Cybersecurity strategies
The healthcare sector faces a variety of cyberthreats, but experts are constantly working to provide organizations with reliable cybersecurity strategies to address them. Learn about the latest tactics for tackling cyber risk, with efforts led by security practitioners, federal agencies and leading cybersecurity companies.
Top Stories
-
Feature
06 Oct 2025
Securing healthcare data in preparation for a post-quantum era
A post-quantum world may seem far off, but experts say that healthcare leaders should begin planning now to ensure that health data is protected. Continue Reading
-
Feature
02 Oct 2025
Preparing EHR systems for ransomware attacks
Experts weigh in on how proactive cybersecurity planning protects your patients. Continue Reading
-
News
11 Dec 2020
COVID-19-Related Phishing Lingers, as New Attacks Use Vaccine Themes
Armorblox finds hackers continue to prey on the COVID-19 pandemic via phishing campaigns, while KnowBe4 discovered phishing attacks leveraging vaccine themes. Continue Reading
-
News
08 Dec 2020
Flaws in GE Radiology Medical Device Authentication Pose Patient Data Risk
Discovered by CyberMDX, authentication flaws found in certain GE radiology medical devices put patient protected health data at risk of manipulation and exposure, according to CISA. Continue Reading
-
News
08 Dec 2020
NSA Warns Nation-State Actors Exploiting Remote Work Endpoints
Nation-state threat actors from Russia are using stolen credentials to actively exploit a recently disclosed vulnerability in certain VMWare Workspace platforms, used for remote work. Continue Reading
-
News
08 Dec 2020
33 TCP/IP Stack Flaws Pose Hacking Risk to Millions of IT, IoT Devices
Dubbed Amnesia:33, a group of TCP/IP Stack vulnerabilities found in millions of IT and IoT devices put these platforms at risk of hacking, remote code execution, and data loss. Continue Reading
-
News
03 Dec 2020
FBI: Business Email Compromise Attacks Abuse Email Auto-Forwarding
Medical and manufacturing sectors are being targeted with business email compromise attacks that abuse email auto-forwarding to hide successful phishing attacks from victims. Continue Reading
-
News
03 Dec 2020
Hackers Targeting COVID-19 Vaccine Supply Chain Via Phishing Campaigns
DHS CISA highlighted a new IBM X-Force report showing cybercriminals are targeting the COVID-19 vaccine supply chain with phishing and spear-phishing attacks. Continue Reading
-
News
02 Dec 2020
AMA Warns of Telehealth Cyber Risks, Insider Threats Tied to COVID-19
AMA sheds light on strained security resources, cyber risks, and the expanded threat landscape in the healthcare sector brought on by COVID-19, including insider threats and telehealth flaws. Continue Reading
-
News
01 Dec 2020
DHS CISA: Fortinet VPN Vulnerability Poses Password Exposure Risk
Disclosed in 2019, a vulnerability found in certain Fortinet VPN devices could allow an attacker to steal data, including passwords, if left unpatched. Continue Reading
-
News
27 Nov 2020
Threat Actors Spoofing Legitimate FBI Site Domains, Poses Cyberattack Risk
A recent FBI warned of an increase in the number of registered internet domains and email addresses spoofing legitimate FBI sites, which poses a potential cyberattack risk. Continue Reading
-
News
25 Nov 2020
FBI: Ragnar Locker Ransomware Attacks Increase With Data Theft Risk
The FBI warns entities of a rise in Ragnar Locker ransomware, where hackers gain a foothold on the network, perform reconnaissance, and steal data before deploying the final attack. Continue Reading
-
News
23 Nov 2020
Phishing Attacks Evade Security With Google Services, Social Engineering
Recent reports show two new phishing campaigns are leveraging free Google services and social engineering to bypass security measures to ensure the malicious messages make it to the inbox. Continue Reading
-
News
23 Nov 2020
Sanford Health, DSU Launch CyberHealth Innovation Hub
Designed to expand the cyber workforce and improve care delivery, Sanford Health and DSU’s CyberHealth innovation hub creates a program for understanding where cyber connects with healthcare. Continue Reading
-
Answer
19 Nov 2020
Millions of Medical Images Exposed, as US Fails to Secure PACS Flaws
