This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2025-05-10T12:41:17+00:00 www.secnews.physaphae.fr HackRead - Chercher Cyber Learn about the impact of the Qilin ransomware attack on Synnovis and healthcare services. Discover the consequences of this cyber incident and its implications for patient care.]]> 2024-06-21T12:07:13+00:00 https://hackread.com/qilin-ransomware-attack-nhs-patient-data-leak-telegram/ www.secnews.physaphae.fr/article.php?IdArticle=8522635 False Ransomware,Medical None 2.0000000000000000 The Register - Site journalistique Anglais Cybercriminals claim they used a zero-day to breach pathology provider\'s systems Interview  The ransomware gang responsible for the current healthcare crisis at London hospitals says it has no regrets about the attack, which was entirely deliberate, it told The Register in an interview.…]]> 2024-06-20T10:29:06+00:00 https://go.theregister.com/feed/www.theregister.com/2024/06/20/qilin_our_plan_was_to/ www.secnews.physaphae.fr/article.php?IdArticle=8521792 False Ransomware,Vulnerability,Threat,Medical None 3.0000000000000000 The Register - Site journalistique Anglais Billions of dollars made available but worst appears to be over The US government is winding down its financial support for healthcare providers originally introduced following the ransomware attack at Change Healthcare in February.…]]> 2024-06-18T13:15:15+00:00 https://go.theregister.com/feed/www.theregister.com/2024/06/18/support_ends_change_healthcare/ www.secnews.physaphae.fr/article.php?IdArticle=8520462 False Ransomware,Medical None 3.0000000000000000 Recorded Future - FLux Recorded Future 2024-06-17T18:51:13+00:00 https://therecord.media/all-scottish-households-nhs-hack-alert www.secnews.physaphae.fr/article.php?IdArticle=8519945 False Medical None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Los Angeles County Department of Public Health revealed a data breach impacting more than 200,000 individuals, with personal, medical and financial data potentially stolen]]> 2024-06-17T15:30:00+00:00 https://www.infosecurity-magazine.com/news/los-angeles-health-data-breach/ www.secnews.physaphae.fr/article.php?IdArticle=8519856 False Data Breach,Medical None 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial Le centre de coordination de la cybersécurité du secteur de la santé (HC3) dans le département américain de la santé & # 38;Les services humains (HHS) ont roulé ...

---

>The Health Sector Cybersecurity Coordination Center (HC3) in the U.S. Department of Health & Human Services (HHS) rolled... ]]> 2024-06-17T11:20:12+00:00 https://industrialcyber.co/medical/us-hc3-issues-alert-on-critical-php-vulnerability-impacting-healthcare-sector/ www.secnews.physaphae.fr/article.php?IdArticle=8519735 False Vulnerability,Medical None 2.0000000000000000 Dark Reading - Informationweek Branch More claims are being made across the US and Canada compared with previous years, with healthcare organizations leading the way.]]> 2024-06-13T21:13:04+00:00 https://www.darkreading.com/cyber-risk/marsh-insurance-volume-of-cyber-insurance-claims-reaches-new-heights www.secnews.physaphae.fr/article.php?IdArticle=8517489 False Medical None 2.0000000000000000 Bleeping Computer - Magazine Américain Ascension, one of the largest U.S. healthcare systems, revealed that a May 2024 ransomware attack was caused by an employee who downloaded a malicious file onto a company device. [...]]]> 2024-06-13T17:52:51+00:00 https://www.bleepingcomputer.com/news/security/ascension-hacked-after-employee-downloaded-malicious-file/ www.secnews.physaphae.fr/article.php?IdArticle=8517490 False Ransomware,Medical None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Healthcare firm Ascension said that ransomware attackers gained access to its systems after an employee accidently downloaded a malicious file]]> 2024-06-13T15:00:00+00:00 https://www.infosecurity-magazine.com/news/ascension-attack-employee/ www.secnews.physaphae.fr/article.php?IdArticle=8517211 False Ransomware,Medical None 3.0000000000000000 The Register - Site journalistique Anglais Confidential patient information found by member of the public A data protection gaffe affecting the UK\'s NHS is being pinned on a medical student who placed too much trust in their bin bags.…]]> 2024-06-13T11:30:07+00:00 https://go.theregister.com/feed/www.theregister.com/2024/06/13/nhs_bin_bag_data_breach/ www.secnews.physaphae.fr/article.php?IdArticle=8517247 False Data Breach,Medical None 3.0000000000000000 Mandiant - Blog Sécu de Mandiant   Individuals and organizations in Brazil face a unique cyber threat landscape because it is a complex interplay of global and local threats, posing significant risks to individuals, organizations, and critical sectors of Brazilian society. Many of the cyber espionage threat actors that are prolific in campaigns across the globe are also active in carrying out attempted intrusions into critical sectors of Brazilian society. Brazil also faces threats posed by the worldwide increase in multifaceted extortion, as ransomware and data theft continue to rise. At the same time, the threat landscape in Brazil is shaped by a domestic cybercriminal market, where threat actors coordinate to carry out account takeovers, conduct carding and fraud, deploy banking malware and facilitate other cyber threats targeting Brazilians. The rise of the Global South, with Brazil at the forefront, marks a significant shift in the geopolitical landscape; one that extends into the cyber realm. As Brazil\'s influence grows, so does its digital footprint, making it an increasingly attractive target for cyber threats originating from both global and domestic actors. This blog post brings together Google\'s collective understanding of the Brazilian threat landscape, combining insights from Google\'s Threat Analysis Group (TAG) and Mandiant\'s frontline intelligence. As Brazil\'s economic and geopolitical role in global affairs continues to rise, threat actors from an array of motivations will further seek opportunities to exploit the digital infrastructure that Brazilians rely upon across all aspects of society. By sharing our global perspective, we hope to enable greater resiliency in mitigating these threats. Google uses the results of our research to improve the safety and security of our products, making them secure by default. Chrome OS has built-in and proactive security to protect from ransomware, and there have been no reported ransomware attacks ever on any business, education, or consumer Chrome OS device. Google security teams continuously monitor for new threat activity, and all identified websites and domains are added to Safe Browsing to protect users from further exploitation. We deploy and constantly update Android detections to protect users\' devices and prevent malicious actors from publishing malware to the Google Play Store. We send targeted Gmail and Workspace users government-backed attacker alerts, notifying them of the activity and encouraging potential targets to enable Enhanced Safe Browsing for Chrome and ensure that all devices are updated.   Cyber Espionage Operations Targeting Brazil Brazil\'s status as a globally influential power and the largest economy in South America have drawn attention from c]]> 2024-06-12T14:00:00+00:00 https://cloud.google.com/blog/topics/threat-intelligence/cyber-threats-targeting-brazil/ www.secnews.physaphae.fr/article.php?IdArticle=8516847 False Ransomware,Spam,Malware,Tool,Vulnerability,Threat,Mobile,Medical,Cloud,Technical APT 28 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial L'administration américaine a annoncé lundi les initiatives pour améliorer les mesures de cybersécurité, visant à renforcer la protection des Américains & # 8217; ...

---

>The U.S. administration announced on Monday initiatives to enhance cybersecurity measures, aimed at strengthening the protection of Americans’... ]]> 2024-06-12T07:19:05+00:00 https://industrialcyber.co/medical/biden-administration-boosts-healthcare-cybersecurity-following-a-128-rise-in-cyberattacks-ropes-in-microsoft-google/ www.secnews.physaphae.fr/article.php?IdArticle=8517151 False Medical None 2.0000000000000000 Dark Reading - Informationweek Branch Operations at Synnovis medical labs have been disrupted for more than a week, prompting the NHS to implore the public to donate blood.]]> 2024-06-11T19:02:51+00:00 https://www.darkreading.com/cyberattacks-data-breaches/blood-shortages-hit-london-hospitals-after-ransomeware-attack www.secnews.physaphae.fr/article.php?IdArticle=8517205 False Ransomware,Medical None 3.0000000000000000 Dark Reading - Informationweek Branch VoIP gear, hypervisors, medical equipment, building automation, printers, and more pose broad risk to organizations, with many facing danger from a combo of IT, IoT, and OT all at once. This listicle breaks it down.]]> 2024-06-10T21:26:59+00:00 https://www.darkreading.com/cyber-risk/riskiest-connected-devices-2024 www.secnews.physaphae.fr/article.php?IdArticle=8516516 False Industrial,Medical None 3.0000000000000000 HackRead - Chercher Cyber Electronic health records (EHRs) have become crucial tools for storing and managing patient information. These digital records contain…]]> 2024-06-10T11:34:09+00:00 https://hackread.com/electronic-health-records-ehrs-healthcare-data-extraction/ www.secnews.physaphae.fr/article.php?IdArticle=8516244 False Tool,Medical None 3.0000000000000000 Global Security Mag - Site de news francais revues de produits

---

Bitdefender Offers Free Cybersecurity Solutions to London NHS Hospitals After Ransomware Attack Paralyses Healthcare Services - Product Reviews]]> 2024-06-06T15:35:29+00:00 https://www.globalsecuritymag.fr/bitdefender-offers-free-cybersecurity-solutions-to-london-nhs-hospitals-after.html www.secnews.physaphae.fr/article.php?IdArticle=8514178 False Ransomware,Medical None 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial Le centre de coordination de la cybersécurité du secteur de la santé (HC3) dans le département américain de la santé & # 38;Services humains (HHS) publiés ...

