This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2025-05-10T12:44:24+00:00 www.secnews.physaphae.fr Checkpoint - Fabricant Materiel Securite A Quiet Breach in the Heart of Our Homes Privacy is generally held as a fundamental right, with citizens often having high expectations regarding the protection of their personal information. Citizens protest when they fear that governments are increasing their involvement in the citizens\' personal life. However, they don\'t consider how much personal and sensitive data they share with any application that they install on their smartphone, or with smart devices in their homes. Big tech companies and vendors of personal devices such as wearables, smartphones, and voice assistants collect intimate details about their users-often far more than any healthcare […]

---

>A Quiet Breach in the Heart of Our Homes Privacy is generally held as a fundamental right, with citizens often having high expectations regarding the protection of their personal information. Citizens protest when they fear that governments are increasing their involvement in the citizens\' personal life. However, they don\'t consider how much personal and sensitive data they share with any application that they install on their smartphone, or with smart devices in their homes. Big tech companies and vendors of personal devices such as wearables, smartphones, and voice assistants collect intimate details about their users-often far more than any healthcare […] ]]> 2024-12-09T13:00:57+00:00 https://blog.checkpoint.com/security/the-invisible-eyes-and-ears-in-our-homes-how-smart-devices-are-eroding-privacy-and-security/ www.secnews.physaphae.fr/article.php?IdArticle=8622236 False Medical None 3.0000000000000000 ZoneAlarm - Security Firm Blog Ransomware attacks continue to disrupt industries worldwide, with healthcare remaining a high-profile target due to the sensitivity and critical nature of its data. Anna Jaques Hospital experienced a ransomware attack in late 2023, exposing confidential information of over 310,000 patients. Recently, the incident returned to the spotlight due to new updates on the breach\'s scope …

---

>Ransomware attacks continue to disrupt industries worldwide, with healthcare remaining a high-profile target due to the sensitivity and critical nature of its data. Anna Jaques Hospital experienced a ransomware attack in late 2023, exposing confidential information of over 310,000 patients. Recently, the incident returned to the spotlight due to new updates on the breach\'s scope … ]]> 2024-12-09T12:41:30+00:00 https://blog.zonealarm.com/2024/12/anna-jaques-hospital-ransomware-breach-exposes-patient-data/ www.secnews.physaphae.fr/article.php?IdArticle=8622258 False Ransomware,Medical None 2.0000000000000000 ProofPoint - Cyber Firms 2024-12-05T12:49:54+00:00 https://www.proofpoint.com/us/blog/email-and-cloud-threats/identify-prevent-dropbox-phishing-scams www.secnews.physaphae.fr/article.php?IdArticle=8620125 False Ransomware,Data Breach,Malware,Tool,Threat,Medical,Cloud None 2.0000000000000000 Dark Reading - Informationweek Branch Until C-level executives fully understand potential threats and implement effective mitigation strategies, healthcare organizations will remain vulnerable and at risk of disruption.]]> 2024-12-03T15:00:00+00:00 https://www.darkreading.com/cyberattacks-data-breaches/ransomware-grip-healthcare www.secnews.physaphae.fr/article.php?IdArticle=8618990 False Ransomware,Medical None 2.0000000000000000 AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC According to a study, seven out of ten employers run an employee background check on social media platforms and have rejected 57% of people]]> 2024-12-03T07:00:00+00:00 https://levelblue.com/blogs/security-essentials/best-ways-to-reduce-your-digital-footprint-now www.secnews.physaphae.fr/article.php?IdArticle=8618898 False Spam,Tool,Threat,Studies,Medical Yahoo 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Taiwanese entities in manufacturing, healthcare, and information technology sectors have become the target of a new campaign distributing the SmokeLoader malware. "SmokeLoader is well-known for its versatility and advanced evasion techniques, and its modular design allows it to perform a wide range of attacks," Fortinet FortiGuard Labs said in a report shared with The Hacker News. "While]]> 2024-12-02T19:31:00+00:00 https://thehackernews.com/2024/12/smokeloader-malware-resurfaces.html www.secnews.physaphae.fr/article.php?IdArticle=8618697 False Malware,Medical None 1.00000000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-12-02T12:13:17+00:00 https://community.riskiq.com/article/3c8b5d6b www.secnews.physaphae.fr/article.php?IdArticle=8618668 False Ransomware,Malware,Tool,Vulnerability,Threat,Mobile,Medical None 2.0000000000000000 Recorded Future - FLux Recorded Future Bologna FC\'s confirmation comes days after the RansomHub ransomware gang claimed to have attacked the club and stolen financial and medical documents.]]> 2024-11-29T19:29:24+00:00 https://therecord.media/italian-football-club-blogna-fc-ransomware www.secnews.physaphae.fr/article.php?IdArticle=8618286 False Ransomware,Medical None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine One of the priorities of the newly-approved Von der Leyen Commission II will be to strengthen the healthcare sector\'s cyber resilience]]> 2024-11-27T16:10:00+00:00 https://www.infosecurity-magazine.com/news/eu-commission-healthcare-cyber-plan/ www.secnews.physaphae.fr/article.php?IdArticle=8618059 False Medical None 2.0000000000000000 Recorded Future - FLux Recorded Future A 2020 report detailing the hack of a Canadian medical testing company was released Monday after a court ruled it could be made public, ending a four-year battle during which the company sought to keep the details of the investigation secret.]]> 2024-11-26T18:02:16+00:00 https://therecord.media/canadian-privacy-regulators-publish-life-labs-investigation www.secnews.physaphae.fr/article.php?IdArticle=8617917 False Data Breach,Hack,Medical None 2.0000000000000000 AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC 2024-11-26T14:37:00+00:00 https://levelblue.com/blogs/security-essentials/what-are-computer-worms www.secnews.physaphae.fr/article.php?IdArticle=8618712 False Ransomware,Data Breach,Spam,Malware,Tool,Vulnerability,Threat,Patching,Mobile,Industrial,Medical,Technical Wannacry 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial After establishing their healthcare working group last year, U.S. Senators Bill Cassidy, a Louisiana Republican and the ranking... ]]> 2024-11-26T10:10:34+00:00 https://industrialcyber.co/regulation-standards-and-compliance/us-senators-debut-bipartisan-legislation-to-fortify-cybersecurity-protect-data-across-healthcare-sector/ www.secnews.physaphae.fr/article.php?IdArticle=8617858 False Legislation,Medical None 3.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-11-25T22:13:05+00:00 https://community.riskiq.com/article/2758cf39 www.secnews.physaphae.fr/article.php?IdArticle=8617800 False Ransomware,Malware,Tool,Threat,Medical None 3.0000000000000000 AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC DPSM) and cloud security posture management (CPSM) come in. Both technologies play critical roles in cloud data security and can be easily confused at first glance. So, let’s explore their key differences and their role in data protection. Understanding DPSM As the name suggests, DPSM is a data security tool. It is based on the idea that securing an organization’s sensitive information requires a deep understanding of the data itself. As such, DPSM solutions discover and classify sensitive data in cloud repositories, identifying vulnerabilities and potential risks associated with that data. DPSM tools work in four phases. First, they discover an organization’s data across all its off-premises (cloud) platforms and classify it by its sensitivity to provide a comprehensive, contextualized data inventory. They then monitor cloud environments in real-time to identify any vulnerabilities or misconfigurations that could present a risk to data—the more sensitive the information, the higher the priority for remediation. By protecting data in this way, DPSM helps organizations maintain compliance with relevant regulations such as GDPR, HIPAA, and PCI DSS. Understanding CPSM Again, as the name suggests, CPSM is a cloud security tool. Rather than focusing on the data stored in cloud environments – as DPSM does – it focuses on securing the cloud infrastructure itself, continuously monitoring for misconfigurations, compliance issues, and security threats to help entities manage data access and data risk. These solutions scan for misconfigurations – including vulnerabilities in cloud settings, permissions, and access controls – monitor for compliance with regulatory requirements and industry standards like CIS, NIST, CCPA, and GDPR, and ultimately help organizations remediate any issues before they turn into genuine security incidents. Key Differences Between DPSM and CPSM Although both DSPM and CSPM play vital roles in cloud security, their focus areas, tools and techniques, and use cases differ as follows: Focus Area: DSPM is primarily data-centric, concentrating on protecting sensitive information stored in the cloud. In contrast, CSPM focuses on the broader infrastructure, ensuring the cloud environment is secure. Tools and Techniques: DSPM uses data classification and encryption techniques, while CSPM employs tools for monitoring, detecting misconfigurations, and managing security policies. Use Cases: DSPM is ideal for protecting data assets and ensuring compliance, especially in heavily regulated industries. CSPM is more suitable for preventing infrastructure-based vulnerabilities and maintaining cloud security hygiene. These differences highlight that while DSPM ensures that data is properly secured and compliant, CSPM works to keep the underlying cloud infrastructure safe from threats and vulnerabilities. Real-World Use Cases To put al]]> 2024-11-22T07:00:00+00:00 https://levelblue.com/blogs/security-essentials/dspm-vs-cspm-key-differences-and-their-roles-in-data-protection www.secnews.physaphae.fr/article.php?IdArticle=8615860 False Tool,Vulnerability,Threat,Medical,Cloud None 3.0000000000000000 The State of Security - Magazine Américain When we think about our data being leaked onto the internet, we often picture it as our financial records, our passwords, our names and addresses... what is less often considered is the exposure of our private medical information. A French hospital has found itself in the unenviable position of learning that hackers have gained access to the medical records of over 750,000 patients following a cyber attack. A hacker calling themselves "nears" claims to have compromised the systems of multiple healthcare facilities across the country, claiming to have gained access to the records of over 1.5...]]> 2024-11-21T10:05:26+00:00 https://www.tripwire.com/state-of-security/750000-patients-medical-records-exposed-after-data-breach-french-hospital www.secnews.physaphae.fr/article.php?IdArticle=8615491 False Data Breach,Medical None 3.0000000000000000 Recorded Future - FLux Recorded Future The ransomware group has drawn scrutiny for attacks on charities like Save The Children as well as healthcare firms like Boston Children\'s Health Physicians. On Tuesday, it took credit for an attack on a Canadian healthcare company.]]> 2024-11-21T01:08:59+00:00 https://therecord.media/fbi-says-bianlian-based-in-russia-switching-tactics www.secnews.physaphae.fr/article.php?IdArticle=8615096 False Ransomware,Medical None 2.0000000000000000 RiskIQ - cyber risk firms (now microsoft) #### Targeted Geolocations - Ukraine ## Snapshot Unit 42 researchers at Palo Alto Networks, have identified the OT-centric malware FrostyGoop, also known as BUSTLEBERM, which targets Operational Technology (OT) systems. First observed in a [January 2024 attack](https://sip.security.microsoft.com/intel-explorer/articles/cf8f]]> 2024-11-21T00:18:57+00:00 https://community.riskiq.com/article/993b88fe www.secnews.physaphae.fr/article.php?IdArticle=8615094 False Ransomware,Malware,Vulnerability,Threat,Industrial,Medical None 2.0000000000000000 Bleeping Computer - Magazine Américain A data breach at an unnamed French hospital exposed the medical records of 750,000 patients after a threat actor gained access to its electronic patient record system. [...]]]> 2024-11-20T21:20:19+00:00 https://www.bleepingcomputer.com/news/security/cyberattack-at-french-hospital-exposes-health-data-of-750-000-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8615120 False Data Breach,Threat,Medical None 2.0000000000000000 The Register - Site journalistique Anglais Change Healthcare\'s $2 billion recovery is still a work in progress Still reeling from its February ransomware attack, Change Healthcare confirms its clearinghouse services are back up and running, almost exactly nine months since the digital disruption began.…]]> 2024-11-20T18:01:08+00:00 https://go.theregister.com/feed/www.theregister.com/2024/11/20/change_healthcares_clearinghouse_services/ www.secnews.physaphae.fr/article.php?IdArticle=8614874 False Ransomware,Medical None 3.0000000000000000 Global Security Mag - Site de news francais Special Reports