A year out from a shocking report that revealed massive PACS vulnerabilities were exposing millions of medical images and data, and NNT shows the US has failed to secure those flaws. Continue Reading
-
News
18 Nov 2020
50% of Advanced Phishing Attacks Evade Leading Secure Email Gateways
A new IRONSCALES report finds as threat actors increasingly leverage social engineering scams, nearly half of these advanced phishing attacks bypass the leading secure email gateways. Continue Reading
-
News
17 Nov 2020
ASPR Warns Ransomware Threat is Persistent, as Actors Leak More Data
Threat actors leak data from a dental insurer and a healthcare provider this week, in the wake of an update from ASPR warning the sector that ransomware continues to be a persistent threat. Continue Reading
-
News
17 Nov 2020
Ransomware Groups Team Up, as Hackers Shift into Cloud Operations
A number of hacking groups, including those employing ransomware, are teaming up to expand the threat landscape and take advantage of stolen data troves in cloud-based operations. Continue Reading
-
News
16 Nov 2020
SSL-Based Cyberattacks Increase By 260%; Healthcare Most Targeted
The number of cyberattacks leveraging SSL encrypted channels to bypass legacy security controls increased by 260 percent since 2019. And healthcare was the most targeted sector. Continue Reading
-
News
16 Nov 2020
TrickBot Spear-Phishing Campaign Deploys Malware for Remote Access
Area 1 Security observed a widespread spear-phishing campaign tied to the notorious TrickBot actors, used to deploy two stealthy malware variants and gain remote access to the victim’s network. Continue Reading
-
News
13 Nov 2020
BD Discloses Alaris Medical Device Vulnerability, Poses DoS Attack Risk
A disclosed vulnerability found in the BD Alaris 8015 PC Unit and Systems Manager poses a Denial of Service (DoS) attack risk. DHS CISA is urging organizations to apply compensating controls. Continue Reading
-
News
13 Nov 2020
Nation-State Hacking Campaigns Targeting COVID-19 Research Firms
Microsoft has observed several hacking campaigns led by nation-state actors with ties to Russia and North Korea, actively targeting COVID-19 research, including firms developing vaccines. Continue Reading
-
News
10 Nov 2020
Profitable Hacking Campaign Targets VoIP SIP Servers, Sells System Access
Check Point researchers discovered a new, hacking campaign targeting the SIP servers used by multiple VoIP platforms to gain access and even make a profit from victim’s networks. Continue Reading
-
News
10 Nov 2020
Zoom Reaches Settlement with FTC Over Misleading Security Practices
The use of Zoom videoconferencing skyrocketed amid the COVID-19 crisis, which spotlighted several security risks and concerns. The FTC settlement will resolve the misleading security practices. Continue Reading
-
Answer
09 Nov 2020
Required Actions to Prevent Common Ransomware Exploits, Access Points
Healthcare is leaving out the proverbial welcome mat for hackers, failing to address key vulnerable endpoints, which later become top access points and exploits for ransomware attacks. Continue Reading
-
News
05 Nov 2020
Army National Guard Deployed to UVM to Assist Ransomware Recovery
The Vermont Governor deployed the Army National Guard’s Cyber Response team to the University of Vermont (UVM) Health Network a week after ransomware attack hobbled its network. Continue Reading
-
News
04 Nov 2020
50% of Ransomware Attacks Lead to Data Exfiltration; Payments Hit $234K
Ransom demands rose 31 percent from Q2 to Q3 2020, with an average of $234,000, while hackers threaten victims with extortion using exfiltrated data in nearly 50 percent of ransomware attacks. Continue Reading
-
News
30 Oct 2020
Microsoft: Threat Actors Exploiting Unpatched Windows Zerologon Flaw
DHS CISA alert highlights a Microsoft report that shows threat actors, including nation-state hackers, are actively exploiting a Windows Netlogon flaw, security researchers dubbed Zerologon. Continue Reading
-
Answer
29 Oct 2020
FDA Scoring Tool Update Adds Vulnerability Risk to Patient Safety
An update to the FDA Medical Device Development scoring tool takes into account how a medical device vulnerability would impact patient safety, improving transparent device security. Continue Reading
