Tag: healthcare
-
SmokeLoader picks up ancient MS Office bugs to pack fresh credential stealer
Threat actors are using a well-known modular malware loader, SmokeLoader, to exploit known Microsoft Office vulnerabilities and steal sensitive browser credentials.The loader which runs a framework to deploy multiple malware modules, was observed by Fortinet’s FortiGuard Labs in attacks targeting manufacturing, healthcare, and IT companies in Taiwan.”SmokeLoader, known for its ability to deliver other malicious…
-
EU enacts new laws to strengthen cybersecurity defenses and coordination
Tags: ai, compliance, cyber, cybersecurity, data, defense, framework, healthcare, infrastructure, law, network, penetration-testing, privacy, regulation, risk, service, soc, technology, threat, vulnerabilityThe European Union has enacted two new laws to bolster its cybersecurity defenses and coordination mechanisms. The measures, part of the cybersecurity legislative package, include the Cyber Solidarity Act and amendments to the Cybersecurity Act (CSA).These steps aim to improve the EU’s ability to detect, prepare for, and respond to cyber threats while fostering uniformity…
-
No guarantees of payday for ransomware gang that claims to have hacked children’s hospital
What is the point of INC Ransom’s attack on Alder Hey? They are not likely to be paid, and the attack on a children’s hospital only increases the chances that they will one day find their collars felt by law enforcement. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/no-guarantees-of-payday-for-ransomware-gang-that-claims-to-have-hacked-childrens-hospital
-
Feds Propose AI ‘Guardrails’ for Medicare Advantage Plans
Provision Emphasizes Existing Medicare Regs for Equitable Access to Health Services. The Centers for Medicare and Medicaid Services has issued proposed guardrails to help ensure that the use of artificial intelligence for Medicare Advantage insurance plans does not result in inequitable access to healthcare-related services. The proposed rule will go into effect in 2026. First…
-
Why identity security is your best companion for uncharted compliance challenges
Tags: access, ai, attack, authentication, automation, business, cloud, compliance, control, cyberattack, cybersecurity, data, detection, exploit, finance, framework, GDPR, governance, government, healthcare, HIPAA, identity, india, law, least-privilege, mitigation, monitoring, privacy, regulation, risk, risk-management, service, strategy, supply-chain, technology, threat, tool, zero-trustIn today’s rapidly evolving global regulatory landscape, new technologies, environments, and threats are heightening cybersecurity and data privacy concerns. In the last year, governing bodies have taken significant steps to enact stricter compliance measures”, and more than ever, they are focusing on identity-related threats.Some notable changes include: The National Institute of Standards and Technology (NIST)…
-
Feds Propose AI ‘Guard Rails’ for Medicare Advantage Plans
Provision Emphasizes Existing Medicare Regs for Equitable Access to Health Services. The Centers for Medicare and Medicaid Services has issued proposed guard rails to help ensure that the use of artificial intelligence for Medicare Advantage insurance plans does not result in inequitable access to healthcare-related services. The proposed rule will go into effect in 2026.…
-
Cyber Incidents Hit 3 NHS Hospitals in U.K.
Inc Ransom is Leaking Stolen Data in At Least 2 Attacks, Including Pediatric Info. At least three United Kingdom National Health Service hospitals are responding to recent cyber incidents, including a children’s hospital and a heart and chest specialty hospital are both located in Liverpool and share IT systems. Inc Ransom claims to have stolen…
-
Other UK hospitals purportedly subjected to INC Ransom attack
First seen on scworld.com Jump to article: www.scworld.com/brief/other-uk-hospitals-purportedly-subjected-to-inc-ransom-attack
-
2 UK Hospitals Targeted in Separate Cyberattacks
Alder Hey Children’s Hospital got hit with a ransomware attack, while the nature of an incident at Wirral University Teaching Hospital remains undisclosed. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/two-nhs-hospitals-targeted-in-separate-cyberattacks
-
SmokeLoader Malware Resurfaces, Targeting Manufacturing and IT in Taiwan
Taiwanese entities in manufacturing, healthcare, and information technology sectors have become the target of a new campaign distributing the SmokeLoader malware.”SmokeLoader is well-known for its versatility and advanced evasion techniques, and its modular design allows it to perform a wide range of attacks,” Fortinet FortiGuard Labs said in a report shared with The Hacker News.”While…
-
Second Merseyside hospital hit by cyber attack
Hot on the heels of a major cyber attack at a nearby NHS trust, one of Europe’s biggest and busiest children’s hospitals is reportedly scrambling to deal with ransomware gang First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366616504/Second-Merseyside-hospital-hit-by-cyber-attack
-
AWS launches tools to tackle evolving cloud security threats
The increasing sophistication and scale of cyber threats pose a growing challenge for enterprises managing complex cloud environments. Security teams often face overwhelming volumes of alerts, fragmented workflows, and limited tools to identify and respond to attack patterns spanning multiple events.Amazon Web Services (AWS) is addressing these challenges with two significant updates to its cloud…
-
Two UK Hospitals Hit by Cyberattacks, One Postponed Procedures
