Tag: healthcare
-
Scattered Spider Sting: 2 English Teens Charged With Attacks
UK and US Charge Suspects With Hitting Transport for London, Healthcare, Others. Two English teenagers have been charged with disrupting London’s transport network as part of a Scattered Spider cyberattack. One of the suspects has also been accused by the U.S. of helping to attack 120 other victims, generating $115 million in ransom payments. First…
-
Healthcare firms’ hack-related losses outpace those of other sectors
A new report found that healthcare organizations experienced far more attacks costing more than $500,000 than organizations in other industries. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/healthcare-cyberattacks-report-netwrix/760507/
-
UK arrests 2 more alleged Scattered Spider hackers over London transit system breach
Authorities say one of the suspects also hacked several U.S. healthcare firms. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/uk-arrests-scattered-spider-london-transit-hack-us-healthcare/760508/
-
Cybercriminals pwn 850k+ Americans’ healthcare data
Three US medical centers fess up to serious breaches First seen on theregister.com Jump to article: www.theregister.com/2025/09/18/850k_americans_affected_by_medical/
-
Cybercriminals pwn 850k+ Americans healthcare data
Three US medical centers fess up to serious breaches First seen on theregister.com Jump to article: www.theregister.com/2025/09/18/850k_americans_affected_by_medical/
-
Getting Better Results from NHI Security
How Can We Achieve Better NHI Security? Cloud environment security is an integral part of cybersecurity strategies for businesses operating across financial services, healthcare, travel, and more. How can organizations unlock improved results and ensure robust Non-Human Identities (NHIs) security? A strategic approach to NHI management can bridge the gap between security and research &……
-
Malicious PyPI Packages Deliver SilentSync RAT
IntroductionZscaler ThreatLabz regularly monitors for threats in the popular Python Package Index (PyPI), which contains open source libraries that are frequently used by many Python developers. In July 2025, a malicious Python package named termncolor was identified by ThreatLabz. Just a few weeks later, on August 4, 2025, ThreatLabz uncovered two more malicious Python packages…
-
Microsoft disrupts global phishing campaign that led to widespread credential theft
Officials say the operation led to ransomware and BEC attacks on U.S. hospitals and healthcare organizations. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/microsoft-disrupts-global-phishing-credential-theft/760378/
-
When Every Second Counts: Rethinking Authentication for Modern Healthcare
In the emergency room at 2 AM, a cardiac patient arrives in distress. The attending physician rushes to the nearest workstation”, one that three other doctors have used in the past hour”, and needs immediate access to prescribe life-saving medication. But first, there’s the familiar friction: logging out the previous user, entering credentials, waiting for…
-
Microsoft Shuts Down RaccoonO365 Phishing Ring, Seizes 338 Websites
Microsoft’s Digital Crimes Unit dismantled RaccoonO365, a major phishing service that stole thousands of user credentials and targeted US healthcare organisations. Discover how the operation worked and its global impact. First seen on hackread.com Jump to article: hackread.com/microsoft-shuts-down-raccoono365-phishing-seizes-sites/
-
How AI-powered ZTNA will protect the hybrid future
Tags: access, ai, authentication, automation, business, ciso, cloud, compliance, control, data, healthcare, identity, infrastructure, skills, strategy, tool, vpn, zero-trustThe multi-cloud access management reality: The complexity I’m witnessing goes beyond traditional VPN sprawl challenges. Take a healthcare enterprise I worked with: patient management on AWS, legacy billing on-premises, analytics on Azure and disaster recovery in a third cloud. Each environment has different access controls, identity providers and security policies. A nurse accessing patient data…
-
How AI-powered ZTNA will protect the hybrid future
Tags: access, ai, authentication, automation, business, ciso, cloud, compliance, control, data, healthcare, identity, infrastructure, skills, strategy, tool, vpn, zero-trustThe multi-cloud access management reality: The complexity I’m witnessing goes beyond traditional VPN sprawl challenges. Take a healthcare enterprise I worked with: patient management on AWS, legacy billing on-premises, analytics on Azure and disaster recovery in a third cloud. Each environment has different access controls, identity providers and security policies. A nurse accessing patient data…
-
Passwordless Authentication in Healthcare: Protecting Patient Data
Discover how passwordless authentication protects patient data, boosts compliance, and streamlines workflows in modern healthcare systems. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/09/passwordless-authentication-in-healthcare-protecting-patient-data/
-
KillSec Ransomware Hits Brazilian Healthcare Software Provider
The ransomware gang breached a major element of the healthcare technology supply chain and stole sensitive patient data, according to researchers. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/killsec-ransomware-brazil-healthcare-software-provider
-
Ransomware Attack
Ransomware has become one of the most devastating forms of cybercrime in the modern era. From hospitals forced to cancel surgeries to global supply chains brought to a standstill, ransomware doesn’t just lock data”, it cripples organizations. The damage goes far beyond financial losses. Ransomware can erode trust, tarnish reputations, and create lasting business disruption.…
-
U.S. Senator accuses Microsoft of “gross cybersecurity negligence”