---

Healthcare organisations see employees as weak link in cyber defences; workers admit they are disengaged in training - Special Reports]]> 2024-11-20T11:12:50+00:00 https://www.globalsecuritymag.fr/healthcare-organisations-see-employees-as-weak-link-in-cyber-defences-workers.html www.secnews.physaphae.fr/article.php?IdArticle=8614690 False Medical None 2.0000000000000000 The Register - Site journalistique Anglais Ransomware scum LockBit claims it did the dirty deed Equinox, a New York State health and human services organization, has begun notifying over 21 thousand clients and staff that cyber criminals stole their health, financial, and personal information in a "data security incident" nearly seven months ago.…]]> 2024-11-20T00:30:07+00:00 https://go.theregister.com/feed/www.theregister.com/2024/11/20/equinox_patients_employees_data/ www.secnews.physaphae.fr/article.php?IdArticle=8614386 False Medical None 3.0000000000000000 IndustrialCyber - cyber risk firms for industrial The U.S. Healthcare and Public Health Sector Coordinating Council (HSCC) released the Medical Product Manufacturer Cyber Incident Response...

---

>The U.S. Healthcare and Public Health Sector Coordinating Council (HSCC) released the Medical Product Manufacturer Cyber Incident Response... ]]> 2024-11-19T10:25:48+00:00 https://industrialcyber.co/medical/new-hscc-playbook-empowers-medical-product-manufacturers-to-tackle-cyber-incidents-effectively/ www.secnews.physaphae.fr/article.php?IdArticle=8614017 False Medical None 2.0000000000000000 Dark Reading - Informationweek Branch The voluntary recommendations from the Department of Homeland Security cover how artificial intelligence should be used in the power grid, water system, air travel network, healthcare, and other pieces of critical infrastructure.]]> 2024-11-18T13:38:03+00:00 https://www.darkreading.com/cloud-security/dhs-releases-secure-ai-framework-critical-infrastructure www.secnews.physaphae.fr/article.php?IdArticle=8613485 False Medical None 2.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-11-18T12:22:31+00:00 https://community.riskiq.com/article/2560112c www.secnews.physaphae.fr/article.php?IdArticle=8613484 False Ransomware,Malware,Tool,Vulnerability,Threat,Prediction,Medical,Cloud,Technical APT 41,APT 38 3.0000000000000000 InformationSecurityBuzzNews - Site de News Securite Ransomware attacks on the healthcare sector surged in 2024, analysis from SafetyDetectives reveals. The year has already seen 264 attacks on healthcare providers by September, nearly surpassing the 268 attacks recorded for all of 2023. Escalating Cyber Threats SafetyDetectives argues that the growing number of ransomware groups and variants in 2024 contributed to the increasing [...]]]> 2024-11-15T11:52:24+00:00 https://informationsecuritybuzz.com/ransomware-attacks-on-healthcare-secto/ www.secnews.physaphae.fr/article.php?IdArticle=8611670 False Ransomware,Medical None 3.0000000000000000 AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC reach $332.67 billion by 2027. The acceleration in IoMT adoption shows that the healthcare industry found this technology useful. However, this innovation also carries possible threats and challenges. Below is an insight into the key security challenges that these IoT devices come with: Ransomware Attacks Cybercriminals often target medical devices and networks to access sensitive information like protected health information (PHI) and electronic health records (EHR). They even steal this information to put it up for sale on the dark web and, in return, demand hefty ransom. For instance, in the crippling ransomware attack against Change Healthcare, the criminal gang ALPHV/Blackcat stole 4TB of patients\' records and affected one-third of people living in the USA. The stolen data was up for sale on the black market until hackers received $22 million as a ransom payment. Such incidents erode patients\' trust and cause healthcare organizations to face HIPAA violations ranging from $100 to $50,000 per violation. Vulnerabilities Exploitation Medical devices such as infusion pumps or pacemakers are not designed with security in mind. As a result, they may come with security vulnerabilities that hackers can exploit to get unauthorized access to medical data. For example, the Nozomi Network Lab found several security flaws within the GE Healthcare Vivid Ultrasound family that hackers can exploit to launch ransomware attacks and manipulate patients\' data. Previously, the Palo Alto Network discovered 40 vulnerabilities and more than 70 security alerts in infusion pumps, putting them at risk of leaking sensitive information. Similarly, McAfee researchers identified significant vulnerabilities in two types of B.Braun infusion pumps that could enable hackers to deliver a lethal dosage of medications to suspected patients. Although no affected case was reported, this event highlighted the gaps in medical device security and the need for improvement. Outdated and Unpatched Medical Devices Outdated systems remain a top challenge for medical IoT as healthcare organizations continue to rely on legacy systems. Many of these devices aren\'t designed with security in mind and stay in use for years and even decades. The device manufacturers are reluctant to upgrade the system software because it]]> 2024-11-15T07:00:00+00:00 https://levelblue.com/blogs/security-essentials/safeguarding-healthcare-organizations-from-iomt-risks www.secnews.physaphae.fr/article.php?IdArticle=8611533 False Ransomware,Malware,Vulnerability,Threat,Patching,Medical,Technical None 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial The U.S. Government Accountability Office (GAO) has identified challenges faced by the Department of Health and Human Services...