---

>The Health Sector Cybersecurity Coordination Center (HC3) in the U.S. Department of Health & Human Services (HHS) published... ]]> 2024-06-06T11:22:57+00:00 https://industrialcyber.co/medical/hc3-issues-sector-alert-on-high-risk-vulnerabilities-in-baxter-welch-allyn-medical-equipment/ www.secnews.physaphae.fr/article.php?IdArticle=8514043 False Vulnerability,Medical None 2.0000000000000000 Dark Reading - Informationweek Branch The incident affecting pathology-services provider Synnovis demonstrates the ripple effect that cyberattacks have on healthcare systems, and demands immediate security response.]]> 2024-06-05T15:42:17+00:00 https://www.darkreading.com/cyberattacks-data-breaches/synnovis-ransomware-attack-disrupts-operations-london-hospitals www.secnews.physaphae.fr/article.php?IdArticle=8513716 False Ransomware,Medical None 2.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) An analysis of a nascent ransomware strain called RansomHub has revealed it to be an updated and rebranded version of Knight ransomware, itself an evolution of another ransomware known as Cyclops. Knight (aka Cyclops 2.0) ransomware first arrived in May 2023, employing double extortion tactics to steal and encrypt victims\' data for financial gain. It\'s operational across multiple platforms,]]> 2024-06-05T15:40:00+00:00 https://thehackernews.com/2024/06/rebranded-knight-ransomware-targeting.html www.secnews.physaphae.fr/article.php?IdArticle=8513587 False Ransomware,Medical None 2.0000000000000000 Global Security Mag - Site de news francais mise à jour malveillant

---

Blackfog\'s latest May “State of Ransomware” report has just been released, and the Healthcare sector continues to dominate the most targeted sector by ransomware, with 57 attacks, a 30% increase on April! With a record 562 unreported attacks, and total of 65 reported attacks, this makes May the second highest month of the year so far, according to Darren Williams, CEO and Founder of Blackfog. “May saw our second highest month of the year with a total of 65 reported attacks and a record 562 (...) - Malware Update]]> 2024-06-05T12:18:54+00:00 https://www.globalsecuritymag.fr/healthcare-sector-dominates-most-targeted-sector-by-ransomware-in-may-blackfog.html www.secnews.physaphae.fr/article.php?IdArticle=8513641 False Ransomware,Medical None 2.0000000000000000 HackRead - Chercher Cyber London hospitals crippled by cyberattack! This incident highlights the growing threat of ransomware on healthcare systems worldwide. London’s…]]> 2024-06-04T17:21:50+00:00 https://hackread.com/london-nhs-ransomware-hospitals-targeted/ www.secnews.physaphae.fr/article.php?IdArticle=8513167 False Ransomware,Threat,Medical None 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial A report by the U.S. Cyberspace Solarium Commission (CSC) 2.0 highlights a significant rise in cyberattacks targeting the... ]]> 2024-06-04T16:19:26+00:00 https://industrialcyber.co/medical/us-cyberspace-solarium-commission-report-urges-enhanced-healthcare-cybersecurity-amid-rising-threats/ www.secnews.physaphae.fr/article.php?IdArticle=8513138 False Medical None 3.0000000000000000 Bleeping Computer - Magazine Américain A ransomware attack affecting pathology and diagnostic services provider Synnovis has impacted healthcare services at multiple major NHS hospitals in London. [...]]]> 2024-06-04T12:05:21+00:00 https://www.bleepingcomputer.com/news/security/major-london-hospitals-disrupted-by-synnovis-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8513135 False Ransomware,Medical None 3.0000000000000000 Mandiant - Blog Sécu de Mandiant   A version of this blog post was published to the Mandiant Advantage portal on April 18, 2024. Executive Summary In 2023, Mandiant observed an increase in ransomware activity as compared to 2022, based on a significant rise in posts on data leak sites and a moderate increase in Mandiant-led ransomware investigations. Mandiant observed an increase in the proportion of new ransomware variants compared to new families, with around one third of new families observed in 2023 being variants of previously identified ransomware families.  Actors engaged in the post-compromise deployment of ransomware continue to predominately rely on commercially available and legitimate tools to facilitate their intrusion operations. Notably, we continue to observe a decline in the use of Cobalt Strike BEACON, and a corresponding increase in the use of legitimate remote access tools. In almost one third of incidents, ransomware was deployed within 48 hours of initial attacker access. Seventy-six percent (76%) of ransomware deployments took place outside of work hours, with the majority occurring in the early morning.  Mandiant\'s recommendations to assist in addressing the threat posed by ransomware are captured in our Ransomware Protection and Containment Strategies: Practical Guidance for Hardening and Protecting Infrastructure, Identities and Endpoints white paper. Introduction Threat actors have remained driven to conduct ransomware operations due to their profitability, particularly in comparison to other types of cyber crime. Mandiant observed an increase in ransomware activity in 2023 compared to 2022, including a 75% increase in posts on data leak sites (DLS), and an over 20% increase in Mandiant-led investigations involving ransomware from 2022 to 2023 (Figure 1). These observations are consistent with other reporting, which shows a record-breaking more than $1 billion USD paid to ransomware attackers in 2023.  This illustrates that the slight dip in extortion activity observed in 2022 was an anomaly, potentially due to factors such as the invasion of Ukraine and the leaked CONTI chats. The current resurgence in extortion activity is likely driven by various factors, including the resettling of the cyber criminal ecosystem following a tumultuous year in 2022, new entrants, and new partnerships and ransomware service offerings by actors previously associated with prolific groups that had been disrupted. This blog post provides an overview of the ransomware landscape and common tactics, techniques, and procedures (TTPs) directly observed by Mandiant in 2023 ransomware incidents. Our analysis of TTPs relies primarily on data from Mandiant incident response engagements and therefore represe]]> 2024-06-03T14:00:00+00:00 https://cloud.google.com/blog/topics/threat-intelligence/ransomware-attacks-surge-rely-on-public-legitimate-tools/ www.secnews.physaphae.fr/article.php?IdArticle=8512326 False Ransomware,Data Breach,Spam,Malware,Tool,Vulnerability,Threat,Legislation,Prediction,Medical,Cloud,Commercial None 3.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-06-03T12:56:15+00:00 https://community.riskiq.com/article/eb5f1088 www.secnews.physaphae.fr/article.php?IdArticle=8512412 False Hack,Tool,Threat,Legislation,Medical None 3.0000000000000000 ProofPoint - Cyber Firms 2024-06-03T07:18:35+00:00 https://www.proofpoint.com/us/blog/corporate-news/celebrating-pride-2024-week-1 www.secnews.physaphae.fr/article.php?IdArticle=8512709 False Medical None 2.0000000000000000 SlashNext - Cyber Firm Le phishing d'identification est un type de cyberattaque où les attaquants tentent de tromper vos employés pour fournir leurs informations sensibles, telles que leurs noms d'utilisateur Microsoft et leurs mots de passe.Ce qui n'est pas évident, c'est le phishing des diplômes, c'est la cause profonde de nombreuses violations, y compris la récente violation des ransomwares chez UnitedHealth Filial Change Healthcare.Selon le PDG de UnitedHealth Group [& # 8230;] Le post Comprendre le phishing des informations d'identification .

