Cybersecurity News

Infostealing Malware Remains Top Threat to Healthcare

by

The healthcare sector continued to face a high volume of cyberattacks in the past few months as infostealing malware rose in popularity, BlackBerry stated in its latest Global Threat Intelligence...

Biden Administration Unveils National Cyber Workforce and Education Strategy

by

The Biden-Harris Administration unveiled the National Cyber Workforce and Education Strategy (NCWES), aimed at reducing cyber workforce gaps and empowering individuals to enter the cyber workforce. The...

CISA Releases Advisory On Preventing Web Application Access Control Abuse

by

Insecure direct object reference (IDOR) vulnerabilities in web applications pose a threat to organizations around the world, the Cybersecurity and Infrastructure Security Agency (CISA) warned in a...

FL Senator Urges FBI to Prioritize Tampa General Cyberattack Investigation

by

Following a cyberattack on Tampa General Hospital (TGH) that impacted 1.2 million people, Florida Senator Rick Scott (R-FL) penned a letter to FBI Director Christopher Wray asking the bureau to...

Average Cost of Healthcare Data Breach Reaches $11M

by

The average cost of a healthcare data breach rose to $11 million, signifying a $1 million increase from last year, according to IBM Security’s 2023 "Cost of a Data Breach Report." The global...

AI, Ransomware Remain Prevalent in Evolving Cybersecurity Landscape

by

Healthcare organizations face an uptick in cyber threats, as malicious actors turn to tools like ransomware, artificial intelligence (AI), and Internet of Things (IoT) attacks. These threats are...

CISA Warns Critical Infrastructure of APT Actors Targeting Outlook Online

by

The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) urged critical infrastructure entities to enhance monitoring of Microsoft Exchange Online...

How Threat Actors Leverage AI to Advance Healthcare Cyberattacks

by

The HHS Health Sector Cybersecurity Coordination Center (HC3) issued a brief regarding artificial intelligence (AI) and the threats it may pose to healthcare cybersecurity. As AI continues to advance,...

Veterans Affairs OIG Finds Cybersecurity Deficiencies at AZ Health System

by

The US Department of Veterans Affairs (VA) Office of Inspector General (OIG) inspected the information security program at the Northern Arizona VA Healthcare System and discovered significant security...

White House Issues National Cybersecurity Strategy Implementation Plan

by

The Biden-Harris Administration issued its National Cybersecurity Strategy Implementation Plan (NCSIP), which provides a detailed roadmap to achieving the National Cybersecurity Strategy. The...

MedCrypt, Kansas State University Launch Medical Device Security Research Project

by

MedCrypt, a cybersecurity solution provider for medical device manufacturers, announced a partnership with Kansas State University (KSU) to drive medical device security research. MedCrypt provided a...

Security Flaws Found in Software Development Kit Used for Telemedicine Services

by

Claroty’s Team82 and Check Point Research (CPR) discovered critical vulnerabilities in the QuickBlox software development kit (SDK) and application programming interface (API), a framework that...

KLAS: This Year’s Top Healthcare IoT Security Vendors

by

Healthcare organizations are increasingly connecting devices to their networks to enable efficiency and aid in patient care. However, increased device connectivity exposes organizations to additional...

CISA Warns of Truebot Activity Infecting US Networks

by

The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), the Multi-State Information Sharing and Analysis Center (MS-ISAC), and the Canadian Centre for...

HSCC Releases Cybersecurity Coordinated Incident Response Template

by

The Healthcare and Public Health Sector Coordinating Council (HSCC) Cybersecurity Working Group (CWG) issued a new publication, entitled “Health Industry Cybersecurity Coordinated Healthcare...

Kronos Reaches $6M Settlement Over Ransomware Attack

by

Kronos, also known as Ultimate Kronos Group (UKG), agreed to pay $6 million to resolve a class action lawsuit over a 2021 data breach. The HR management solutions provider suffered a ransomware attack...

Medtronic Discloses Cybersecurity Vulnerability in Paceart Optima System

by

Medtronic notified the Cybersecurity and Infrastructure Security Agency (CISA) of a cybersecurity vulnerability (CVE-2023-31222) found in its Paceart Optima System. If exploited, threat actors may be...

Healthcare Organizations Increase IT Budgets As Cybersecurity Concerns Rise

by

Catalyzed by ongoing technological innovation and the COVID-19 pandemic, the healthcare sector has steadily increased its digital transformation efforts in recent years. Cloud adoption, telehealth, and...

SEO Poisoning Attacks Increase Across Healthcare

by

The Health Sector Cybersecurity Coordination Center’s (HC3) latest analyst note details the threat of search engine optimization (SEO) poisoning, which is increasingly being used against the...

CA Hospital Settles Cybersecurity Case, Pledges $460K to Upgrades

by

San Jose, California-based Good Samaritan Hospital has reached an undisclosed settlement, which includes a nearly $460,000 commitment to cybersecurity upgrades, to resolve a class-action lawsuit...