---

>The U.S. Government Accountability Office (GAO) has identified challenges faced by the Department of Health and Human Services... ]]> 2024-11-14T09:48:00+00:00 https://industrialcyber.co/threats-attacks/gao-highlights-hhs-struggles-with-cybersecurity-as-healthcare-sector-faces-increased-attacks/ www.secnews.physaphae.fr/article.php?IdArticle=8611584 False Medical None 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial Medcrypt, a vendor of proactive security solutions for medical devices, announced an expansion of its strategic partnerships with...

---

>Medcrypt, a vendor of proactive security solutions for medical devices, announced an expansion of its strategic partnerships with... ]]> 2024-11-14T08:31:56+00:00 https://industrialcyber.co/news/medcrypt-expands-strategic-partnerships-to-boost-cybersecurity-for-medical-devices/ www.secnews.physaphae.fr/article.php?IdArticle=8610926 False Medical None 2.0000000000000000 NIST Security - NIST cybersecurity insights If you are interested in the world of digital identities, you have probably heard some of the buzzwords that have been floating around for a few years now… “verifiable credential,” “digital wallet,” “mobile driver\'s license” or “mDL.” These terms, among others, all reference a growing ecosystem around what we are calling “verifiable digital credentials.” But what exactly is a verifiable digital credential? Take any physical credential you use in everyday life – your driver\'s license, your medical insurance card, a certification or diploma – and turn it into a digital format stored on your]]> 2024-11-13T12:00:00+00:00 https://www.nist.gov/blogs/cybersecurity-insights/digital-identities-getting-know-verifiable-digital-credential-ecosystem www.secnews.physaphae.fr/article.php?IdArticle=8610459 False Medical None 3.0000000000000000 IndustrialCyber - cyber risk firms for industrial Barts Health NHS Trust has chosen Cynerio\'s healthcare-focused platform for deployment across all sites. After a thorough evaluation,...

---

>Barts Health NHS Trust has chosen Cynerio\'s healthcare-focused platform for deployment across all sites. After a thorough evaluation,... ]]> 2024-11-13T08:02:48+00:00 https://industrialcyber.co/news/barts-health-nhs-trust-selects-cynerio-to-boost-cybersecurity-across-healthcare-sites/ www.secnews.physaphae.fr/article.php?IdArticle=8610254 False Medical None 3.0000000000000000 AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC As organizations continue to align their operational strategies with evolving digital ecosystems and technologies, the concept of network resilience has become a priority. A major mindset shift is that modern networks must be designed not just for speed and efficiency but also for flexibility, security, and the ability to hold out against disruptions. Whether due to an influx of remote workers, the adoption of hybrid cloud environments, or emerging cyber threats, a resilient network architecture is a necessity. Let’s focus on the trends that steer businesses towards building and maintaining robust networks in the upcoming 2025. The Cloud-Native Shift Traditional, hardware-centric networks are noticeably giving way to cloud-native architectures, and for good reason. The latter are designed from the ground up to function in cloud environments and exhibit greater flexibility, scalability, as well as adaptability. This transition stems from the need to scale operations quickly and efficiently while sticking to common security protocols. One major thing that makes cloud-native networks stand out is the ability to manage traffic dynamically through software-defined solutions such as SD-WAN (Software-Defined Wide Area Network). In contrast to physical routers and switches that form the foundation for classic networks, SD-WAN can prioritize and route traffic based on real-time network conditions. This level of flexibility is an important prerequisite for supporting distributed workforces and ensuring reliable connections across multiple locations, whether in physical offices, remote locations, or the cloud. This type of architecture is also about agility in adapting to changes. If a new branch office needs to be set up, cloud-based solutions can scale the network infrastructure on-demand without extensive hardware deployment, which reduces costs and implementation times. Tighter Interplay of Networking and Security The convergence of security and networking into unified frameworks is another significant trend. SASE (Secure Access Service Edge) represents a paradigm shift in how organizations approach network security, combining wide area networking (WAN) capabilities with security functions delivered from the cloud. This technology addresses several pain points that conventional network security designs face. Retrospectively, defensive tools such as firewalls, VPNs, and intrusion prevention systems would be scattered across different parts of the network, often leading to inefficiencies, performance bottlenecks, and gaps in security coverage. SASE integrates these functions into a single, cloud-delivered service that facilitates management and enhances network visibility. The Growing Role of AI and ML Artificial intelligence is a boon for network management because it automates routine tasks, predicts potential failures, and optimizes performance. Traditional approaches often rely on manual configurations and monitoring, which tends to be time-consuming and prone to errors. By automating these workflows, AI-driven tools reduce the odds of human mistakes and enable faster response to breaches. The tech can also do the heavy lifting in terms of predictive analytics. Machine learning algorithms easily identify patterns that indicate potential problems such as imminent equipment malfunctions, bandwidth congestion, or unusual traffic patterns that might signal a security breach. AI also enables dynamic network optimization. For instance, its algorithms can automatically adjust bandwidth allocation based on real-time demand to ensure that critical applications get the necessary resources without manual intervention. This adaptability is particularl]]> 2024-11-12T07:00:00+00:00 https://levelblue.com/blogs/security-essentials/building-a-resilient-network-architecture-key-trends-for-2025 www.secnews.physaphae.fr/article.php?IdArticle=8609670 False Malware,Tool,Prediction,Medical,Cloud None 3.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-11-11T18:57:29+00:00 https://community.riskiq.com/article/048b77c8 www.secnews.physaphae.fr/article.php?IdArticle=8609479 False Ransomware,Malware,Tool,Threat,Prediction,Medical,Cloud APT 45 3.0000000000000000 IndustrialCyber - cyber risk firms for industrial The co-chairs of the Joint Public Health Cybersecurity Task Group of the Healthcare and Public Health Sector Coordinating... ]]> 2024-11-11T17:03:05+00:00 https://industrialcyber.co/medical/new-public-health-cybersecurity-readiness-survey-set-to-boost-preparedness-against-cyber-threats/ www.secnews.physaphae.fr/article.php?IdArticle=8609425 False Medical None 2.0000000000000000 Checkpoint Research - Fabricant Materiel Securite Pour les dernières découvertes en cyber Les meilleurs attaques et violations Memorial Hospital and Manor à Bainbridge, en Géorgie, ont été victimes d'une attaque de ransomware qui a entraîné la perte d'accès à son système de dossier de santé électronique. The Embargo Ransomware Gang […]