---

>Credential phishing is a type of cyberattack where attackers attempt to deceive your employees into providing their sensitive information, such as their Microsoft usernames and passwords. What is not obvious is credential phishing is the root cause of many breaches, including the recent ransomware breach at UnitedHealth subsidiary Change Healthcare. According to UnitedHealth Group CEO […] The post Understanding Credential Phishing first appeared on SlashNext.]]> 2024-05-31T23:21:30+00:00 https://slashnext.com/blog/understanding-credential-phishing/ www.secnews.physaphae.fr/article.php?IdArticle=8510915 False Ransomware,Medical None 2.0000000000000000 Recorded Future - FLux Recorded Future 2024-05-31T21:35:21+00:00 https://therecord.media/hhs-changes-course-change-healthcare-breach-notifications-customers www.secnews.physaphae.fr/article.php?IdArticle=8510842 False Medical None 2.0000000000000000 RiskIQ - cyber risk firms (now microsoft) #### Targeted Geolocations - North America #### Targeted Industries - Education - ]]> 2024-05-29T17:09:34+00:00 https://community.riskiq.com/article/0bd219dd www.secnews.physaphae.fr/article.php?IdArticle=8509476 False Spam,Malware,Threat,Medical None 2.0000000000000000 ProofPoint - Cyber Firms 2024-05-29T05:00:00+00:00 https://www.proofpoint.com/us/blog/threat-insight/security-brief-sing-us-song-youre-piano-scam www.secnews.physaphae.fr/article.php?IdArticle=8509140 False Threat,Medical None 3.0000000000000000 The Register - Site journalistique Anglais In evolving smarter security, open source is the missing link Opinion  Some ideas work better than others. Take DARPA, the US Defense Advanced Research Projects Agency. Launched by US President Dwight Eisenhower in 1957 response to Sputnik, its job is to create and test concepts that may be useful in thwarting enemies. Along the way, it\'s helped make happen GPS, weather satellites, PC technology, and something called the internet.…]]> 2024-05-28T08:30:10+00:00 https://go.theregister.com/feed/www.theregister.com/2024/05/28/take_two_apis_and_call/ www.secnews.physaphae.fr/article.php?IdArticle=8508387 False Medical None 2.0000000000000000 Global Security Mag - Site de news francais nouvelles commerciales

---

Integrity360 expands offering with Armis partnership • Joint offering to provide organisations with complete visibility of their entire digital estate including IT, IoT, OT, and Healthcare assets • Managed services to enable companies to identify potential cyber security gaps and spot anomalies across their attack surface • Integrity360 expects heightened uptake across key sectors including healthcare, pharma, manufacturing, and utilities and increased demand from other verticals including financial services and retail - Business News]]> 2024-05-23T09:14:42+00:00 https://www.globalsecuritymag.fr/integrity360-expands-offering-with-armis-partnership.html www.secnews.physaphae.fr/article.php?IdArticle=8505342 False Industrial,Medical None 3.0000000000000000 Dark Reading - Informationweek Branch Upgrade, an ARPA-H program, will focus on automating cybersecurity for healthcare institutions so that providers can focus on patient care.]]> 2024-05-22T20:04:10+00:00 https://www.darkreading.com/cybersecurity-operations/us-pumps-50m-into-better-healthcare-cyber-resilience www.secnews.physaphae.fr/article.php?IdArticle=8504967 False Medical None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a security flaw impacting NextGen Healthcare Mirth Connect to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The flaw, tracked as CVE-2023-43208 (CVSS score: N/A), concerns a case of unauthenticated remote code execution arising from an incomplete]]> 2024-05-21T12:43:00+00:00 https://thehackernews.com/2024/05/nextgen-healthcare-mirth-connect-under.html www.secnews.physaphae.fr/article.php?IdArticle=8503888 False Vulnerability,Medical None 3.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-05-20T14:19:33+00:00 https://community.riskiq.com/article/8374cff8 www.secnews.physaphae.fr/article.php?IdArticle=8503469 False Ransomware,Malware,Tool,Vulnerability,Threat,Medical None 2.0000000000000000 SecurityWeek - Security News MediseCure indique que les données liées aux prescriptions distribuées jusqu'en novembre 2023 ont été compromises dans une attaque de ransomware.

---

>MediSecure says data related to prescriptions distributed until November 2023 was compromised in a ransomware attack. ]]> 2024-05-20T10:48:34+00:00 https://www.securityweek.com/medisecure-data-breach-impacts-patient-and-healthcare-provider-information/ www.secnews.physaphae.fr/article.php?IdArticle=8503348 False Ransomware,Data Breach,Medical None 2.0000000000000000 Checkpoint Research - Fabricant Materiel Securite Pour les dernières découvertes de cyber-recherche pour la semaine du 20 mai, veuillez télécharger notre bulletin menace_intelligence.Les principales attaques et violations du fournisseur de prescriptions électroniques australien Medisesecure ont subi une attaque de ransomware importante, entraînant des perturbations généralisées et des violations de données.L'impact de l'attaque a été profond, affectant largement les données sur les soins de santé dans le pays.[& # 8230;]

---

>For the latest discoveries in cyber research for the week of 20th May, please download our Threat_Intelligence Bulletin. TOP ATTACKS AND BREACHES Australian electronic prescriptions provider MediSecure suffered a significant ransomware attack, leading to widespread disruptions and data breaches. The impact of the attack has been profound, broadly affecting healthcare data broadly in the country. […] ]]> 2024-05-20T10:46:02+00:00 https://research.checkpoint.com/2024/20th-may-threat-intelligence-report/ www.secnews.physaphae.fr/article.php?IdArticle=8503322 False Ransomware,Threat,Medical None 2.0000000000000000 The Register - Site journalistique Anglais Throw another healthcare biz on the barby, mate Australian prescriptions provider MediSecure is the latest healthcare org to fall victim to a ransomware attack, with crooks apparently stealing patients\' personal and health data.…]]> 2024-05-17T23:31:14+00:00 https://go.theregister.com/feed/www.theregister.com/2024/05/17/medisecure_ransomware_attack/ www.secnews.physaphae.fr/article.php?IdArticle=8501929 False Ransomware,Data Breach,Medical None 2.0000000000000000 Recorded Future - FLux Recorded Future 2024-05-17T17:38:34+00:00 https://therecord.media/ge-healthcare-ultrasound-vulnerabilities www.secnews.physaphae.fr/article.php?IdArticle=8501766 False Medical None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Multiple UK councils have warned that residents\' personal data may have been compromised following a ransomware attack on NRS Healthcare]]> 2024-05-17T13:45:00+00:00 https://www.infosecurity-magazine.com/news/uk-councils-data-breach-medical/ www.secnews.physaphae.fr/article.php?IdArticle=8501652 False Ransomware,Data Breach,Medical None 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial Nozomi Networks Labs researched Vivid T9, a device from the GE Healthcare Vivid ultrasound family and its associated... ]]> 2024-05-17T13:17:29+00:00 https://industrialcyber.co/vulnerabilities/vulnerabilities-in-ge-healthcare-vivid-ultrasound-system-could-allow-malicious-insiders-to-install-ransomware-access-patient-data/ www.secnews.physaphae.fr/article.php?IdArticle=8501650 False Ransomware,Vulnerability,Medical None 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial RELEDENS a annoncé un partenariat stratégique avec Cynerio pour fournir des services de cybersécurité spécifiquement adaptés au secteur européen de la santé ....

