January 27, 2021 Blackbaud Ransomware Attack Leads to Rady Children’s Hospital Class Action Lawsuit In May 2020, the cloud software group Blackbaud was targeted and attacked with ransomware. As is typical in human managed ransomware attacks, data was stolen ... Read more
January 25, 2021 2020 Saw 560 U.S. Healthcare Facilities Affected by Ransomware During 2020 – according to the latest State of Ransomware report from the New Zealand-based cybersecurity firm Emsisoft – healthcare, education, and government entities were ... Read more
January 21, 2021 Interpol Warns of Rise in Investment Scams Targeting Dating App Users With opportunities for meeting potential partners now limited due to the COVID-19 pandemic and many people isolated due to lockdown measures, use of dating apps ... Read more
January 21, 2021 Patients Rerouted to Other Hospitals After Cyberattack on Belgian Hospital A hospital in Belgium has suffered a cyberattack that has seen approximately between 40 and 80 of its 300 servers encrypted using Windows BitLocker. The ... Read more
January 14, 2021 Healthcare Sector Cyberattacks Have Increased by 45% in the Past 2 Months A recent joint CISA, FBI, and HHS cybersecurity alert warned that the healthcare sector was being targeted by threat actors who were deploying ransomware. Attacks ... Read more
January 13, 2021 Ransomware Attack Impacts Lake Region Healthcare On December 22, 2020, Minnesota-based Lake Region Healthcare discovered ransomware had been deployed on its network and the attackers gained access to its databases. The ... Read more
January 6, 2021 Ransomware Attacks on Healthcare Organizations Continue to Rise with Ryuk the Biggest Threat Cyberattacks on healthcare organizations have continued to increase over the past two months, according to research conducted by cybersecurity firm Check Point, and ransomware is ... Read more
January 4, 2021 Hidden Backdoor Identified in Zyxel Firewalls and AP Controllers A security researcher has identified a hidden backdoor in Zyxel firewalls and AP controllers, caused by the use of hardcoded administrative credentials for an account ... Read more
January 2, 2021 Wilmington Surgical Associates Ransomware Attack Impacts Over 14,000 Patients The NetWalker ransomware group has claimed it is behind a ransomware attack that took place on the North Carolina-based surgical center, Wilmington Surgical Associates in ... Read more
December 19, 2020 Three Vulnerabilities Identified in Medtronic MyCareLink Smart Patient Readers Three critical vulnerabilities have been found in Medtronic MyCareLink (MCL) Smart Patient Readers, which could be exploited by threat actors to gain access to protected ... Read more
December 3, 2020 Foreign APT Groups Targeting Think Tanks, Warns CISA/FBI The Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) have issued a warning about ongoing cyberattacks on think tanks by ... Read more
November 24, 2020 Warning Issued After Discovery of Scores of Spoofed FBI Websites Scores of domains have been identified which spoof official Federal Bureau of Investigation (FBI) websites, prompting the FBI’s Internet Crime Complaint Center to issue a ... Read more
November 22, 2020 University of Cincinnati Medical Center HIPAA Right of Access Failure Results in $65,000 Fine The 18th HIPAA financial penalty of 2020, the 12th fine under its HIPAA Right of Access enforcement initiative, has been revealed by HHS’ Office for ... Read more
November 17, 2020 U.S. Data Breach Impacts 829,454 Luxottica Patients The largest eyewear firm globally, Luxottica, has had a number of its web portals targeted in a cyberattack that has resulted in a breach of ... Read more
November 16, 2020 Time to Switch from SMS and Phone-Based MFA to More Secure Authentication Methods Multi-factor authentication is an important security measure to prevent compromised credentials from being used to gain access to accounts and sensitive data, but not all ... Read more
November 10, 2020 Microsoft Fixes 112 Vulnerabilities Including 17 Critical Flaws November 2020 Patch Tuesday has seen Microsoft correct 112 vulnerabilities across its range of products, including 17 critical flaws. 93 of the vulnerabilities are rated ... Read more
November 10, 2020 Saint Francis Healthcare Data Breach Lawsuit Settled for $350,000 In relation to September 2019 ransomware attack on Ferguson Medical Group (FMG), a $350,000 settlement has been reached between Saint Francis Healthcare System and patients ... Read more
November 8, 2020 10th HIPAA Fine Under Right of Access Initiative Revealed by Office for Civil Rights The 10th financial penalty under its HIPAA Right of Access enforcement initiative has been revealed by the U.S. Department of Health and Human Services’ Office ... Read more
November 4, 2020 Adobe Update Corrects 14 Vulnerabilities in Acrobat and Reader Including 4 Critical Flaws Adobe has released an out-of-band update to correct several vulnerabilities in Adobe Acrobat and Adobe Reader, just a week before November Patch Tuesday when updates ... Read more
November 3, 2020 City of New Haven Fined €202,000 for Failure to Terminate Former Employee’s Access Rights In Connecticut the City of New Haven has committed to paying a $203,400 financial penalty to the Department of Health and Human Services’ office for ... Read more
November 2, 2020 WordPress 5.5.2 Released: 10 Vulnerabilities Corrected Including 1 High-Severity Flaw Version 5.5.2 of the WordPress content management platform has been released. The latest WordPress version fixes 10 security vulnerabilities, including one high-severity flaw that could ... Read more
October 30, 2020 Ryuk Ransomware Gang Steps Up Attacks on U.S. Hospitals The U.S Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Health and Human ... Read more
October 28, 2020 78% of Microsoft 365 Administrators Have Not Enabled Multi-Factor Authentication Despite the risk of phishing attacks and email account compromises, 78% of Microsoft 365 admins have not enabled multi-factor authentication and 97% of all Microsoft ... Read more
October 19, 2020 Microsoft Issues Out-of-Band Updates to Correct Two RCE Flaws On Friday, Microsoft issued out-of-band patches to correct two flaws which could potentially lead to remote code execution. The flaws have been rated ‘important’ by ... Read more
October 16, 2020 Multi-State Breach Investigation Settled with Community Health Systems Paying $5 Million Penalty Tennessee-based Community Health Systems and subsidiary CHSPCS LLC have settled a multiple-state action with 28 state attorneys general for $5 million. A joint investigation was ... Read more
October 13, 2020 Microsoft Patches 11 Critical and 75 Important Flaws on October 2020 Patch Tuesday October 2020 Patch Tuesday has seen Microsoft issue patches to correct 87 flaws across its product range, including 11 Critical flaws and 75 Important vulnerabilities. ... Read more
October 13, 2020 What is the Legal Recommended Email Archiving Retention Period? Legal recommended email archiving retention periods differ considerably depending on the nature of a business’s operations and the regulations it is required to comply with. ... Read more
October 2, 2020 Emotet Campaign Impersonates Democratic National Convention An Emotet malware campaign is underway which has already targeted hundreds of organizations in the United States. The emails spoof the Democratic National Convention with ... Read more
September 29, 2020 Universal Health Services Ransomware Attack Cripples Hospitals Across the United States Universal Health Services (UHS) has suffered a ransomware attack that has taken IT systems out of action across its nationwide network of hospitals. UHS is ... Read more
September 21, 2020 7,777 Patients Impacted by Starling Physicians Email Breach Starling Physicians has begun contacting 7,777 patients to make them aware that a portion of their protected health information may have been accessed by an ... Read more