---

>For the latest discoveries in cyber research for the week of 11th November, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Memorial Hospital and Manor in Bainbridge, Georgia, has been a victim of a ransomware attack that resulted in the loss of access to its electronic health record system. The Embargo ransomware gang […] ]]> 2024-11-11T13:01:32+00:00 https://research.checkpoint.com/2024/11th-november-threat-intelligence-report/ www.secnews.physaphae.fr/article.php?IdArticle=8609320 False Ransomware,Threat,Medical None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Interlock employs both “big-game hunting” and double extortion tactics against its victims]]> 2024-11-07T16:30:00+00:00 https://www.infosecurity-magazine.com/news/interlock-ransomware-us-healthcare/ www.secnews.physaphae.fr/article.php?IdArticle=8607633 False Ransomware,Medical None 2.0000000000000000 Security Intelligence - Site de news Américain Alors que les violations de la cybersécurité continuent d'augmenter à l'échelle mondiale, les institutions gantant les informations sensibles sont particulièrement vulnérables.En 2024, le coût moyen d'une violation de données dans le secteur financier a atteint 6,08 millions de dollars, ce qui en fait le deuxième coup le plus difficile après les soins de santé, selon le coût en 2024 de l'IBM en 2024 d'un rapport de violation de données.Cela souligne la nécessité de la robuste [& # 8230;]

---

>As cybersecurity breaches continue to rise globally, institutions handling sensitive information are particularly vulnerable. In 2024, the average cost of a data breach in the financial sector reached $6.08 million, making it the second hardest hit after healthcare, according to IBM’s 2024 Cost of a Data Breach report. This underscores the need for robust IT […] ]]> 2024-11-07T14:00:00+00:00 https://securityintelligence.com/posts/exploring-dora-how-to-manage-ict-incidents/ www.secnews.physaphae.fr/article.php?IdArticle=8607584 False Data Breach,Threat,Medical None 3.0000000000000000 IndustrialCyber - cyber risk firms for industrial L'Agence de l'Union européenne pour la cybersécurité (EISA) organise la 9e conférence de sécurité de la santé en partenariat avec la Hongrie & # 8217; s ...

---

>The European Union Agency for Cybersecurity (ENISA) is hosting the 9th eHealth Security Conference in partnership with Hungary’s... ]]> 2024-11-07T09:47:03+00:00 https://industrialcyber.co/events/enisa-hosts-9th-ehealth-security-conference-to-tackle-cybersecurity-challenges-in-healthcare/ www.secnews.physaphae.fr/article.php?IdArticle=8607455 False Medical,Conference None 3.0000000000000000 ProofPoint - Cyber Firms 2024-11-07T07:18:44+00:00 https://www.proofpoint.com/us/blog/email-and-cloud-threats/preventing-vendor-email-compromise-advanced-phishing www.secnews.physaphae.fr/article.php?IdArticle=8607558 False Data Breach,Malware,Tool,Threat,Medical,Cloud None 2.0000000000000000 Global Security Mag - Site de news francais Opinion

---

Healthcare; Overcome your legacy systems challenges to enhance cybersecurity, says Espria Healthcare organisations must adopt a proactive approach by leveraging advanced technologies. - Opinion]]> 2024-11-05T08:54:11+00:00 https://www.globalsecuritymag.fr/healthcare-overcome-your-legacy-systems-challenges-to-enhance-cybersecurity.html www.secnews.physaphae.fr/article.php?IdArticle=8606322 False Medical None 3.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-11-04T12:25:16+00:00 https://community.riskiq.com/article/d6da7f0d www.secnews.physaphae.fr/article.php?IdArticle=8605948 False Ransomware,Malware,Tool,Vulnerability,Threat,Mobile,Prediction,Medical,Cloud,Technical APT 41,APT 28,APT 31,Guam 3.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-11-01T19:56:31+00:00 https://community.riskiq.com/article/bde746e5 www.secnews.physaphae.fr/article.php?IdArticle=8604791 False Ransomware,Vulnerability,Threat,Industrial,Medical None 2.0000000000000000 Checkpoint - Fabricant Materiel Securite 2024-11-01T13:00:39+00:00 https://blog.checkpoint.com/research/ransomwares-evolving-threat-the-rise-of-ransomhub-decline-of-lockbit-and-the-new-era-of-data-extortion/ www.secnews.physaphae.fr/article.php?IdArticle=8604651 False Ransomware,Threat,Industrial,Medical None 3.0000000000000000 Dark Reading - Informationweek Branch "See one, teach one, do one" takes a page out of the healthcare playbook to reduce human vulnerabilities where they matter most in cybersecurity.]]> 2024-11-01T01:53:28+00:00 https://www.darkreading.com/threat-intelligence/the-overlooked-importance-of-identifying-riskiest-users www.secnews.physaphae.fr/article.php?IdArticle=8604604 False Vulnerability,Medical None 2.0000000000000000 SecureMac - Security focused on MAC Changer Healthcare \'s Breach invite les appels de gel de crédit et offre 2 ans de surveillance gratuite, car les experts exhortent des étapes plus fortes pour empêcher le vol d'identité.

---

>Change Healthcare\'s breach prompts calls for credit freezes and offers 2 years of free monitoring, as experts urge stronger steps to prevent identity theft. ]]> 2024-10-31T19:00:00+00:00 https://www.securemac.com/checklist/checklist-398-the-more-things-change www.secnews.physaphae.fr/article.php?IdArticle=8607745 False Medical None 2.0000000000000000 Krebs on Security - Chercheur Américain Change Healthcare says it has notified approximately 100 million Americans that their personal, financial and healthcare records may have been stolen in a February 2024 ransomware attack that caused the largest ever known data breach of protected health information.]]> 2024-10-30T13:34:08+00:00 https://krebsonsecurity.com/2024/10/change-healthcare-breach-hits-100m-americans/ www.secnews.physaphae.fr/article.php?IdArticle=8603728 False Ransomware,Data Breach,Medical None 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial De nouvelles recherches de ForeScout Technologies ont souligné les dispositifs médicaux connectés les plus vulnérables, en découvrant 162 vulnérabilités de sécurité qui pourraient ...

---

>New research from Forescout Technologies highlighted the most vulnerable connected medical devices, uncovering 162 security vulnerabilities that could... ]]> 2024-10-30T13:02:32+00:00 https://industrialcyber.co/medical/forescout-research-reveals-162-vulnerabilities-in-connected-medical-devices-elevating-risks-to-patient-data-and-safety/ www.secnews.physaphae.fr/article.php?IdArticle=8603710 False Vulnerability,Medical None 2.0000000000000000 Global Security Mag - Site de news francais Malwares]]> 2024-10-29T13:43:36+00:00 https://www.globalsecuritymag.fr/hopitaux-quand-les-cybercriminels-font-grimper-le-taux-de-mortalite-rapport.html www.secnews.physaphae.fr/article.php?IdArticle=8603295 False Medical None 2.0000000000000000 Security Intelligence - Site de news Américain Une violation de données chez Virtual Medical Provider Confident Health met à nu la grande différence entre les informations personnellement identifiables (PII) d'une part et les données sensibles de l'autre.L'histoire a commencé lorsque la chercheuse en sécurité Jeremiah Fowler a découvert une base de données non garantie contenant 5,3 téraoctets de données exposées liées à la santé des confidents.L'entreprise fournit une dépendance [& # 8230;]