---

>Relyens announced a strategic partnership with Cynerio to deliver cybersecurity services tailored specifically for the European healthcare sector.... ]]> 2024-05-17T13:10:20+00:00 https://industrialcyber.co/news/relyens-cynerio-partner-to-introduce-advanced-healthcare-cybersecurity-solution-to-european-market/ www.secnews.physaphae.fr/article.php?IdArticle=8501651 False Medical None 3.0000000000000000 The Hacker News - The Hacker News est un blog de news de hack (surprenant non?) Security researchers have disclosed almost a dozen security flaws impacting the GE HealthCare Vivid Ultrasound product family that could be exploited by malicious actors to tamper with patient data and even install ransomware under certain circumstances. "The impacts enabled by these flaws are manifold: from the implant of ransomware on the ultrasound machine to the access and manipulation of]]> 2024-05-16T15:42:00+00:00 https://thehackernews.com/2024/05/researchers-uncover-11-security-flaws.html www.secnews.physaphae.fr/article.php?IdArticle=8500864 False Ransomware,Industrial,Medical None 4.0000000000000000 ProofPoint - Cyber Firms 2024-05-16T06:00:32+00:00 https://www.proofpoint.com/us/blog/email-and-cloud-threats/cybercriminals-increasingly-targeting-pharmacy-sector www.secnews.physaphae.fr/article.php?IdArticle=8501096 False Threat,Prediction,Medical None 3.0000000000000000 Checkpoint - Fabricant Materiel Securite Résumé de l'exécutif: les PDF sont devenus le vecteur dominant des pièces jointes malveillantes, représentant près de 3/4 de tous les fichiers malveillants au cours du dernier mois, cela marque une augmentation stupéfiante par rapport à 2023, lorsqu'elle a représenté 20%, car 83% de tous les fichiers malveillants sont des PDF.Le courrier électronique reste le vecteur de menace le plus élevé des cyberattaques, avec environ 90% de toutes les attaques à commencer par le courrier électronique.Selon les statistiques de Check Point Research, les e-mails malveillants se présentent sous toutes des formes, mais une grande quantité se produit avec des fichiers ou des pièces jointes malveillantes.En fait, 1 pièce jointe sur 246 et 1 [& # 8230;]

---

>Executive Summary: PDFs have become the dominant vector for malicious attachments, accounting for nearly 3/4th of all malicious files in the last month This marks a staggering rise from 2023, when it accounted for 20% Healthcare is hit the hardest, as 83% of all malicious files are PDFs. Email remains the top threat vector for cyberattacks, with about 90% of all attacks starting with email. According to statistics from Check Point Research, malicious emails come in all different forms, but a large amount occur with malicious files or attachments. In fact, 1 out of every 246 email attachments and 1 […] ]]> 2024-05-15T13:00:04+00:00 https://blog.checkpoint.com/harmony-email/pdf-based-email-threats-on-the-rise-fight-back-with-ai-powered-prevention/ www.secnews.physaphae.fr/article.php?IdArticle=8500227 False Threat,Medical None 3.0000000000000000 SecurityWeek - Security News Singing River Health System indique que les informations personnelles d'environ 900 000 personnes ont été volées lors d'une attaque de ransomware d'août 2023.

---

>Singing River Health System says the personal information of roughly 900,000 individuals was stolen in an August 2023 ransomware attack. ]]> 2024-05-15T11:04:55+00:00 https://www.securityweek.com/900k-impacted-by-data-breach-at-mississippi-healthcare-provider/ www.secnews.physaphae.fr/article.php?IdArticle=8500159 False Ransomware,Data Breach,Medical None 3.0000000000000000 RiskIQ - cyber risk firms (now microsoft) ## Snapshot The joint Cybersecurity Advisory (CSA) released by the FBI, CISA, HHS, and MS-ISAC provides detailed information on the Black Basta ransomware variant, a ransomware-as-a-service (RaaS) that has targeted critical infrastructure sectors, including healthcare. ## Description Black Basta affiliates gain initial access through techniques such as phishing, exploiting vulnerabilities, and abusing valid credentials. Once inside the victim\'s network, they employ a double-extortion model, encrypting systems and exfiltrating data. The threat actors use various tools for network scanning, reconnaissance, lateral movement, privilege escalation, exfiltration, and encryption, including SoftPerfect network scanner, BITSAdmin, PsExec, RClone, and Mimikatz. The Black Basta ransomware variant, operating as a RaaS, has impacted over 500 organizations globally as of May 2024, primarily gaining initial access through spearphishing, exploiting known vulnerabilities, and abusing valid credentials. The ransom notes do not generally include an initial ransom demand or payment instructions, but instead provide victims with a unique code and instruct them to contact the ransomware group via a .onion URL reachable through the Tor browser. The advisory urges critical infrastructure organizations, especially those in the Healthcare and Public Health (HPH) Sector, to apply recommended mitigations to reduce the likelihood of compromise from Black Basta and other ransomware attacks, and victims of ransomware are encouraged to report the incident to their local FBI field office or CISA. ## References ["#StopRansomware: Black Basta"](https://www.cisa.gov/news-events/cybersecurity-advisories/aa24-131a) CISA. (Accessed 2024-05-13)]]> 2024-05-14T20:40:25+00:00 https://community.riskiq.com/article/f32fd613 www.secnews.physaphae.fr/article.php?IdArticle=8499814 False Ransomware,Tool,Vulnerability,Threat,Medical None 3.0000000000000000 The Register - Site journalistique Anglais ]]> 2024-05-13T18:30:09+00:00 https://go.theregister.com/feed/www.theregister.com/2024/05/13/cisa_ascension_ransomware/ www.secnews.physaphae.fr/article.php?IdArticle=8499061 False Ransomware,Medical None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine A ransomware attack on US private healthcare provider Ascension has disrupted patient care, with several hospitals currently on diversion]]> 2024-05-13T12:30:00+00:00 https://www.infosecurity-magazine.com/news/ascension-ransomware-diverts/ www.secnews.physaphae.fr/article.php?IdArticle=8498900 False Ransomware,Medical None 3.0000000000000000 IndustrialCyber - cyber risk firms for industrial Les chercheurs de Vedere Labs de ForeScout ont révélé qu'un nouvel acteur de menace éminent, nommé & # 8216; RansomHub, & # 8217;a fait surface dans le ...

---

>Researchers at Forescout\'s Vedere Labs revealed that a new prominent threat actor, named ‘RansomHub,’ has surfaced in the... ]]> 2024-05-13T10:40:12+00:00 https://industrialcyber.co/ransomware/forescout-details-ransomhub-group-emerges-as-latest-cyber-threat-post-change-healthcare-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8498845 False Threat,Medical None 3.0000000000000000 Recorded Future - FLux Recorded Future 2024-05-10T17:53:08+00:00 https://therecord.media/cybersecurity-regulations-healthcare-industry-anne-neuberger-rsa www.secnews.physaphae.fr/article.php?IdArticle=8497341 False Medical None 3.0000000000000000 Dark Reading - Informationweek Branch The attack cut off access to electronic healthcare records (EHRs) and ordering systems, plunging the organization and its health services into chaos.]]> 2024-05-10T16:39:42+00:00 https://www.darkreading.com/cyberattacks-data-breaches/ascension-healthcare-hit-by-cyberattack www.secnews.physaphae.fr/article.php?IdArticle=8497314 False Medical None 3.0000000000000000 Bleeping Computer - Magazine Américain Ascension, a major U.S. healthcare network, is diverting ambulances from several hospitals due to a suspected ransomware attack that has been causing clinical operation disruptions and system outages since Wednesday. [...]]]> 2024-05-10T14:51:56+00:00 https://www.bleepingcomputer.com/news/security/healthcare-giant-ascension-redirects-ambulances-after-suspected-Black-Basta-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8497369 False Ransomware,Medical None 2.0000000000000000 SecurityWeek - Security News L'un des plus grands systèmes de santé aux États-Unis est de se précipiter pour contenir un hack qui provoque des perturbations et des «procédures de temps d'arrêt» dans les hôpitaux du pays.