Alder Hey Children’s Hospital and Wirral University Teaching Hospital have fallen victim to cyberattacks, including one involving ransomware. The post Two UK Hospitals Hit by Cyberattacks, One Postponed Procedures appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/two-uk-hospitals-hit-by-cyberattacks-one-postponed-procedures/
-
Working in critical infrastructure? Boost your effectiveness with these cybersecurity certifications
Tags: attack, automation, awareness, china, cisa, communications, compliance, control, cyber, cybersecurity, defense, finance, germany, governance, government, healthcare, HIPAA, incident response, infrastructure, international, jobs, network, PCI, privacy, ransomware, resilience, risk, risk-management, russia, sans, service, skills, soc, supply-chain, technology, training, ukraine, update, warfareHybrid warfare between nation-states is imperilling critical infrastructure around the world, both physically and electronically. Since the start of the Ukraine-Russia conflict, hybrid cyber/physical attacks on satellite and communications, energy, transportation, water, and other critical sectors have spread across Europe and beyond.Chinese perpetrators are actively infiltrating telecommunications networks in the US and abroad, according to…
-
Why Shoring Up Cyber at Rural and Small Hospitals Is Urgent
When a large hospital in an urban area is shut down by ransomware, the disruption can be significant, but when a rural hospital faces a similar cyber … First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/shoring-up-cyber-at-rural-small-hospitals-urgent-i-5422
-
14th October Threat Intelligence Report
Nonprofit healthcare organization Axis Health System has been hit by a ransomware attack by the Rhysida gang, leading to the theft of sensitive data, … First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2024/14th-october-threat-intelligence-report/
-
21st October Threat Intelligence Report
Boston Children’s Health Physicians, part of the Boston Children’s Hospital network, suffered a data breach in September, exposing sensitive patient i… First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2024/21st-october-threat-intelligence-report/
-
Overcoming Identity and Access Challenges in Healthcare
Third-party access management poses significant cybersecurity risks in healthcare, but continuous identity management and monitoring can help mitigate those risks, said Jim Routh, chief trust officer at Saviynt. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/overcoming-identity-access-challenges-in-healthcare-i-5425
-
Study: 92% of Healthcare Firms Hit by Cyberattacks This Year
Healthcare organizations should rethink some of their approach to security, enhancing focus on insider threats, improving cyber awareness training and… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/study-92-healthcare-firms-hit-by-cyberattacks-this-year-i-5419
-
Ransom gang claims attack on NHS Alder Hey Children’s Hospital
Second alleged intrusion on English NHS org systems this week First seen on theregister.com Jump to article: www.theregister.com/2024/11/29/inc_ransom_alder_hey_childrens_hospital/
-
INC Ransom Claims Cyber-Attack on UK Children’s Hospital
The NHS Trust is investigating the incident with the help of the National Crime Agency First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/inc-ransom-cyberattack-uk-children/
-
UK hospital, hit by cyberattack, resorts to paper and postpones procedures
A British hospital is grappling with a major cyberattack that has crippled its IT systems and disrupted patient care. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/uk-hospital-hit-by-cyberattack-resorts-to-paper-and-postpones-procedures
-
UK Healthcare Provider Hit by Cyberattack, Services Affected
Wirral University Teaching Hospital in the UK has been hit by a targeted cyberattack, leading to the declaration of a major incident. The cyberattack has affected the hospital’s IT systems, necessitating a shift from digital to paper-based processes in certain areas. A spokesperson for the hospital stated, >>We expect the major incident that was declared…
-
How Mega Attacks Are Spotlighting Critical 3rd-Party Risks
Recent mega data breaches involving third-party vendors – such as the Change Healthcare cyberattack – are intensifying the spotlight on critical secur… First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/interviews/how-mega-attacks-are-spotlighting-critical-3rd-party-risks-i-5418
-
When Hackers Meet Tractors: Surprising Roles in IoT Security
How to Find a Career in Industrial IoT – on the Factory Floor or in the Cornfield Cybersecurity once conjured images of IT departments, server rooms and corporate firewalls. Today, it extends far beyond these traditional domains, becoming essential in fields like manufacturing, agriculture, healthcare, transportation, robotics and space exploration. First seen on govinfosecurity.com Jump…
-
Cyberattack at UK hospital prompts outpatient appointment cancellations
First seen on scworld.com Jump to article: www.scworld.com/brief/cyberattack-at-uk-hospital-prompts-outpatient-appointment-cancellations
-
Further disruption expected after latest NHS cyber attack
IT and security teams at Wirral University Teaching Hospitals NHS Trust continue to work around the clock following a major cyber incident, with services disrupted and no timeline for resolution First seen on Jump to article: /www.computerweekly.com/news/366616494/Further-disruption-expected-after-latest-NHS-cyber-attack
-
New EU Commission to Unveil Healthcare Cybersecurity Plan in First 100 Days
One of the priorities of the newly-approved Von der Leyen Commission II will be to strengthen the healthcare sector’s cyber resilience First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/eu-commission-healthcare-cyber-plan/