---

>A data breach at virtual medical provider Confidant Health lays bare the vast difference between personally identifiable information (PII) on the one hand and sensitive data on the other. The story began when security researcher Jeremiah Fowler discovered an unsecured database containing 5.3 terabytes of exposed data linked to Confidant Health. The company provides addiction […] ]]> 2024-10-29T13:00:00+00:00 https://securityintelligence.com/articles/why-safeguarding-sensitive-data-is-crucial/ www.secnews.physaphae.fr/article.php?IdArticle=8603288 False Data Breach,Medical None 2.0000000000000000 Contagio - Site d infos ransomware 2024-10-25 Cyble: & nbsp; heptax: Connexions RDP non autorisées pour les opérations de cyberespionnage Résumé: L'attaque commence parUn fichier LNK malveillant livré dans un fichier zip, probablement distribué par e-mails de phishing, et semble cibler l'industrie des soins de santé. Lors de l'exécution, le fichier LNK initie une commande PowerShell qui télécharge plusieurs scripts et fichiers lots à partir d'unServeur distant pour établir la persistance et le contrôle du système de la victime. Le fichier LNK, une fois ouvert, déclenche des commandes PowerShell qui téléchargent des charges utiles supplémentaires à partir de hxxp: //157.173.104 [.] 153 . Ces scripts permettent à l'attaquant de créer un nouveau compte utilisateur avecPrivilèges administratifs et paramètres alter RDP, réduisant les exigences d'authentification pour un accès plus facile non autorisé. Un fichier de raccourci persistant (LNK) est créé dans le dossier Windows StartupPour maintenir l'accès. Le principal script PowerShell communique avec le serveur C2, construisant des URL avec un identifiant unique (UID) pour que la machine compromise récupére des commandes ou des charges utiles supplémentaires. Si UACest détecté comme faible ou handicapé, l'attaque procède à d'autres étapes qui abaissent les configurations de sécurité du système. Une charge utile secondaire, "ChromePass, "est introduit, ciblant les navigateurs à base de chrome pour récolter des informations d'identification stockées, en déchargeant le risque de comptes compromis. Les scripts configurent le système pour faciliter l'accès à distance, permettant des actions telles que l'exfiltration, la surveillance etInstallation de logiciels malveillants supplémentaires. Fichiers batch ultérieurs (par exemple, k1.bat , Scheduler-once.BAT ) Exécuter des commandes qui masquent les traces, suppriment les journaux et planifier les tâches déguisées en opérations système pour maintenir la persistance et l'évasion de la détection. Les étapes finales impliquent l'exécution d'un script PowerShell qui effectue une reconnaissance,collecte des données système étendues et les envoie encodées au serveur C2. Télécharger ]]> 2024-10-28T22:56:39+00:00 https://contagiodump.blogspot.com/2024/10/2024-10-25-heptax-unauthorized-rdp.html www.secnews.physaphae.fr/article.php?IdArticle=8603077 False Malware,Medical None 3.0000000000000000 Recorded Future - FLux Recorded Future Wichita County, Texas, issued data breach notifications about an incident in May that appears to be the work of a ransomware gang.]]> 2024-10-28T19:33:48+00:00 https://therecord.media/wichita-county-texas-cyberattack-data-breach www.secnews.physaphae.fr/article.php?IdArticle=8602975 False Ransomware,Data Breach,Medical None 3.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-10-28T11:27:40+00:00 https://community.riskiq.com/article/fa5a55d5 www.secnews.physaphae.fr/article.php?IdArticle=8602805 False Ransomware,Spam,Malware,Tool,Vulnerability,Threat,Prediction,Medical,Cloud,Technical APT 38,Guam 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial The Health Sector Cybersecurity Coordination Center (HC3) of the U.S. Department of Health & Human Services (HHS) released... ]]> 2024-10-28T09:58:49+00:00 https://industrialcyber.co/medical/hc3-warns-of-scattered-spider-hackers-leveraging-ai-social-engineering-to-infiltrate-healthcare-other-sectors/ www.secnews.physaphae.fr/article.php?IdArticle=8602751 False Medical None 2.0000000000000000 Dark Reading - Informationweek Branch Eight months after the breach occurred, Change Healthcare has finally sent out millions of notices of compromised data to affected individuals.]]> 2024-10-25T19:59:08+00:00 https://www.darkreading.com/cyberattacks-data-breaches/unitedhealth-reveals-100m-compromised-change-healthcare-breach www.secnews.physaphae.fr/article.php?IdArticle=8601761 False Medical None 2.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-10-25T19:15:07+00:00 https://community.riskiq.com/article/ce9f9a25 www.secnews.physaphae.fr/article.php?IdArticle=8601768 True Malware,Tool,Threat,Medical None 3.0000000000000000 TechRepublic - Security News US Personal information from one-third of Americans could have been affected in the $22 million ransomware attack, which has been attributed to the BlackCat gang.]]> 2024-10-25T18:37:49+00:00 https://www.techrepublic.com/article/change-healthcare-cyberattack-oct-numbers/ www.secnews.physaphae.fr/article.php?IdArticle=8601751 False Ransomware,Medical None 2.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-10-25T17:22:14+00:00 https://community.riskiq.com/article/cef0b618 www.secnews.physaphae.fr/article.php?IdArticle=8601746 True Ransomware,Malware,Tool,Threat,Industrial,Medical None 2.0000000000000000 CyberScoop - scoopnewsgroup.com special Cyber L'entreprise a informé le département de la santé et des services sociaux au sujet du chiffre cette semaine, le premier qu'elle a spécifié.

---

>The company notified the Health and Human Services Department about the figure this week, the first it has specified. ]]> 2024-10-25T16:28:43+00:00 https://cyberscoop.com/change-healthcare-breach-affected-100-million-americans-marking-a-new-record/ www.secnews.physaphae.fr/article.php?IdArticle=8601730 False Medical None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Updated figures from the HHS revealed that 100 million patients have been notified that their data was breached in the Change Healthcare ransomware attack]]> 2024-10-25T14:00:00+00:00 https://www.infosecurity-magazine.com/news/change-healthcare-breach-americans/ www.secnews.physaphae.fr/article.php?IdArticle=8601706 False Ransomware,Medical None 3.0000000000000000 Recorded Future - FLux Recorded Future The Department of Health and Human Services\'s (HHS) Office for Civil Rights said Change Healthcare notified them on October 22 that “approximately 100 million individual notices have been sent regarding this breach.”]]> 2024-10-25T13:38:32+00:00 https://therecord.media/change-healthcare-100-million-impacted-ransomware-attack www.secnews.physaphae.fr/article.php?IdArticle=8601704 False Ransomware,Medical None 2.0000000000000000 SecurityWeek - Security News UnitedHealth a déclaré au service de santé américain que les pirates ont volé les informations de 100 millions de personnes dans une attaque de ransomware de février.

---

>UnitedHealth told the US health department that hackers stole the information of 100 million people in a February ransomware attack. ]]> 2024-10-25T11:10:31+00:00 https://www.securityweek.com/change-healthcare-ransomware-attack-impacts-100-million-people/ www.secnews.physaphae.fr/article.php?IdArticle=8601679 False Ransomware,Medical None 2.0000000000000000 Bleeping Computer - Magazine Américain UnitedHealth has confirmed for the first time that over 100 million people had their personal information and healthcare data stolen in the Change Healthcare ransomware attack, marking this as the largest healthcare data breach in recent years. [...]]]> 2024-10-24T23:54:56+00:00 https://www.bleepingcomputer.com/news/security/unitedhealth-says-data-of-100-million-stolen-in-change-healthcare-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8601632 False Ransomware,Data Breach,Medical None 3.0000000000000000 Dark Reading - Informationweek Branch Even after the ransom is paid, such attacks lead to spikes in strokes and heart attacks and increased wait times for patients.]]> 2024-10-24T21:06:44+00:00 https://www.darkreading.com/cyberattacks-data-breaches/microsoft-healthcare-300-percent-surge-ransomware-attacks www.secnews.physaphae.fr/article.php?IdArticle=8601615 False Ransomware,Medical None 3.0000000000000000 SecurityWeek - Security News Le malware de Latrodectus a été de plus en plus utilisé par les cybercriminels, avec des campagnes récentes ciblant les secteurs financiers, automobiles et de santé.