---

>One of the largest healthcare systems in the United States is scrambling to contain a hack that\'s causing disruption and “downtime procedures” at hospitals around the country. ]]> 2024-05-10T13:33:33+00:00 https://www.securityweek.com/healthcare-giant-ascension-hacked-hospitals-diverting-emergency-service/ www.secnews.physaphae.fr/article.php?IdArticle=8497253 False Hack,Medical None 3.0000000000000000 AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC biomimetics. Nature’s inspiration for innovation in Spacesuits and Cyber Defense Not only is nature beautiful to look at, but it is also providing us with fantastic ideas for solving complex technological problems. The concept of biomimicry, which refers to drawing inspiration from natural systems to address human challenges, is now trending heavily in fields such as cybersecurity and space exploration. Biomimicry involves the creation and development of materials, structures, and systems that are inspired by biological entities and processes. For thousands of years, humans have turned to the natural world as a source of inspiration for innovations across various domains, including transportation and entertainment. This approach has led to significant advancements, such as the design of aircraft inspired by the aerodynamics of bird wings and the development of anti-glare screens modeled after the intricate nanostructures found in moth eyes. By observing and emulating the unique characteristics of wildlife, we have continuously found ways to enhance our technological capabilities and improve the quality of our daily lives. This field not only highlights the ingenuity inherent in nature but also underscores the potential for sustainable and efficient design solutions drawn from the biological world Nature’s Influence on Cybersecurity Data Masking Inspired by Moths The humble moth, with its ability to blend into its surroundings, provides a perfect metaphor for data masking in cybersecurity. This technique involves hiding real data among fake data, thereby protecting sensitive information from prying eyes. Steganography and the Chameleon Similarly, the chameleon\'s ability to change its color to match its environment mirrors the practice of steganography in cybersecurity. This method involves hiding information within non-secret data, much like concealing a secret message within an ordinary-looking image or audio file. Digital watermarking in multimedia is a practical application of this technique, helping to secure copyrights by embedding invisible codes within files. Consider some applications in different industry verticals: Sacrificial systems and deception Inspired by how some animals like lizards can shed their tails to protect vital organs, healthcare cybersecurity could utilize "sacrificial systems" - offering up less critical systems or data as decoys to distract and study cyber attackers, buying time to strengthen protection of the most sensitive medical information. Biomimicry in Space Suits: A Journey from Earth to Beyond Radiation Protection Inspired by Fungi Recent studies have explored the potential of fungi, particularly those thriving in the radioactive wasteland of Chernobyl, to protect astronauts from cosmic rays. These fungi utilize radiation as an energy source, suggesting their potential to develop into living, self-repairing shie]]> 2024-05-10T10:00:00+00:00 https://cybersecurity.att.com/blogs/security-essentials/wild-wisdom-what-technology-learns-from-the-natural-world www.secnews.physaphae.fr/article.php?IdArticle=8497111 False Studies,Medical None 3.0000000000000000 Bleeping Computer - Magazine Américain Security flaws in Telit Cinterion cellular modems, widely used in sectors including industrial, healthcare, and telecommunications, could allow remote attackers to execute arbitrary code via SMS. [...]]]> 2024-05-10T04:00:00+00:00 https://www.bleepingcomputer.com/news/security/widely-used-modems-in-industrial-iot-devices-open-to-sms-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8497313 False Industrial,Medical None 3.0000000000000000 Netskope - etskope est une société de logiciels américaine fournissant une plate-forme de sécurité informatique As 2024 continues forward, Australia and New Zealand’s critical infrastructure sectors face significant cybersecurity challenges. Critical infrastructure (CI) sectors–encompassing energy, healthcare, transportation, water, and communication–are at a pivotal moment in their evolution. The rapid digitisation of these sectors brings not only unprecedented efficiency and connectivity but also a significantly expanded attack surface. This evolution heightens […] ]]> 2024-05-09T22:00:00+00:00 https://www.netskope.com/blog/strengthening-anzs-critical-infrastructure-sectors-against-cyber-threats-in-2024 www.secnews.physaphae.fr/article.php?IdArticle=8496811 False Medical None 3.0000000000000000 McAfee Labs - Editeur Logiciel Les trackers de fitness portés au poignet, les moniteurs de glucose qui testent la glycémie sans piqûre et les brosses à dents connectées qui laissent ...

---

> Fitness trackers worn on the wrist, glucose monitors that test blood sugar without a prick, and connected toothbrushes that let... ]]> 2024-05-09T12:15:03+00:00 https://www.mcafee.com/blogs/tips-tricks/seven-tips-for-protecting-your-internet-connected-healthcare-devices/ www.secnews.physaphae.fr/article.php?IdArticle=8496644 False Medical None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine MedStar Health and DocGo have become the latest US healthcare providers to announce cybersecurity incidents]]> 2024-05-08T08:45:00+00:00 https://www.infosecurity-magazine.com/news/medstar-health-docgo-data-breaches/ www.secnews.physaphae.fr/article.php?IdArticle=8495788 False Medical None 3.0000000000000000 The Register - Site journalistique Anglais \'I\'m blown away by the fact that they weren\'t using MFA\' Interview  The cybersecurity practices that led up to the stunning Change Healthcare ransomware infection indicate "egregious negligence" on the part of parent company UnitedHealth, according to Tom Kellermann, SVP of cyber strategy at Contrast Security.…]]> 2024-05-08T02:58:12+00:00 https://go.theregister.com/feed/www.theregister.com/2024/05/08/unitedhealths_egregious_negligence/ www.secnews.physaphae.fr/article.php?IdArticle=8495628 False Ransomware,Medical None 3.0000000000000000 Techworm - News Lockbit a fait des ravages à travers le monde, entraînant près de 500 millions de dollars en rançon. Enfin, son créateur Dmitry Khoroshev, alias Lockbitsupp, est identifié par NCA, FBI et International Partners comme faisant partie de l'opération Cronos Taskforce. Khoroshev a apprécié l'anonymat mais il n'a pas duré longtemps.Le Créateur de Lockbit était si confiant de son secret qu'il a offert 10 millions de dollars à quiconque a révélé son identité. ]]> 2024-05-07T23:33:17+00:00 https://www.techworm.net/2024/05/lockbit-ransomware-creator-face-revealed.html www.secnews.physaphae.fr/article.php?IdArticle=8495396 False Ransomware,Legislation,Medical None 3.0000000000000000 AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC Pendant ce temps, la technologie progresse à un rythme effréné, tout comme les risques posés par les cybermenaces.Le rapport FUTURESTM de niveau 2024 révèle cet acte d'équilibrage délicat entre l'innovation et la sécurité.Nous avons examiné l'ensemble des problèmes commerciaux impliqués dans la résilience cyber et de cybersécurité et découvert le leadership exécutif et le leadership technique ont des opportunités pour un alignement beaucoup plus profond. Obtenez votre copie gratuite du rapport. & nbsp; La quête insaisissable de la cyber-résilience. Imaginez un monde où les entreprises sont imperméables aux cybermenaces & mdash; un monde où chaque aspect d'une organisation est sauvegardé contre les perturbations potentielles.C'est l'idéal élevé de la cyber-résilience, mais pour de nombreuses entreprises, elle reste un objectif insaisissable.L'évolution rapide de l'informatique a transformé le paysage informatique, brouillant les lignes entre les logiciels propriétaires et open-source, les systèmes hérités, les initiatives de transformation numérique du cloud computing.Bien que ces progrès apportent des avantages indéniables, ils introduisent également des risques sans précédent. Selon nos recherches, 85% des leaders informatiques reconnaissent que l'innovation informatique a le prix d'un risque accru.Dans un monde où les cybercriminels deviennent de plus en plus sophistiqués, le besoin de cyber-résilience n'a jamais été aussi urgent.Des attaques de ransomwares massives aux incidents DDOS débilitants, les entreprises opèrent dans un climat où une seule cyber violation peut avoir des conséquences catastrophiques. Exploration de la relation entre le leadership exécutif et la cyber-résilience. Notre enquête auprès de 1 050 C-suite et cadres supérieurs comprenait 18 pays et sept industries: énergie et services publics, services financiers, soins de santé, fabrication, commerce de détail, transport et SLED américain (État, gouvernement local et enseignement supérieur).Dans les prochains mois, nous publierons un rapport vertical pour chaque marché.Ce rapport Landmark a été conçu pour aider les organisations à commencer à parler plus de manière réfléchie des vulnérabilités et des opportunités d'amélioration. Dans le rapport, vous & rsquo; ll: Découvrez pourquoi les chefs d'entreprise et les chefs de technologie ont besoin de hiérarchiser la cyber-résilience. découvrez les obstacles critiques à la cyber-résilience. Découvrez les défis concernant la résilience de la cybersécurité. ]]> 2024-05-07T12:05:00+00:00 https://cybersecurity.att.com/blogs/security-essentials/2024-cyber-resilience-research-reveals-a-complex-terrain www.secnews.physaphae.fr/article.php?IdArticle=8496672 False Ransomware,Vulnerability,Medical,Cloud,Technical None 3.0000000000000000 SecureMac - Security focused on MAC Des débats de sécurité des données aux solutions de datation plus sûres: découvrez comment les fonctionnalités de la date \\ 'de Tinder \' partagent ma date \\ '.

---

>From data security debates to safer dating solutions: Discover how Tinder\'s \'Share My Date\' feature tackles privacy concerns amidst the Change Healthcare breach fallout. ]]> 2024-05-06T15:12:16+00:00 https://www.securemac.com/checklist/checklist-checklist-374-2fa-minus-one www.secnews.physaphae.fr/article.php?IdArticle=8494683 False Medical None 2.0000000000000000 Schneier on Security - Chercheur Cryptologue Américain Reconceptualiser la sécurité & # 8221; TEDXCAMBRIDGE 2013: & # 8220; La bataille pour le pouvoir sur Internet & # 8221; Tedmed 2016: & # 8220; Qui contrôle vos données médicales ? & # 8221; i & # 8217; je mets ceci ici parce que je veux les trois liens en un seul endroit.