-
Answer
28 Oct 2020
Medical Device Security Stymied by Legacy Tech, Flawed Segmentation
Forescout’s Connected Medical Device Security report shows improved awareness around healthcare on network segmentation and legacy devices, but other security challenges remain. Continue Reading
-
News
28 Oct 2020
Phishing Campaigns Mimic Microsoft Teams, HHS COVID-19 Vaccine Tracker
In recent weeks, two phishing campaigns were spotted actively spoofing Microsoft Teams and the other disguised as emails from HHS with information about a COVID-19 vaccine tracker. Continue Reading
-
News
27 Oct 2020
NIST Shares Draft PNT Data Service Profile for Cybersecurity Framework
New NIST insights can help organizations mitigate cybersecurity risks facing critical technologies, including GPS tech leveraging PNT, used in the public health sectors and other industries. Continue Reading
-
Answer
23 Oct 2020
Rapid Threat Evolution Spurs Crucial Healthcare Cybersecurity Needs
Ransomware, phishing, and human weaknesses are serious cyber risks to health IT infrastructure amid COVID-19, which makes it crucial to improve security to combat evolving threats. Continue Reading
-
News
22 Oct 2020
Ransomware Hacking Groups Steal, Leak Data From 3 More Providers
REvil, Netwalker, and Conti ransomware hackers have once again posted proofs of data stolen in three separate provider hacks. One hack contains 600 GB of stolen data. Continue Reading
-
News
21 Oct 2020
NSA Warns Chinese Nation-State Actors Exploiting Vulnerabilities
DHS CISA is encouraging organizations to prioritize patching of 25 common vulnerabilities, as an NSA alert shows Chinese nation-state actors are actively exploiting those flaws. Continue Reading
-
News
20 Oct 2020
DOJ Indicts Russian Hackers Behind 2017 NotPetya Malware Attack
DOJ indicted the Russian hackers behind the 2017 NotPetya malware attack, which began on a Ukrainian company and spread across the globe, crippling several US firms, including Nuance. Continue Reading
-
News
19 Oct 2020
Proof-of-Concept Prompts Alert on SharePoint Remote Execution Flaw
DHS urges entities to heed an NSCS alert for a remote code execution flaw in Microsoft SharePoint, following the release of a proof-of-concept that would give a hacker control of a system. Continue Reading
-
News
15 Oct 2020
CISA Urges Patch of Windows Remote Code Execution TCP/IP Flaw, DoS Risk
US Cyber Command took to Twitter to urge organizations to immediately apply a Microsoft-issued patch for a critical remote code execution flaw in Windows TCP/IP, which poses a DoS risk. Continue Reading
-
News
13 Oct 2020
Top Strategies for Implementing Multi-Factor Authentication
Establishing multi-factor authentication in the healthcare setting is not as challenging as many organizations assume. Continue Reading
-
News
13 Oct 2020
UHS Health System Ransomware Attack, Security Probed by Senator
Sen. Mark Warner is asking Universal Health Services (UHS) health system to provide insights into its cybersecurity policies, following a massive ransomware attack and subsequent EHR outage. Continue Reading
-
News
12 Oct 2020
FBI, CISA Warn APT Hackers Chaining Vulnerabilities in Cyberattacks
APT hackers are targeting government networks, critical infrastructure, and election organizations with chained vulnerability cyberattacks, the FBI and CISA warned in a joint alert. Continue Reading
-
News
09 Oct 2020
Best Practice Cybersecurity to Prevent Business Email Compromise
Business email compromise attacks are three times more effective than traditional phishing methods. By employing best practice cybersecurity, healthcare entities can improve their defense. Continue Reading
-
News
09 Oct 2020
CHS Settles with 28 States for $5M Over 2014 Data Breach of 6.1M
Just two weeks after settling with OCR for $2.3 million over its 2014 health data breach, Community Health Systems (CHS) reached a settlement of $5 million with 28 states. Continue Reading
-
News
08 Oct 2020
DHS CISA Shares Best Practice Ransomware Guide, Telework Toolkit
Two recent releases from DHS CISA detail best practice guidance for ransomware and other threats, as well as a toolkit for transitioning into a secure, permanent telework environment. Continue Reading