---

>Latrodectus malware has been increasingly used by cybercriminals, with recent campaigns targeting the financial, automotive and healthcare sectors.  ]]> 2024-10-22T10:40:00+00:00 https://www.securityweek.com/latrodectus-malware-increasingly-used-by-cybercriminals/ www.secnews.physaphae.fr/article.php?IdArticle=8601296 False Malware,Medical None 3.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-10-21T17:57:04+00:00 https://community.riskiq.com/article/3b8a71a8 www.secnews.physaphae.fr/article.php?IdArticle=8601136 False Ransomware,Malware,Tool,Threat,Medical None 2.0000000000000000 Checkpoint Research - Fabricant Materiel Securite Pour les dernières découvertes en cyber recherche pour la semaine du 21 octobre, veuillez télécharger notre bulletin de renseignement sur les menaces.Les principales attaques et violations des médecins de la santé des enfants de Boston, qui font partie du réseau hospitalier de Boston Children \\, ont subi une violation de données en septembre, exposant des informations sensibles aux patients, y compris les numéros de sécurité sociale, les dossiers médicaux et les détails de l'assurance maladie.Le [& # 8230;]

---

>For the latest discoveries in cyber research for the week of 21st October, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Boston Children\'s Health Physicians, part of the Boston Children\'s Hospital network, suffered a data breach in September, exposing sensitive patient information, including Social Security numbers, medical records, and health insurance details. The […] ]]> 2024-10-21T10:13:48+00:00 https://research.checkpoint.com/2024/21st-october-threat-intelligence-report/ www.secnews.physaphae.fr/article.php?IdArticle=8600946 False Data Breach,Threat,Medical None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Cybersecurity and intelligence agencies from Australia, Canada, and the U.S. have warned about a year-long campaign undertaken by Iranian cyber actors to infiltrate critical infrastructure organizations via brute-force attacks. "Since October 2023, Iranian actors have used brute force and password spraying to compromise user accounts and obtain access to organizations in the healthcare and]]> 2024-10-18T16:30:00+00:00 https://thehackernews.com/2024/10/us-and-allies-warn-of-iranian.html www.secnews.physaphae.fr/article.php?IdArticle=8599695 False Medical None 3.0000000000000000 Checkpoint - Fabricant Materiel Securite Un pic d'enregistrement dans les attaques: au troisième trimestre 2024, une moyenne de 1 876 cyberattaques par organisation a été enregistrée, marquant une augmentation de 75% par rapport à la même période en 2023 et une augmentation de 15% par rapport au trimestre précédent.Déchange sur le plan de l'industrie: Le secteur de l'éducation / de la recherche a été le plus ciblé avec 3 828 attaques hebdomadaires, suivie des secteurs gouvernementaux / militaires et de soins de santé, avec 2 553 et 2 434 attaques, respectivement.Faits saillants régionaux: L'Afrique a dû faire face à la moyenne la plus élevée des attaques à 3 370 par semaine (+ 90% en glissement annuel), tandis que l'Europe et l'Amérique latine ont également connu des augmentations significatives.Ransomware: une menace persistante: plus de 1 230 incidents de ransomware ont été signalés, avec l'Amérique du Nord [& # 8230;]

---

>A Record Spike in Attacks: In Q3 2024, an average of 1,876 cyber attacks per organization was recorded, marking a 75% increase compared to the same period in 2023 and a 15% rise from the previous quarter. Industry-wise Breakdown: The Education/Research sector was the most targeted with 3,828 weekly attacks, followed by the Government/Military and Healthcare sectors, with 2,553 and 2,434 attacks, respectively. Regional Highlights: Africa faced the highest average of attacks at 3,370 per week (+90% YoY), while Europe and Latin America also saw significant increases. Ransomware: A Persistent Threat: Over 1,230 ransomware incidents were reported, with North America […] ]]> 2024-10-18T13:00:23+00:00 https://blog.checkpoint.com/research/a-closer-look-at-q3-2024-75-surge-in-cyber-attacks-worldwide/ www.secnews.physaphae.fr/article.php?IdArticle=8599714 False Ransomware,Threat,Medical None 3.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-10-17T21:12:38+00:00 https://community.riskiq.com/article/5faaa4dc www.secnews.physaphae.fr/article.php?IdArticle=8599427 False Tool,Vulnerability,Medical None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine The ongoing campaign targets multiple critical infrastructure sectors, including healthcare, government, information technology, engineering, and energy]]> 2024-10-17T15:00:00+00:00 https://www.infosecurity-magazine.com/news/iran-hackers-cni-brute-force/ www.secnews.physaphae.fr/article.php?IdArticle=8599270 False Medical None 3.0000000000000000 The State of Security - Magazine Américain No-one would be bold enough to say that the ransomware problem is receding, but a newly-published report by Microsoft does deliver a slither of encouraging news amongst the gloom. And boy do we need some good news - amid reports that 389 US-based healthcare institutions were hit by ransomware last year - more than one every single day. The 114-page Microsoft Digital Defense Report (MMDR) looks at multiple aspects of the cybersecurity landscape, including AI security, denial-of-service attacks, phishing, social engineering, and nation-state threats. But for me one of the most positive findings...]]> 2024-10-17T11:17:28+00:00 https://www.tripwire.com/state-of-security/glimmer-good-news-ransomware-front-encryption-rates-plummet www.secnews.physaphae.fr/article.php?IdArticle=8599315 False Ransomware,Medical None 3.0000000000000000 InformationSecurityBuzzNews - Site de News Securite Iranian cyber actors are targeting organizations across critical infrastructure sectors, using brute force techniques to obtain user credentials and sell sensitive information on cybercriminal forums. The attacks have affected healthcare, government, information technology, engineering, and energy sectors. This was announced in a coordinated alert by the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security [...]]]> 2024-10-17T09:43:13+00:00 https://informationsecuritybuzz.com/cyber-actors-compromise-critical-infrastructure/ www.secnews.physaphae.fr/article.php?IdArticle=8599156 False Medical None 3.0000000000000000 Recorded Future - FLux Recorded Future In the last fiscal year, 389 U.S.-based healthcare institutions were successfully hit with ransomware, causing “network closures, systems offline, critical medical operations delayed, and appointments rescheduled,” Microsoft said.]]> 2024-10-15T20:37:04+00:00 https://therecord.media/ransomware-healthcare-microsoft-last-year www.secnews.physaphae.fr/article.php?IdArticle=8598382 False Ransomware,Medical None 2.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-10-14T21:26:20+00:00 https://community.riskiq.com/article/cd213500 www.secnews.physaphae.fr/article.php?IdArticle=8597846 False Ransomware,Malware,Tool,Vulnerability,Threat,Patching,Industrial,Medical,Cloud APT 29,APT 10,GoldenJackal 2.0000000000000000 Checkpoint Research - Fabricant Materiel Securite Pour les dernières découvertes en cyberLes principales attaques et violations de l'organisation de soins de santé à but non lucratif Axis Health System ont été frappées par une attaque de ransomware par le gang de Rhysida, conduisant au vol de données sensibles, notamment les dossiers de santé mentale et de toxicomanie.Rhysida [& # 8230;]

---

>For the latest discoveries in cyber research for the week of 14th October, please download our Threat Intelligence Bulletin. TOP ATTACKS AND BREACHES Nonprofit healthcare organization Axis Health System has been hit by a ransomware attack by the Rhysida gang, leading to the theft of sensitive data, including mental health and substance abuse records. Rhysida […] ]]> 2024-10-14T12:41:07+00:00 https://research.checkpoint.com/2024/14th-october-threat-intelligence-report/ www.secnews.physaphae.fr/article.php?IdArticle=8597616 False Ransomware,Threat,Medical None 2.0000000000000000 Global Security Mag - Site de news francais Mise à jour malware / / affiche