---

I have spoken at several TED conferences over the years. TEDxPSU 2010: “Reconceptualizing Security” TEDxCambridge 2013: “The Battle for Power on the Internet” TEDMed 2016: “Who Controls Your Medical Data?” I’m putting this here because I want all three links in one place.]]> 2024-05-03T18:13:24+00:00 https://www.schneier.com/blog/archives/2024/05/my-ted-talks.html www.secnews.physaphae.fr/article.php?IdArticle=8493129 False Medical None 2.0000000000000000 RiskIQ - cyber risk firms (now microsoft) 2024-05-01T19:01:06+00:00 https://community.riskiq.com/article/9a596ba8 www.secnews.physaphae.fr/article.php?IdArticle=8492017 False Malware,Tool,Threat,Medical,Commercial None 3.0000000000000000 CyberScoop - scoopnewsgroup.com special Cyber Le PDG de UnitedHealth Group, Andrew Witty, a déclaré au Comité du Sénat que le changement de santé n'a pas été activé par le MFA sur le serveur qui a été attaqué en février, ce qui a entraîné un paiement de rançon de 22 millions de dollars.

---

>UnitedHealth Group CEO Andrew Witty tells Senate committee that Change Healthcare didn\'t have MFA enabled on the server that was attacked in February, resulting in a $22 million ransom payment. ]]> 2024-05-01T18:11:26+00:00 https://cyberscoop.com/change-healthcare-attack-stolen-data-ransom-andrew-witty-unitedhealth/ www.secnews.physaphae.fr/article.php?IdArticle=8491974 False Medical None 2.0000000000000000 ProofPoint - Cyber Firms 2024-05-01T05:12:14+00:00 https://www.proofpoint.com/us/blog/information-protection/whats-best-way-stop-genai-data-loss-take-human-centric-approach www.secnews.physaphae.fr/article.php?IdArticle=8491708 False Tool,Medical,Cloud ChatGPT 3.0000000000000000 The Register - Site journalistique Anglais Congress to hear how Citrix MFA snafu led to data theft, $870M+ loss UnitedHealth CEO Andrew Witty will tell US lawmakers Wednesday the cybercriminals who hit Change Healthcare with ransomware used stolen credentials to remotely access a Citrix portal that didn\'t have multi-factor authentication enabled.…]]> 2024-04-30T20:02:59+00:00 https://go.theregister.com/feed/www.theregister.com/2024/04/30/unitedhealth_ceo_ransom/ www.secnews.physaphae.fr/article.php?IdArticle=8491441 False Ransomware,Medical None 3.0000000000000000 Techworm - News Rapport Partagé avec les nouvelles du pirate . De plus, la vulnérabilité peut être exploitée par le chargement des fichiers RDS (R Data Serialization) ou des packages R, qui sont souvent partagés entre les développeurs et les scientifiques des données. Selon les chercheurs, un attaquant peut créer des fichiers RDS malveillants ou des packages R contenant du code R arbitraire intégré qui s'exécute sur le dispositif cible de la victime sur l'interaction.En d'autres termes, la vulnérabilité permet à un attaquant d'élaborer un fichier RDS (R Data Serialization) malveillant qui effectue du code arbitraire lorsqu'il est chargé et référencé. Plusieurs fonctions au sein de R peuvent être utilisées pour sérialiser et désérialiser les données, qui diffèrent les unes des autres dans une certaine mesure mais tirent finalement le même code interne. par exemple, le processus de sérialisation & # 8211;serialize () ou saverds () & # 8211;et désérialisation & # 8211;Unserialize () et readrds () & # 8211;est également exploité lors de l'enregistrement et du chargement des packages R, laissant ainsi les utilisateurs exposés aux attaques de la chaîne d'approvisionnement. & nbsp; Les packages & # 8220; R sont vulnérables à cet exploit et peuvent donc être utilisés dans le cadre d'une attaque de chaîne d'approvisionnement via des référentiels de package.Pour qu'un attaquant reprenne un package R, il ne suffit pas de remplacer le fichier rdx La société a déclaré. Compte tenu de l'utilisation généralisée de R, HiddenLayer a révélé la vulnérabilité de sécurité à l'équipe de R, après quoi le problème a été résolu dans version 4.4.0 publié le 24 avril 2024. & # 8220; Un attaquant peut exploiter ce [défaut] en fabriquant un fichier au format RDS qui contient une instruction de promesse définissant la valeur sur unbound_value et l'expression de contenir du code arbitraire.En raison de l'évaluation paresseuse, l'expression ne sera évaluée et exécutée que lorsque le symbole associé au fichier RDS sera accessible, & # 8221;HiddenLayer ajouté. & # 8220; Par co]]> 2024-04-29T22:16:27+00:00 https://www.techworm.net/2024/04/vulnerability-r-programming-supply-chain-attacks.html www.secnews.physaphae.fr/article.php?IdArticle=8490776 False Vulnerability,Threat,Medical None 2.0000000000000000 Dark Reading - Informationweek Branch Tracking code used for keeping tabs on how members navigated through the healthcare giant\'s online and mobile sites was oversharing a concerning amount of information.]]> 2024-04-29T19:46:08+00:00 https://www.darkreading.com/cyberattacks-data-breaches/13-4m-kaiser-insurance-members-affected-by-data-leak-to-online-advertisers www.secnews.physaphae.fr/article.php?IdArticle=8490831 False Mobile,Medical None 2.0000000000000000 SecurityWeek - Security News Le géant américain de la santé avertit des millions de patients actuels et anciens que leurs informations personnelles ont été exposées à des annonceurs tiers.

---

>US healthcare giant is warning millions of current and former patients that their personal information was exposed to third-party advertisers. ]]> 2024-04-29T14:43:26+00:00 https://www.securityweek.com/kaiser-permanente-discloses-data-breach-impacting-13-4-million-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8490727 False Data Breach,Medical None 2.0000000000000000 Bleeping Computer - Magazine Américain Healthcare service provider Kaiser Permanente disclosed a data security incident that may impact 13.4 million people in the United States. [...]]]> 2024-04-26T05:34:06+00:00 https://www.bleepingcomputer.com/news/security/kaiser-permanente-data-breach-may-impact-134-million-patients/ www.secnews.physaphae.fr/article.php?IdArticle=8488979 False Data Breach,Medical None 2.0000000000000000 Dark Reading - Informationweek Branch How the CISO of Kenvue, a consumer healthcare company spun out from Johnson & Johnson, combined tools and new ideas to build out the security program.]]> 2024-04-25T14:31:25+00:00 https://www.darkreading.com/identity-access-management-security/jj-spin-off-ciso-maximize-cybersecurity www.secnews.physaphae.fr/article.php?IdArticle=8489058 False Tool,Medical None 2.0000000000000000 CompromisingPositions - Podcast Cyber C-PTSDLianne\'s Article The (AI) Revolution will be BORING...And that\'s Okay!Wearables, Shareables, Unbearable? The IOT and AI Tech Nobody Asked for But Cybersecurity Criminals Love. Future of CybersecurityMSc in Artificial Intelligence - ]]> 2024-04-24T23:00:00+00:00 https://www.compromisingpositions.co.uk/podcast/episode-27-ignore-all-previous-instructions-ai www.secnews.physaphae.fr/article.php?IdArticle=8516996 False Threat,Medical,Conference,Technical None 3.0000000000000000 Recorded Future - FLux Recorded Future 2024-04-24T17:48:28+00:00 https://therecord.media/plasma-donation-company-cyberattack-blacksuit www.secnews.physaphae.fr/article.php?IdArticle=8488122 False Medical None 3.0000000000000000 CyberScoop - scoopnewsgroup.com special Cyber Les révélations de la filiale UnitedHealth Group interviennent alors que la société reconnaît le paiement d'une rançon dans l'affaire.