-
News
07 Oct 2020
Report: 72% Orgs Faced Increase in IoT, Endpoint Security Incidents
Cybersecurity decision makers name malware, insecure networks, and remote access as the biggest threats to their organization, highlighting an increase in endpoint and IoT security incidents. Continue Reading
-
News
07 Oct 2020
US Ransomware Attacks Doubled in Q3; Healthcare Sector Most Targeted
New Check Point research examines the ransomware threat landscape for Q3 2020, noting a 50 percent increase in daily attacks. The healthcare sector is the most targeted globally. Continue Reading
-
News
06 Oct 2020
DHS CISA Warns of Resurgence of Emotet Trojan Malware Cyberattacks
Calling it one of the most prevalent ongoing threats, DHS CISA released another alert on the notorious Emotet trojan malware variants, following a surge in sophisticated cyberattacks. Continue Reading
-
News
06 Oct 2020
61% Microsoft Exchange Servers Are Unpatched, Vulnerable to Attack
Months after Microsoft released a software update for a memory corruption vulnerability found in its Exchange Servers, Rapid7 reports the majority remain unpatched and vulnerable to attack. Continue Reading
-
News
02 Oct 2020
4 Sophisticated Phishing Campaigns Impacting the Healthcare Sector
Phishing emails have grown in sophistication, with healthcare as the biggest target for credential theft. Understanding notable campaigns can help providers defend against these attacks. Continue Reading
-
News
30 Sep 2020
Ransomware Reigns, as Cyberattacks Increase in Sophistication, Frequency
Microsoft’s Digital Defense Report shows hackers are rapidly increasing both the sophistication and frequency of cyberattacks, with ransomware as the most common cause for incidents. Continue Reading
-
News
29 Sep 2020
CISA: Hackers Exploiting Unpatched Microsoft NetLogon Vulnerability
Microsoft and DHS CISA released multiple alerts and mitigation methods, including a partial patch, for a vulnerability found in Microsoft NetLogon, which hackers are actively exploiting. Continue Reading
-
News
25 Sep 2020
Top Healthcare Cybersecurity Resources from NIST, HHS, OCR, HSCC
Staffing challenges and budget constraints make it difficult for some healthcare entities bolster enterprise security. Resources from NIST, HHS, OCR, HSCC, and others can support the development of cybersecurity plans. Continue Reading
-
News
24 Sep 2020
HSCC Shares Toolkit for Supply Chain Cybersecurity Risk Management
The second release of the HSCC Supply Chain Cybersecurity Risk Management guidance for small- to mid-sized healthcare organizations provides a toolkit completing the five NIST CF requirements. Continue Reading
-
News
23 Sep 2020
DHS CISA Alerts to Rise in Credential Theft-Focused LokiBot Malware
Starting in July, the cybercriminals behind LokiBot malware, aimed at credential theft and information stealing, have increasingly targeted enterprise networks. Continue Reading
-
News
23 Sep 2020
Just 44% of Healthcare Providers Meet NIST Cybersecurity Standards
CynergisTek data shows that despite a dramatic increase in healthcare data breaches, cybersecurity progress in the sector is regressing as just 44 percent meet NIST standards. Continue Reading
-
News
22 Sep 2020
Senators Probe VA After Data Breach Affecting 46K Veterans, Providers
The VA recently reported that a hacker diverted payments to community health providers and funds meant for veterans’ medical treatments. A group of senators demands answers. Continue Reading
-
News
18 Sep 2020
3 Key Entry Points for Leading Ransomware Hacking Groups
Ransomware attacks rapidly increased in sophistication and impact this year, with healthcare as a prime target. Providers need to understand the entry points used by these hacking groups. Continue Reading
-
News
17 Sep 2020
Exploit Code Prompts CISA Alert to Microsoft Netlogon Vulnerability
A publicly available exploit code for a vulnerability that allows for elevation of privilege in Microsoft’s Netlogon will be an attractive target for cybercriminals, DHS CISA warns. Continue Reading
-
News
16 Sep 2020
Iranian Hackers Targeting, Exploiting VPN Flaws of US Healthcare, IT Orgs