---

Healthcare hacked: three important ways to stop cybercriminals targeting patient data As ransomware groups continue to target hospitals and care providers, organizations have a duty to protect patient data adequately - Malware Update / affiche]]> 2024-10-14T09:42:47+00:00 https://www.globalsecuritymag.fr/healthcare-hacked-three-important-ways-to-stop-cybercriminals-targeting-patient.html www.secnews.physaphae.fr/article.php?IdArticle=8597549 False Ransomware,Medical None 3.0000000000000000 Recorded Future - FLux Recorded Future Axis Health System operates 13 facilities serving thousands of people across southwest and western Colorado. The nonprofit posted a message on its website this week confirming it is experiencing a cyber incident.]]> 2024-10-11T13:17:09+00:00 https://therecord.media/cyberattack-targets-healthcare-nonprofit-colorado www.secnews.physaphae.fr/article.php?IdArticle=8596033 False Medical None 2.0000000000000000 The Register - Site journalistique Anglais Acknowledges bulk customer data leak weeks after Telegram channels dangled it online Leading Indian health insurance provider Star Health has admitted to being the victim of a cyber attack after criminals claimed they had posted records of 30-milion-plus clients online.…]]> 2024-10-11T02:57:43+00:00 https://go.theregister.com/feed/www.theregister.com/2024/10/11/star_health_breach/ www.secnews.physaphae.fr/article.php?IdArticle=8595758 False Medical None 3.0000000000000000 CyberScoop - scoopnewsgroup.com special Cyber Censys Les chercheurs en cybersécurité trouvent des dispositifs médicaux, des portails de connexion et des dossiers de santé flottant en ligne.

---

>Censys cybersecurity researchers find medical devices, login portals, and health records floating online. ]]> 2024-10-10T17:23:14+00:00 https://cyberscoop.com/medical-devices-online-health-censys/ www.secnews.physaphae.fr/article.php?IdArticle=8595551 False Medical None 3.0000000000000000 Recorded Future - FLux Recorded Future A Massachusetts reproductive healthcare clinic said in court filings that the nearby office of an anti-abortion group appeared to be intercepting messages to patients and then contacting them with the goal of redirecting them away from the clinic\'s services.]]> 2024-10-10T13:17:28+00:00 https://therecord.media/anti-abortion-group-massachusetts-accused-intercepting-messages www.secnews.physaphae.fr/article.php?IdArticle=8595440 False Medical None 2.0000000000000000 The State of Security - Magazine Américain Penetration testing is something that more companies and organizations should be considering as a necessary expense. I say this because, over the years, the cost of data breaches and other forms of malicious intrusions and disruptions are getting costlier. Per IBM Security\'s “Cost of a Data Breach Report 2024,” the average cost of a breach has increased 10% year over year, with the healthcare sector having the highest cost breaches for 14 consecutive years. One of the most important statistics that stands out from the report is the average number of days to identify and contain a data breach...]]> 2024-10-10T03:26:34+00:00 https://www.tripwire.com/state-of-security/cis-control-18 www.secnews.physaphae.fr/article.php?IdArticle=8598023 False Data Breach,Medical None 3.0000000000000000 RiskIQ - cyber risk firms (now microsoft) ## Snapshot Researchers at Palo Alto Networks have identified four previously unrepored DNS tunneling campaigns dubbed FinHealthXDS, RussianSite, 8NS, and NSfinder. ## Description The first campaign, FinHealthXDS, targets the finance and healthcare industries with 12 domains using a customized DNS beaconing format for Cobalt Strike C2 communications, indicated by a three-letter prefix. The second campaign, RussianSite, involves over 100 domains with a shared nameserver IP from Russia, impacting higher education, government, and health entities. The third campaign, 8NS, features six domains with eight NS records each. This campaign uses malware, including some from the Hiloti family, to leverage DNS queries for C2 communication. Finally, the NSfinder campaign consists of over 50 domains and lures victims to adult websites to steal credit card information. This campiagn is  linked to Trojans like IcedID and RedLine stealer and ha]]> 2024-10-09T22:06:48+00:00 https://community.riskiq.com/article/80e5ebbc www.secnews.physaphae.fr/article.php?IdArticle=8595080 False Malware,Threat,Medical,Cloud None 3.0000000000000000 IndustrialCyber - cyber risk firms for industrial Le centre de coordination de la cybersécurité du secteur de la santé (HC3) au sein du département américain de la santé & # 38;Les services humains (HHS) ont averti ...

---

>The Health Sector Cybersecurity Coordination Center (HC3) within the U.S. Department of Health & Human Services (HHS) warned... ]]> 2024-10-09T11:02:40+00:00 https://industrialcyber.co/medical/trinity-ransomware-emerging-threat-to-us-healthcare-uses-sophisticated-double-extortion-tactics/ www.secnews.physaphae.fr/article.php?IdArticle=8594768 False Ransomware,Threat,Medical None 3.0000000000000000 ProofPoint - Firm Security 2024-10-08T20:53:50+00:00 https://www.proofpoint.com/us/newsroom/press-releases/third-annual-ponemon-institute-report-nearly-seven-10-healthcare www.secnews.physaphae.fr/article.php?IdArticle=8594315 False Medical None 3.0000000000000000 ProofPoint - Cyber Firms 2024-10-08T20:43:58+00:00 https://www.proofpoint.com/us/blog/corporate-news/new-ponemon-report-shows-awareness-cyber-risks-healthcare-organizations-not www.secnews.physaphae.fr/article.php?IdArticle=8594120 False Ransomware,Tool,Medical,Cloud None 3.0000000000000000 Dark Reading - Informationweek Branch As healthcare organizations struggle against operational issues, two-thirds of the industry suffered ransomware attacks in the past year, and an increasing number are caving to extortion and paying up.]]> 2024-10-08T18:36:25+00:00 https://www.darkreading.com/threat-intelligence/healthcare-cyber-prognosis-security-booster www.secnews.physaphae.fr/article.php?IdArticle=8594431 False Ransomware,Medical None 3.0000000000000000 ProofPoint - Firm Security 2024-10-08T15:44:59+00:00 https://www.proofpoint.com/us/newsroom/news/study-92-healthcare-firms-hit-cyberattacks-year www.secnews.physaphae.fr/article.php?IdArticle=8598043 False Studies,Medical None 3.0000000000000000 Recorded Future - FLux Recorded Future Trinity ransomware, which bears similarities to previously spotted strains known as 2023Lock and Venus, appears to be an immediate threat to healthcare entities, according to the Department of Health and Human Services\' cyber coordination office.]]> 2024-10-07T19:44:07+00:00 https://therecord.media/trinity-ransomware-alert-healthcare-industry-hhs-cyber-center www.secnews.physaphae.fr/article.php?IdArticle=8593812 False Ransomware,Threat,Medical None 2.0000000000000000 ProofPoint - Cyber Firms 2024-10-03T15:14:06+00:00 https://www.proofpoint.com/us/blog/email-and-cloud-threats/socgholish-malware-healthcare-sector www.secnews.physaphae.fr/article.php?IdArticle=8591227 False Ransomware,Malware,Tool,Vulnerability,Threat,Medical,Cloud,Conference None 2.0000000000000000 CybeReason - Vendor blog À l'ère numérique d'aujourd'hui, les cyberattaques sont devenues une menace commune et constante pour les individus et les organisations.Des escroqueries à phishing aux attaques de logiciels malveillants, les cybercriminels trouvent constamment de nouvelles façons d'exploiter les vulnérabilités et de voler des informations sensibles.Les ransomwares sont de plus en plus répandus, avec des attaques de haut niveau ciblant les grandes organisations, les agences gouvernementales et les systèmes de santé.Les conséquences d'une attaque de ransomware peuvent être dévastatrices, entraînant une perte financière, des dommages de réputation et même le compromis de données sensibles.