---

>The revelations from the UnitedHealth Group subsidiary come as the company acknowledges paying a ransom in the case. ]]> 2024-04-23T17:54:29+00:00 https://cyberscoop.com/stolen-change-healthcare-data-could-contain-information-on-a-substantial-portion-of-americans/ www.secnews.physaphae.fr/article.php?IdArticle=8487540 False Medical None 3.0000000000000000 Recorded Future - FLux Recorded Future 2024-04-23T16:25:57+00:00 https://therecord.media/substantial-data-theft-change-healthcare-ransomware www.secnews.physaphae.fr/article.php?IdArticle=8487510 False Ransomware,Medical None 3.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine Millions of Americans may be impacted by the Change Healthcare data breach as UnitedHealth confirms exposed data includes personal and health information]]> 2024-04-23T14:45:00+00:00 https://www.infosecurity-magazine.com/news/americans-data-exposed-change/ www.secnews.physaphae.fr/article.php?IdArticle=8487453 False Data Breach,Hack,Medical None 3.0000000000000000 The Register - Site journalistique Anglais 2024-04-23T12:30:15+00:00 https://go.theregister.com/feed/www.theregister.com/2024/04/23/unitedhealth_admits_breach_substantial/ www.secnews.physaphae.fr/article.php?IdArticle=8487389 False Medical None 3.0000000000000000 SecurityWeek - Security News UnitedHealth confirme que des informations personnelles et de santé ont été volées dans une attaque de ransomware qui pourrait coûter à l'entreprise jusqu'à 1,6 milliard de dollars.

---

>UnitedHealth confirms that personal and health information was stolen in a ransomware attack that could cost the company up to $1.6 billion. ]]> 2024-04-23T12:08:17+00:00 https://www.securityweek.com/unitedhealth-says-patient-data-exposed-in-change-healthcare-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8487451 False Ransomware,Medical None 3.0000000000000000 Mandiant - Blog Sécu de Mandiant Attackers are taking greater strides to evade detection. This is one of the running themes in our latest release: M-Trends 2024. This edition of our annual report continues our tradition of providing relevant attacker and defender metrics, and insights into the latest attacker tactics, techniques and procedures, along with guidance and best practices on how organizations and defenders should be responding to threats. This year\'s M-Trends report covers Mandiant Consulting investigations of targeted attack activity conducted between January 1, 2023 and December 31, 2023. During that time, many of our observations demonstrate a more concerted effort by attackers to evade detection, and remain undetected on systems for longer periods of time: Increased targeting of edge devices, and platforms that traditionally lack endpoint detection and response solutions. A more than 50% growth in zero-day usage over the same reporting period in 2022, both by espionage groups as well as financially-motivated attackers. More “living off the land,” or use of legitimate, pre-installed tools and software within an environment. Despite the increased focus on evasion by attackers, we are pleased to report that defenders are generally continuing to improve at detecting threats. Dwell time represents the period an attacker is on a system from compromise to detection, and in 2023 the global median dwell time is now 10 days, down from 16 days in 2022. While various factors (such as ransomware) help drive down dwell time, it\'s still a big win for defenders. We can\'t let up, however. Mandiant red teams need only five to seven days on average to achieve their objectives, so organizations must remain vigilant. Other M-Trends 2024 metrics include: 54% of organizations first learned of a compromise from an external source (down from 63% in 2022), while 46% first identified evidence of a compromise internally. Our engagements most frequently occurred at financial services organizations (17.3%), business and professional services (13.3%), high tech (12.4%), retail and hospitality (8.6%), healthcare (8.1%), and government (8.1%). The most common initial infection vectors were exploits (38%), phishing (17%), prior compromise (15%), and stolen credentials (10%).  Additional topics covered in detail in M-Trends 2024 include Chinese espionage operations targeting the visibility gap, the evolution of phishing amid shifting security controls, the use of adversary-in-the-middle to overcome multi-factor authentication, cloud intrusion trends, an]]> 2024-04-23T12:00:00+00:00 https://cloud.google.com/blog/topics/threat-intelligence/m-trends-2024/ www.secnews.physaphae.fr/article.php?IdArticle=8500394 False Tool,Vulnerability,Threat,Medical,Cloud None 4.0000000000000000 Wired Threat Level - Security News The company belatedly conceded both that it had paid the cybercriminals extorting it and that patient data nonetheless ended up on the dark web.]]> 2024-04-23T03:55:10+00:00 https://www.wired.com/story/change-healthcare-admits-it-paid-ransomware-hackers/ www.secnews.physaphae.fr/article.php?IdArticle=8487165 False Ransomware,Medical None 3.0000000000000000 knowbe4 - cybersecurity services ]]> 2024-04-22T13:32:58+00:00 https://blog.knowbe4.com/4-out-of-5-of-physicians-impacted-by-februarys-cyberattack-on-change-healthcare www.secnews.physaphae.fr/article.php?IdArticle=8486826 False Medical None 3.0000000000000000 Bleeping Computer - Magazine Américain Synlab Italia has suspended all its medical diagnostic and testing services after a ransomware attack forced its IT systems to be taken offline. [...]]]> 2024-04-22T11:27:52+00:00 https://www.bleepingcomputer.com/news/security/synlab-italia-suspends-operations-following-ransomware-attack/ www.secnews.physaphae.fr/article.php?IdArticle=8486883 False Ransomware,Medical None 2.0000000000000000 The State of Security - Magazine Américain The experience of seeing a doctor has transformed dramatically, thanks in part to the emergence of telemedicine. This digital evolution promises convenience and accessibility but brings with it a host of cybersecurity risks that were unimaginable up until a few years ago. The unique cybersecurity challenges facing telemedicine today underscore the importance of adopting stringent security measures to protect the sanctity of this vital service. Advanced Cybersecurity Threats to Telemedicine The stakes are high as the healthcare sector grapples with the dual challenge of expanding digital...]]> 2024-04-22T02:35:34+00:00 https://www.tripwire.com/state-of-security/exploring-cybersecurity-risks-telemedicine-new-healthcare-paradigm www.secnews.physaphae.fr/article.php?IdArticle=8486676 False Medical None 3.0000000000000000 We Live Security - Editeur Logiciel Antivirus ESET What are the risks and consequences of having your health data exposed and what are the steps to take if it happens to you?]]> 2024-04-19T13:14:39+00:00 https://www.welivesecurity.com/en/videos/protecting-yourself-medical-data-breach-week-security-tony-anscombe/ www.secnews.physaphae.fr/article.php?IdArticle=8485905 False Data Breach,Medical None 3.0000000000000000 IT Security Guru - Blog Sécurité Le rapport révèle que l'industrie des soins de santé est désillusionnée dans sa préparation aux cyberattaques apparu pour la première fois sur gourou de la sécurité informatique .

---

Kroll, the leading independent provider of global risk and financial advisory solutions, has released the State of Cyber Defense: Diagnosing Cyber Threats in Healthcare report, exposing the healthcare industry\'s disillusionment in terms of its cyber maturity. The research reveals that over a quarter (26%) of healthcare businesses have immature cybersecurity processes yet nearly 50% believe […] The post Report Reveals Healthcare Industry is Disillusioned in its Preparedness for Cyberattacks first appeared on IT Security Guru. ]]> 2024-04-18T13:04:15+00:00 https://www.itsecurityguru.org/2024/04/18/report-reveals-healthcare-industry-is-disillusioned-in-its-preparedness-for-cyberattacks/?utm_source=rss&utm_medium=rss&utm_campaign=report-reveals-healthcare-industry-is-disillusioned-in-its-preparedness-for-cyberattacks www.secnews.physaphae.fr/article.php?IdArticle=8484716 False Medical None 2.0000000000000000 SecurityWeek - Security News Cherry Health indique que les informations personnelles de plus de 180 000 personnes ont été volées dans une attaque de ransomware.

