Cyber Hygiene

What the 23andMe Data Breach Reveals About Credential Stuffing

December 7, 2023 - Genetic testing company 23andMe notified 6.9 million individuals that their personal information was compromised in October 2023. However, 23andMe had no evidence that there was a data security incident within its systems. Instead, threat actors leveraged credential stuffing, a tactic in which hackers use stolen login information from one account to gain access to other accounts with...

Read More


More Articles

CISA Reveals Enhanced Zero Trust Maturity Model

by Sarai Rodriguez

The Cybersecurity and Infrastructure Security Agency (CISA) unveiled the upgraded Zero Trust Maturity Model Version 2 in line with President Biden's National Cybersecurity Strategy. The new model...

CISA, FBI Alert Healthcare Sector of Cuba Ransomware Tactics

by Sarai Rodriguez

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) released a joint cybersecurity advisory to warn critical infrastructure organizations of...

Weak Connected Medical Device Security Increases Cyberattack Threats

by Sarai Rodriguez

Medical device security continues to be an issue for healthcare organizations, especially as the threat of cyberattacks increases in the industry. The medical internet of things (IoT) has...

White House Highlights Cybersecurity Awareness Month

by Jill McKeon

President Biden designated October as Cybersecurity Awareness Month and encouraged the public and private sectors to take immediate action to protect against cyber threats in a White House press...

Proprietary Info, Source Code Stolen in LastPass Data Breach

by Jill McKeon

LastPass, a password manager with 25 million users around the world, disclosed a data breach to its customers. After detecting unusual activity in early August, LastPass discovered that an unauthorized...

Common Types of Social Engineering, Phishing Attacks in Healthcare

by Jill McKeon

Social engineering attacks remain some of the most efficient and effective ways for threat actors to exploit victims and gain network access, and the healthcare sector is no exception. Baiting, tailgating, and pretexting are all popular...

Shadow Code, Third-Party Scripts Pose Healthcare Cybersecurity Risks

by Jill McKeon

Third-party scripts can facilitate digital transformation by allowing development teams to introduce enhanced functionality to web applications without having to create or maintain them. But these...

Experts Testify on Healthcare Cybersecurity Issues at Senate Hearing

by Jill McKeon

The US Senate Committee on Health, Education, Labor, and Pensions (HELP) held a full committee hearing on May 18 to discuss the need for an increased focus on education and healthcare...

Healthcare Security Culture Trending in the Right Direction, But Needs Improvement

by Jill McKeon

The healthcare sector received a score of 74 out of 100 in terms of maintaining a robust security culture, KnowBe4 Research revealed. Researchers surveyed more than 2,900 organizations across 18...

Cybersecurity Authorities Issue Advisory on Common Initial Access Tactics

by Jill McKeon

Cybersecurity authorities from the US, the UK, Canada, the Netherlands, and New Zealand issued an advisory detailing initial access tactics that threat actors frequently use to infiltrate victim...

Best Practices For Password Security, Cyber Hygiene

by Jill McKeon

The first Thursday of every May is known as World Password Day, a day in which organizations and individuals are encouraged to brush up on their cyber hygiene and password security measures. Weak...

HSCC Creates Operational Continuity Checklist For Navigating Cyberattacks

by Jill McKeon

The Healthcare and Public Health Sector Coordinating Council (HSCC) Cybersecurity Working Group (CWG) released a checklist to help healthcare staff and executives preserve operational continuity while...

HC3, H-ISAC Urge Healthcare Sector to Prepare for Russian Cyberattacks

by Jill McKeon

The Biden-Harris Administration recently called on all private sector organizations to immediately harden their cyber defenses in preparation for potential Russian cyberattacks.   “My...

CISA, FBI Warn Critical Infrastructure of SATCOM Cyber Threats

by Jill McKeon

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) released a joint advisory to warn critical infrastructure organizations of cyber risks...

Biden Urges Orgs to Harden Cyber Defenses, Prepare For Russian Cyberattacks

by Jill McKeon

President Biden called on private sector organizations to immediately harden their cyber defenses and prepare for potential Russian cyberattacks in a recent statement. The American Hospital Association...

DOJ Settles First Case Under Civil Cyber-Fraud Initiative

by Jill McKeon

Comprehensive Health Services (CHS) agreed to a $930,000 settlement to resolve False Claims Act allegations, signifying the Department of Justice’s (DOJ) first False Claims Act settlement since...

Healthcare Practices Cyber Incident Response Less Than Most Sectors

by Jill McKeon

Although cyberattacks and data breaches have bombarded the healthcare sector in recent years, recent research from Immersive Labs found that healthcare conducts cyber incident response exercises far...

Employee Cyber Hygiene Is Critical to Healthcare Cybersecurity

by Jill McKeon

Proper employee cyber hygiene is crucial to maintaining healthcare cybersecurity, a new report conducted by the Center for Generational Kinetics (CGK) and commissioned by Mobile Mentor suggested. A...

Recent Articles