---

In today\'s digital age, cyberattacks have become a common and constant threat to individuals and organizations alike. From phishing scams to malware attacks, cybercriminals are constantly finding new ways to exploit vulnerabilities and steal sensitive information. Ransomware is increasingly prevalent, with high-profile attacks targeting large organizations, government agencies, and healthcare systems. The consequences of a ransomware attack can be devastating, resulting in financial loss, reputational damage, and even the compromise of sensitive data.]]> 2024-10-03T13:00:00+00:00 https://www.cybereason.com/blog/the-silent-epidemic-uncovering-the-dangers-of-alert-fatigue-and-how-to-overcome-it www.secnews.physaphae.fr/article.php?IdArticle=8591265 False Ransomware,Malware,Vulnerability,Threat,Medical None 2.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-10-02T23:11:05+00:00 https://community.riskiq.com/article/24d3e55f www.secnews.physaphae.fr/article.php?IdArticle=8590809 False Ransomware,Malware,Tool,Vulnerability,Threat,Prediction,Medical,Cloud None 2.0000000000000000 Dark Reading - Informationweek Branch Poor permission controls and user input validation is endemic to the platforms that protect Americans\' legal, medical, and voter data.]]> 2024-10-01T21:12:53+00:00 https://www.darkreading.com/vulnerabilities-threats/govt-judicial-it-systems-control-bugs www.secnews.physaphae.fr/article.php?IdArticle=8589910 False Medical None 2.0000000000000000 Bleeping Computer - Magazine Américain Texas healthcare provider UMC Health System was forced to divert some patients to other locations after a ransomware attack impacted its operations. [...]]]> 2024-10-01T13:29:09+00:00 https://www.bleepingcomputer.com/news/security/ransomware-attack-forces-umc-health-system-to-divert-some-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8589817 False Ransomware,Medical None 2.0000000000000000 InformationSecurityBuzzNews - Site de News Securite University Medical Center (UMC) is still grappling with the aftermath of a ransomware attack that occurred last Thursday. The attack caused a widespread IT outage and forced the diversion of emergency and non-emergency patients to nearby facilities. While some services have been restored, the full impact of the attack remains uncertain as the hospital works [...]]]> 2024-10-01T05:58:17+00:00 https://informationsecuritybuzz.com/ambulances-diverted-umc-faces-cybersec/ www.secnews.physaphae.fr/article.php?IdArticle=8589421 False Ransomware,Medical None 2.0000000000000000 Recorded Future - FLux Recorded Future The University Medical Center Health System in Lubbock, Texas, confirmed on Friday that outages are being caused by a ransomware incident.]]> 2024-09-30T21:03:20+00:00 https://therecord.media/crucial-hospital-texas-ransomware-attackc www.secnews.physaphae.fr/article.php?IdArticle=8589156 False Ransomware,Medical None 2.0000000000000000 Global Security Mag - Site de news francais Rapports spéciaux / / affiche

---

Two-Thirds of Healthcare Organizations Hit by Ransomware – A Four-Year High, Sophos Survey Finds Nearly 80% of Organizations Hit by Ransomware Took More than a Week to Recover - Special Reports / affiche]]> 2024-09-30T06:59:31+00:00 https://www.globalsecuritymag.fr/two-thirds-of-healthcare-organizations-hit-by-ransomware-a-four-year-high.html www.secnews.physaphae.fr/article.php?IdArticle=8588650 False Ransomware,Medical None 2.0000000000000000 Recorded Future - FLux Recorded Future The hackers were stopped from reaching "essential databases," according to ministry, but it shut down certain systems in order to install needed updates.]]> 2024-09-26T21:19:39+00:00 https://therecord.media/kuwait-ministry-restoring-systems-cyberattack www.secnews.physaphae.fr/article.php?IdArticle=8585988 False Medical None 2.0000000000000000 Recorded Future - FLux Recorded Future Hospitals and other healthcare businesses would be required to adopt minimum cybersecurity standards and face annual audits under new legislation introduced by two prominent senators.]]> 2024-09-26T20:57:40+00:00 https://therecord.media/senate-bill-cyber-mandates-wyden-warner www.secnews.physaphae.fr/article.php?IdArticle=8585946 False Legislation,Medical None 3.0000000000000000 CyberScoop - scoopnewsgroup.com special Cyber La législation de Sens. Wyden et Warner se présentent à la suite de l'attaque de ransomware de février contre les soins de santé du changement.

---

>The legislation from Sens. Wyden and Warner comes in the aftermath of the February ransomware attack on Change Healthcare. ]]> 2024-09-26T18:50:34+00:00 https://cyberscoop.com/minimum-cybersecurity-standards-health-care-wyden-warner-bill/ www.secnews.physaphae.fr/article.php?IdArticle=8585861 False Ransomware,Legislation,Medical None 2.0000000000000000 Security Intelligence - Site de news Américain Selon le coût IBM d'un rapport de violation de données 2024, le coût moyen mondial d'une violation de données a atteint 4,88 millions de dollars cette année, une augmentation de 10% par rapport à 2023. Pour l'industrie des soins de santé, le rapport offre à la fois de bonnes et de mauvaises nouvelles.La bonne nouvelle est que les coûts moyens de violation de données ont chuté de 10,6% cette année.[& # 8230;]

---

>According to the IBM Cost of a Data Breach Report 2024, the global average cost of a data breach reached $4.88 million this year, a 10% increase over 2023. For the healthcare industry, the report offers both good and bad news. The good news is that average data breach costs fell by 10.6% this year. […] ]]> 2024-09-26T13:00:00+00:00 https://securityintelligence.com/articles/healthcare-industry-attack-trends-2024/ www.secnews.physaphae.fr/article.php?IdArticle=8585659 False Ransomware,Data Breach,Medical None 2.0000000000000000 Contagio - Site d infos ransomware style = "text-adign: Center;"> Image gracieuseté de Palo Alto & nbsp; & nbsp; 2024-09-23 Palo Alto Unit42: Inside Snipbot: La dernière variante de logiciels malveillants RomCom & nbsp; Cette dernière version intègre de nouvelles techniques d'obscuscation et présente un post distinct-Activités d'infection non observées dans les variantes précédentes (RomCom 3.0 et Peapod / RomCom 4.0). Points clés: Capacités: Snipbot permet aux attaquants d'exécuter des commandes et de télécharger des modules supplémentaires sur le système de la victime. livré par e-mail contenant des liens qui redirigent vers le téléchargeur Snipbot.Clé de registre.explorateur.exe en utilisant le détournement com.Plus précisément, il enregistre la DLL malveillante ( keyprov.dll ) en tant que bibliothèque de caches de vigne> La charge utile principale, single.dll , écoute le port 1342 pour des commandes telles que la suppression des clés de registre, l'exécution( hkcu \ logiciel \ appdatasoft \ logiciel ) pour stocker les charges utiles cryptées et garder une trace des mises à jour. Command &Contrôle: contacte ses domaines C2 (par exemple, xeontime [.] Com ) pour télécharger les charges utiles.Cryptes les chaînes, y compris les noms de fonction du domaine C2 et de l'API, pour échapper à la détection. & nbsp; Télécharger.Envoyez-moi un e-mail si vous avez besoin du schéma de mot de passe. Informations sur le fichier ├sé 327087b063e89c376fd84d48af7b855E686936765876DA2433485D496CB3A4 P; ├── 57e59b156a3ff2a333075baef684f49c63069d296b3b0]]> 2024-09-25T19:38:05+00:00 https://contagiodump.blogspot.com/2024/09/2024-09-23-snipbot-romcom-multi-stage.html www.secnews.physaphae.fr/article.php?IdArticle=8585171 False Data Breach,Malware,Medical None 2.0000000000000000