---

>Cherry Health says the personal information of over 180,000 individuals was stolen in a ransomware attack. ]]> 2024-04-18T11:30:39+00:00 https://www.securityweek.com/180k-impacted-by-data-breach-at-michigan-healthcare-organization/ www.secnews.physaphae.fr/article.php?IdArticle=8484684 False Ransomware,Data Breach,Medical None 3.0000000000000000 Recorded Future - FLux Recorded Future 2024-04-17T16:21:42+00:00 https://therecord.media/cherry-health-ransomware-michigan www.secnews.physaphae.fr/article.php?IdArticle=8484243 False Ransomware,Medical None 2.0000000000000000 IndustrialCyber - cyber risk firms for industrial Members of the bipartisan U.S. House Energy and Commerce Committee are pressing UnitedHealth Group for answers regarding the... ]]> 2024-04-17T07:06:00+00:00 https://industrialcyber.co/medical/house-energy-and-commerce-committee-members-seek-answers-from-unitedhealth-on-change-healthcare-cyberattack/ www.secnews.physaphae.fr/article.php?IdArticle=8484089 False Medical None 2.0000000000000000 Wired Threat Level - Security News A cybercriminal gang called RansomHub claims to be selling highly sensitive patient information stolen from Change Healthcare following a ransomware attack by another group in February.]]> 2024-04-16T19:09:01+00:00 https://www.wired.com/story/change-healthcare-ransomhub-data-sale/ www.secnews.physaphae.fr/article.php?IdArticle=8483647 False Ransomware,Medical None 2.0000000000000000 The Register - Site journalistique Anglais 2024-04-16T12:59:00+00:00 https://go.theregister.com/feed/www.theregister.com/2024/04/16/change_healthcares_ransomware_attack_has/ www.secnews.physaphae.fr/article.php?IdArticle=8483427 False Ransomware,Medical None 2.0000000000000000 Bleeping Computer - Magazine Américain UnitedHealth Group reported an $872 million impact on its Q1 earnings due to the ransomware attack disrupting the U.S. healthcare system since February. [...]]]> 2024-04-16T10:24:54+00:00 https://www.bleepingcomputer.com/news/security/unitedhealth-change-healthcare-cyberattack-caused-872-million-loss/ www.secnews.physaphae.fr/article.php?IdArticle=8483497 False Ransomware,Medical None 3.0000000000000000 AlienVault Lab Blog - AlienVault est un acteur de defense majeur dans les IOC nuanced approach to cybersecurity—one that not only fortifies defenses but also resonates with and supports the people behind the screens. Integrating human-centric design with continuous threat management emerges as a forward-thinking strategy, promising a balanced blend of technical excellence and user empathy to navigate the complex cybersecurity challenges of today and tomorrow. Embracing the Human Element in Cybersecurity Diving into the realm of human-centric security design and culture, it\'s clear that the future of cybersecurity isn\'t just about the latest technology—it\'s equally about the human touch. This approach puts the spotlight firmly on enhancing the employee experience, ensuring that cybersecurity measures don\'t become an unbearable burden that drives people to take shortcuts. By designing systems that people can use easily and effectively, the friction often caused by stringent security protocols can be significantly reduced. Gartner\'s insights throw a compelling light on this shift, predicting that by 2027, half of all Chief Information Security Officers (CISOs) will have formally embraced human-centric security practices. This isn\'t just a hopeful guess but a recognition of the tangible benefits these practices bring to the table—reducing operational friction and bolstering the adoption of essential controls. This strategic pivot also acknowledges a fundamental truth. When security becomes a seamless part of the workflow, its effectiveness skyrockets. It\'s a win-win, improving both the user experience and the overall security posture. CTEM: Your Cybersecurity Compass in Stormy Seas Imagine that your organization\'s cybersecurity landscape isn\'t just a static battleground. Instead, it’s more like the open sea, with waves of threats coming and going, each with the potential to breach your defenses. That\'s where Continuous Threat Exposure Management (CTEM) sails in, serving as your trusted compass, guiding you through these treacherous waters. CTEM isn\'t your average, run-of-the-mill security tactic. It\'s about being proactive, scanning the horizon with a spyglass, looking for potential vulnerabilities before they even become a blip on a hacker\'s radar. Think of it as your cybersecurity early-warning system, constantly on the lookout for trou]]> 2024-04-16T10:00:00+00:00 https://cybersecurity.att.com/blogs/security-essentials/cybersecuritys-human-factor-merging-tech-with-people-centric-strategies www.secnews.physaphae.fr/article.php?IdArticle=8483336 False Vulnerability,Threat,Studies,Prediction,Medical,Technical None 2.0000000000000000 Recorded Future - FLux Recorded Future Alors que les hôpitaux américains ont du mal à payer leurs employés au milieu d'une cyberattaque qui a assommé un grand fournisseur de paiement, un puissant sénateur démocrate saisit le moment pour faire pression pour une meilleure sécurité dans le secteur de la santé profondément vulnérable.Le sénateur Mark Warner (D-VA) a introduit une législation qui obligerait les hôpitaux et leurs fournisseurs technologiques à mettre en œuvre

---

As U.S. hospitals struggle to pay their employees amid a cyberattack that knocked out a major payment vendor, a powerful Democratic senator is seizing the moment to push for better security in the sorely vulnerable healthcare sector. Sen. Mark Warner (D-VA) has introduced legislation that would require hospitals and their technology vendors to implement]]> 2024-04-10T13:50:06+00:00 https://therecord.media/senator-mark-warner-sees-new-momentum-for-cybersecurity-healthcare-push www.secnews.physaphae.fr/article.php?IdArticle=8479342 False Legislation,Medical None 3.0000000000000000 Checkpoint - Fabricant Materiel Securite Augmentation récurrente des cyberattaques: le premier trimestre 2024 a connu une augmentation marquée de 28% du nombre moyen de cyberattaques par organisation à partir du dernier trimestre de 2023, bien qu'une augmentation de 5% de la fonction d'attaques soutenues par l'industrie soutenue: le fournisseur de matérielL'industrie a connu une augmentation substantielle de 37% de cyberattaques en glissement annuel, alors que le secteur de l'éducation / de la recherche, du gouvernement / militaire et de la santé a maintenu ses pistes en tant que secteurs les plus attaqués du premier trimestre 2024, contrastant les variances régionales: la région de l'Afrique a connu une augmentation notable de 20% dansLes cyberattaques, par opposition à l'Amérique latine, qui ont signalé une diminution de 20% des ransomwares en YOY continue de monter: l'Europe [& # 8230;]

---

>Recurring increase in cyber attacks: Q1 2024 saw a marked 28% increase in the average number of cyber attacks per organization from the last quarter of 2023, though a 5% increase in Q1 YoY Sustained Industry Attacks focus: The Hardware Vendor industry saw a substantial rise of 37% cyber attacks YoY, as the Education/Research, Government/Military and Healthcare sector maintained their leads as the most heavily attacked sectors in Q1 2024 Contrasting Regional Variances: The Africa region saw a notable 20% increase in cyber attacks, as opposed to Latin America, which reported a 20% decrease YoY Ransomware continues to surge: Europe […] ]]> 2024-04-10T13:00:24+00:00 https://blog.checkpoint.com/research/shifting-attack-landscapes-and-sectors-in-q1-2024-with-a-28-increase-in-cyber-attacks-globally/ www.secnews.physaphae.fr/article.php?IdArticle=8479335 False Ransomware,Medical None 3.0000000000000000 SecurityWeek - Security News Les informations personnelles de 500 000 personnes ont été compromises dans une violation de données chez Group Health Cooperative of South Central Wisconsin.

---

>The personal information of 500,000 people was compromised in a data breach at Group Health Cooperative of South Central Wisconsin. ]]> 2024-04-10T11:06:41+00:00 https://www.securityweek.com/530k-impacted-by-data-breach-at-wisconsin-healthcare-organization/ www.secnews.physaphae.fr/article.php?IdArticle=8479277 False Data Breach,Medical None 3.0000000000000000 CyberScoop - scoopnewsgroup.com special Cyber Les données comprendraient les informations personnelles et les détails de la santé pour les clients d'une variété d'entreprises liées au processeur de paiement.

---

>The data reportedly includes personal information and health details for customers of a variety of companies linked to the payment processor. ]]> 2024-04-09T20:57:47+00:00 https://cyberscoop.com/extortion-group-threatens-to-sell-change-healthcare-data/ www.secnews.physaphae.fr/article.php?IdArticle=8478907 False Medical None 2.0000000000000000 InfoSecurity Mag - InfoSecurity Magazine RansomHub has surfaced threatening to expose stolen data unless another ransom is paid]]> 2024-04-09T15:30:00+00:00 https://www.infosecurity-magazine.com/news/change-healthcare-double-cyber/ www.secnews.physaphae.fr/article.php?IdArticle=8478777 False Medical None 2.0000000000000000 SecurityWeek - Security News La société de soutien à l'analyse économique et aux litiges GMA affirme que les informations personnelles et médicales ont été volées en mai 2023 violation de données.

---

>Economic analysis and litigation support firm GMA says personal and medical information was stolen in a May 2023 data breach. ]]> 2024-04-09T10:56:16+00:00 https://www.securityweek.com/doj-collected-information-exposed-in-data-breach-affecting-340000/ www.secnews.physaphae.fr/article.php?IdArticle=8478633 False Data Breach,Medical None 2.0000000000000000