U.S. Senator Ron Wyden has sent a letter to the Federal Trade Commission (FTC) requesting the agency to investigate Microsoft for failing to provide adequate security in its products, which led to ransomware attacks against healthcare organizations. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/us-senator-accuses-microsoft-of-gross-cybersecurity-negligence/
-
Senator Wyden Urges FTC to Probe Microsoft for Ransomware-Linked Cybersecurity Negligence
U.S. Senator Ron Wyden has called on the Federal Trade Commission (FTC) to probe Microsoft and hold it responsible for what he called “gross cybersecurity negligence” that enabled ransomware attacks on U.S. critical infrastructure, including against healthcare networks.”Without timely action, Microsoft’s culture of negligent cybersecurity, combined with its de facto monopolization of the First seen…
-
FTC should investigate Microsoft after Ascension ransomware attack, senator says
Tags: access, attack, encryption, finance, hacker, healthcare, microsoft, network, ransomware, technologyHackers leveraged insecure Microsoft encryption technology known as RC4 to gain access to the network of the hospital chain Ascension, Sen. Ron Wyden said in a letter asking the Federal Trade Commission to investigate. First seen on therecord.media Jump to article: therecord.media/ascension-ransomware-attack-wyden-seeks-ftc-microsoft-investigation
-
Senator blasts Microsoft for ‘dangerous, insecure software’ that helped pwn US hospitals
Ron Wyden urges FTC to probe failure to secure Windows after attackers used Kerberoasting to cripple Ascension First seen on theregister.com Jump to article: www.theregister.com/2025/09/11/wyden_microsoft_insecure/
-
France: Three Regional Healthcare Agencies Targeted by Cyber-Attacks
Compromised data includes personal data such as patients’ full names, ages, phone numbers and email addresses First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/france-regional-healthcare/
-
Zero Outages, Full Visibility: How PacificSource Automated SSL TLS Certificate Lifecycle Management
Tags: healthcareIn healthcare, every second counts. From electronic health records (EHR) to patient portals and claims processing systems, secure digital communication is the backbone of delivering care and protecting sensitive patient information. That security relies on SSL/TLS certificates”, and the rules governing them are about to change in a big way. The CA/Browser Forum has approved…
-
Wyden calls on FTC to investigate Microsoft for ‘gross cybersecurity negligence’ in protecting critical infrastructure
The Oregon senator said Microsoft’s default settings for Windows and other products are enabling ransomware attacks, like the one against Ascension hospital system in 2024. First seen on cyberscoop.com Jump to article: cyberscoop.com/ron-wyden-ftc-microsoft-default-security-flaws-rc4-kerberoasting-ascension-ransomware/
-
Feds Release Updated HIPAA Security Risk Analysis Tool
Experts Say Tool Geared to Small, Midsized Organizations. Federal regulators have updated their HIPAA security risk assessment tool that’s long been aimed at helping small and midsized providers and business associates with risk analysis – an activity that many healthcare organizations can’t seem to get right. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/feds-release-updated-hipaa-security-risk-analysis-tool-a-29411
-
KillSec Ransomware is Attacking Healthcare Institutions in Brazil
First seen on resecurity.com Jump to article: www.resecurity.com/blog/article/killsec-ransomware-is-attacking-healthcare-institutions-in-brazil
-
KillSec Ransomware is Attacking Healthcare Institutions in Brazil
KillSec Ransomware claimed responsibility for a cyberattack on MedicSolution, a software solutions provider for the healthcare industry in Brazil. The KillSec Ransomware group has threatened to leak sensitive data unless negotiations are initiated promptly. According to threat intelligence reporting by Resecurity, the root cause of the incident data exfiltration from insecure AWS S3 bucket. […]…
-
Hand-Tool Maker Says Hack Compromised Medical Info
Breach Affecting 104,000 Underscores Health Data Risks for Non-Healthcare Firms. An Ohio hand tool manufacturer that sells its products through franchises is notifying nearly 104,000 people of a breach potentially compromising their medical data. The incident is a cautionary tale for non-healthcare sector entities about the risks they face involving health information. First seen on…
-
KillSec Ransomware Hits Brazilian Healthcare IT Vendor
A ransomware attack by KillSec on Brazil software provider MedicSolution threatens healthcare, impacting providers and patients First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/killsec-ransomware-hits-brazilian/
-
Ransomware upstart ‘The Gentlemen’ raises the stakes for OT”‘heavy sectors
Tags: access, attack, breach, ceo, ciso, credentials, cybersecurity, data, defense, endpoint, group, healthcare, insurance, intelligence, least-privilege, monitoring, network, ransomware, resilience, risk, supply-chain, threat, tool, update, vulnerability, zero-trustHigh-stakes industries make prime targets: The attacks have been spread across 17 countries, with Thailand and the US being the top targets, followed by Venezuela and India. The Gentlemen ransomware group already has a victim count of 27, with manufacturing and construction industries being the key targets, followed by healthcare, insurance, and others.”These sectors are…
-
Confidence in Cloud Security with Advanced NHIs
Why Advanced NHIs Enhance Confidence in Cloud Security? With the increasing digitalization across different industries, such as financial services, healthcare, and travel, cybersecurity has become a topic of paramount importance. For organizations operating on the cloud, one of the key aspects of these security mechanisms contain Non-Human Identities (NHIs), but why are advanced NHIs critical……