Healthcare organizations targeted with Maui ransomware
A less known ransomware threat dubbed Maui has been and is likely to continue hitting healthcare organizations, a new CISA alert warns. Maui is unusual in many ways: it does not show a ransom note, it does not rely upon external infrastructure to rec.....»»
Pressure mounts on CISOs as SEC bares teeth with legal action
A Panaseer investigation into organizations’ annual 10-K filings reported to the SEC shows that from January-May 2024, at least 1,327 filings mentioned NIST – a key indicator that cybersecurity posture is present in a filing. This compares to jus.....»»
Exploring the relationship between civilians and military organizations through an experiment in Japan
In democracies where civilian control is followed, the power to make crucial decisions, like those of national security, is mainly exercised by elected officials, allowing the citizens who elect them to influence such decisions indirectly. This role.....»»
Concentric AI’s compliance feature helps organizations identify and address compliance risks
Concentric AI announced it has incorporated new industry compliance capabilities into its Semantic Intelligence DSPM solution. With these new innovative features, Concentric AI now identifies data risk within organizations’ environments applicable.....»»
Improving OT cybersecurity remains a work in progress
Organizations have made progress in the past 12 months related to advancing their OT security posture, but there are still critical areas for improvement as IT and OT network environments continue to converge, according to Fortinet. Cyberattacks that.....»»
Pure Storage enhances its platform with cyber resiliency services and capabilities
Pure Storage announced three new Storage as-a-Service (STaaS) service-level agreements (SLAs) for the Pure Storage platform – cyber recovery and resilience and site rebalance – further empowering organizations to guarantee outcomes and re.....»»
Clever macOS malware delivery campaign targets cryptocurrency users
Cryptocurrency users are being targeted with legitimate-looking but fake apps that deliver information-stealing malware instead, Recorded Future’s researchers are warning. The threat actor behind this complex scheme is going after both Windows.....»»
Find out which cybersecurity threats organizations fear the most
This article compiles excerpts from various reports, presenting statistics and insights on cybersecurity threats faced by businesses and individuals alike. Cyber insurance isn’t the answer for ransom payments Veeam | 2024 Ransomware Trends Rep.....»»
Veritas Data Insight classifies and controls unstructured data
Veritas Technologies announced better choice and flexibility for customers requiring data compliance solutions. Veritas Data Insight, which allows organizations to assess and mitigate unstructured and sensitive data compliance and cyber resilience ri.....»»
Medibank breach: Security failures revealed (lack of MFA among them)
The 2022 Medibank data breach / extortion attack perpetrated by the REvil ransomware group started by the attackers leveraging login credentials stolen from a private computer of an employee of a Medibank’s IT contractor. According to a stateme.....»»
Mass exploitation is the new primary attack vector for ransomware
The cyber threat landscape in 2023 and 2024 has been dominated by mass exploitation, according to WithSecure. Edge service KEV vulnerability trends 64% of all edge service and infrastructure Common Vulnerabilities and Exposures (CVEs) in the Known Ex.....»»
Metomic’s Google User Groups feature alerts users when sensitive data might be at risk
Metomic launched its new integration with Google Groups. The feature enables IT and security teams to ensure data loss prevention (DLP) across all business units that leverage Google Groups, allowing organizations to better manage and enforce data se.....»»
The rise of SaaS security teams
In this Help Net Security interview, Hillary Baron, Senior Technical Director for Research at CSA, highlights that the recent surge in organizations establishing dedicated SaaS security teams is driven by significant data breaches involving widely us.....»»
Ransomware attackers quickly weaponize PHP vulnerability with 9.8 severity rating
TellYouThePass group opportunistically infects servers that have yet to update. Enlarge (credit: Getty Images) Ransomware criminals have quickly weaponized an easy-to-exploit vulnerability in the PHP programming language.....»»
Auto groups, energy trade organizations sue EPA over tailpipe emissions rule
A group of automotive dealerships, teamed with key energy and agriculture trade organizations, have filed a lawsuit against the EPA over its tailpipe emissions rule that encourages production of electric vehicles......»»
Hyundai and Kia led U.S. in vehicle thefts in 2023 after TikTok videos
TikTok videos targeted 2011-21 Hyundai and Kia models that didn't have engine immobilizers......»»
PHP command injection flaw exploited to deliver ransomware (CVE-2024-4577)
An OS command injection vulnerability in Windows-based PHP (CVE-2024-4577) in CGI mode is being exploited by the TellYouThePass ransomware gang. Imperva says the attacks started on June 8, two days after the PHP development team pushed out fixes, and.....»»
CORL Companion automates the security assessment response for healthcare vendors
CORL released CORL Companion, an AI-powered assistant for healthcare vendors to automate and enhance security assessment response. The release reflects CORL’s continued attention on the healthcare vendor as a primary stakeholder in the third-party.....»»
Prevalent adds AI-powered enhancements to reduce risk assessment time
Prevalent announced that it added several AI-powered timesaving and threat-sensing enhancements to the Prevalent Third-Party Risk Management Platform, its SaaS solution used by hundreds of organizations around the world to manage, monitor and remedia.....»»
Scientists propose novel AI approach for lipid nanoparticles screening in mRNA delivery
The targeted treatment of pan-cancer by messenger RNA (mRNA) vaccine is a hot topic in drug research. A key challenge in mRNA design is the construction of delivery systems called lipid nanoparticles (LNPs), which serve as carriers to deliver mRNA th.....»»
Microsoft launches cybersecurity program to tackle attacks, protect rural hospitals
Microsoft has unveiled a new cybersecurity program to support hospitals serving more than 60 million people living in rural America. In 2023, the healthcare sector reported more ransomware attacks than any other critical infrastructure sector and att.....»»