcare-sector
-
7 Wege, Daten (besser) zu verschlüsseln
Tags: ai, blockchain, business, crypto, dns, encryption, github, healthcare, infrastructure, nist, office, privacy, software, updateVerschlüsseln Sie Ihre Daten zeitgemäß?Das Konzept der Kryptografie existiert schon ein paar Hundert Jahre, wird aber von findigen Wissenschaftlern und Mathematikern immer weiter vorangetrieben. Im Rahmen dieser Entwicklungsarbeit hat sich gezeigt, dass Algorithmen noch viel mehr können, als nur Daten zu schützen: Sie sind auch in der Lage, komplexe Regeln durchzusetzen und die Zusammenarbeit zu…
-
How CISOs can balance business continuity with other responsibilities
Tags: attack, backup, breach, business, cio, ciso, compliance, cyber, cyberattack, cybersecurity, data, data-breach, finance, framework, healthcare, incident, incident response, metric, nist, ransomware, resilience, risk, service, strategy, supply-chain, technology, threat, usa, vulnerabilityCIO-CISO divide: Who owns business continuity?: While CISOs may find that their remit is expanding to cover business continuity, a lack of clear delineation of roles and responsibilities can spell trouble.To effectively handle business continuity, cybersecurity leaders need a framework to collaborate with IT leadership.Responding to events requires a delicate balance between thoroughness of investigation…
-
£3 million fine for healthcare MSP with sloppy security after it was hit by ransomware attack
A UK firm has been hit by a £3.07 million fine after being hit by a ransomware attack that exposed sensitive data related to almost 80,000 people, and disrupted NHS services. First seen on exponential-e.com Jump to article: www.exponential-e.com/blog/3-million-fine-for-healthcare-msp-with-sloppy-security-after-it-was-hit-by-ransomware-attack
-
UK Cybersecurity Weekly News Roundup 31 March 2025
Tags: attack, best-practice, browser, chrome, computing, cryptography, cve, cyber, cybersecurity, exploit, flaw, framework, google, government, healthcare, incident, infrastructure, ransomware, risk, risk-assessment, software, threat, update, vulnerability, zero-dayUK Cybersecurity Weekly News Roundup – 31 March 2025 Welcome to this week’s edition of our cybersecurity news roundup, bringing you the latest developments and insights from the UK and beyond. UK Warned of Inadequate Readiness Against State-Backed Cyberattacks Cybersecurity experts have sounded the alarm over the UK’s growing vulnerability to state-sponsored cyber threats. A…
-
Cyberangriff auf ein Krankenhaus in Brasilien
Real Hospital Português é alvo de ataque cibernético e sistema fica fora do ar First seen on diariodepernambuco.com.br Jump to article: www.diariodepernambuco.com.br/noticia/vidaurbana/2024/09/real-hospital-portugues-e-alvo-de-ataque-cibernetico.html
-
Critical Condition: Legacy Medical Devices Remain Easy Targets for Ransomware
Analysis found that 99% of healthcare organizations are vulnerable to publicly available exploits. The post Critical Condition: Legacy Medical Devices Remain Easy Targets for Ransomware appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/critical-condition-legacy-medical-devices-remain-easy-targets-for-ransomware/
-
Revenue Cycle Management Firm Hack Affects Patients, Clients
Incident Spotted in March 2024 Is Yet Another Attack Against Medical Billing Firms. A Nebraska-based firm that provides revenue cycle management and billing services to healthcare firms is notifying tens of thousands of people and an undisclosed number of companies that their personal, health and financial information was compromised in a March 2024 hack. First…
-
Healthcare’s alarming cybersecurity reality
89% of healthcare organizations have the top 1% of riskiest Internet of Medical Things (IoMT) devices which contain known exploitable vulnerabilities (KEVs) linked to active … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/03/28/healthcare-devices-vulnerabilities/
-
Oracle Health breach compromises patient data at US hospitals
A breach at Oracle Health impacts multiple US healthcare organizations and hospitals after a threat actor stole patient data from legacy servers. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/oracle-health-breach-compromises-patient-data-at-us-hospitals/
-
Nine in Ten Healthcare Organizations Use the Most Vulnerable IoT Devices
Claroty revealed that 89% of healthcare organizations use the top 1% of riskiest Internet-of-Medical-Things (IoMT) devices First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/healthcare-vulnerable-iot-devices/
-
FBI Has Found No Credible Terror Threats to Hospitals
‘Extensive’ Probe Launched After Warning of Coordinated Attacks Posted on X. The FBI has not identified any credible terrorist threats of physical attacks on U.S. hospitals, said the Health Information Sharing and Analysis Center and the American Hospital Association, one week after the two groups issued a joint warning about threats surfacing on social media.…
-
RFK Jr. Cuts at HHS Affect HIPAA, Cyber Response Units
HHS Laying Off 10,000 More People, Consolidating Divisions, Shifting Priorities. The U.S. Department of Health and Human Services announced a major restructuring and workforce reductions on Thursday. The changes disclosed so far include reshuffling units of HHS involved in healthcare sector cybersecurity response activities and HIPAA regulatory work. First seen on govinfosecurity.com Jump to article:…
-
British company Advanced fined £3m by privacy regulator over ransomware attack
A business that provides IT services to numerous healthcare providers in the United Kingdom has been fined about $4 million by the country’s privacy regulator over a ransomware attack in 2022. First seen on therecord.media Jump to article: therecord.media/advanced-fined-3-million-ransomware-attack-ico
-
Rising attack exposure, threat sophistication spur interest in detection engineering
Tags: access, ai, attack, automation, banking, ceo, ciso, cloud, compliance, cyber, cybersecurity, data, detection, endpoint, exploit, finance, framework, healthcare, infrastructure, insurance, intelligence, LLM, malware, mitre, network, programming, ransomware, RedTeam, risk, sans, siem, software, supply-chain, tactics, technology, threat, tool, update, vulnerability, zero-dayMore than the usual threat detection practices: Proponents argue that detection engineering differs from traditional threat detection practices in approach, methodology, and integration with the development lifecycle. Threat detection processes are typically more reactive and rely on pre-built rules and signatures from vendors that offer limited customization for the organizations using them. In contrast, detection…
-
ColorTokens’ Gold Rush at Globee Awards
Call it unstoppable momentum or call it yet another powerful validation of our breach-readiness approach. We’re riding high into RSA 2025 with triple Gold medals, and one Silver medal from the Globee Cybersecurity Awards. Claiming top honors for Microsegmentation, Healthcare Cybersecurity Solutions, and Pharmaceuticals & Biotech Cybersecurity Solutions, plus a Silver for Operational Technologies (OT)……