FBI and CISA warn Iran-backed hackers are targeting US federal agencies and businesses, including those in healthcare and IT, exploiting known vulnerabilities in VPN connections. Continue Reading
-
Answer
14 Sep 2020
Cyber Resilient Vendor Relationships for Healthcare’s Threat Landscape
A healthcare third-party vendor breach can have a devastating impact on multiple entities, which means it’s crucial to have cyber resilient vendor relationships to keep pace with these threats. Continue Reading
-
News
10 Sep 2020
Phishing Campaign Uses Overlay Tactic for Employee Credential Theft
Cofense researchers detected a new phishing campaign leveraging message quarantine emails that use the homepage of the targeted company for employee credential theft. Continue Reading
-
News
09 Sep 2020
Zeppelin Ransomware Returns Using New Trojan to Evade Antivirus
First seen in the wild targeting healthcare in 2019, Juniper Threat Labs detected a wave of new Zeppelin ransomware employing a new trojan downloader to evade antivirus applications. Continue Reading
-
News
04 Sep 2020
5 Top Critical Vulnerabilities In Need of Patch, Software Update
An attacker only needs to exploit one flaw to gain a foothold onto a network. Given patch management challenges and a reliance on legacy tech, providers must update critical vulnerabilities. Continue Reading
-
Answer
02 Sep 2020
Healthcare’s Password Problem and The Need for Management, Vaults
Credential theft remains a prominent issue in healthcare. Given many are habitual in password reuse, the sector must improve its policies, management, and consider employing password vaults. Continue Reading
-
News
01 Sep 2020
CISA Shares Incident Detection, Response Playbook for Cyber Activity
The joint DHS CISA alert highlights the best practice methods for incident detection and remediation of malicious cyber activity, including mitigation steps and indicators of compromise. Continue Reading
-
News
01 Sep 2020
Report: Phishing Campaign Uses Hidden Text to Bypass Email Security
Using techniques that the average user would be unable to spot, a new phishing campaign is using hidden text, or what’s known as zero font, to bypass email security controls. Continue Reading
-
News
31 Aug 2020
Healthcare Key Target of Hacker Selling Access to Compromised RDP
A Nuspire report shows the hacker TrueFighter is actively targeting and compromising the remote desktop protocol (RDP) in a range of sectors, with healthcare as the key target. Continue Reading
-
News
27 Aug 2020
COVID-19 PPE Phishing Campaign Delivers Agent Tesla RAT Malware
A prominent phishing campaign has been preying on COVID-19 fears with targeted emails that offer personal protective equipment (PPE), but instead delivers Agent Tesla RAT malware. Continue Reading
-
Answer
26 Aug 2020
Key Needs for a Resilient Healthcare Information Security Program
Impact Advisor’s Shefali Mookencherry examines the current threat landscape and the tools entities need to build a resilient healthcare information security program. Continue Reading
-
News
25 Aug 2020
Credential Theft Via Spoofed Login Pages Increase, Healthcare Top Target
Hackers are drastically increasing credential theft attempts through social engineering and spoofed login pages, and healthcare recipients are the biggest target, IRONSCALES finds. Continue Reading
-
News
25 Aug 2020
FBI, CISA Alert of Surge in Vishing Cyberattacks on Remote Workers
Hackers are targeting remote workers through a voice phishing, or “vishing,” campaign in an effort to collect enterprise login credentials, later selling access to company networks. Continue Reading
-
News
24 Aug 2020
Search Engines May Expose Patient Health Information, ACR warns
New search engine capabilities used by Google, Bing, and other vendors may inadvertently expose patient identifiers and other protected health information, ACR, RSNA, and SIIM warn. Continue Reading
-
News
20 Aug 2020
Brute-Force P2P Botnet Targeting SSH Servers of Medical Centers, Banks
A sophisticated peer-to-peer (P2P) botnet has been actively breaching SSH servers with brute-force cyberattacks from a range of organizations, including medical centers, banks, and others. Continue Reading
-
News
19 Aug 2020
IBM: Remote Exploit Flaw Found in Millions of Connected IoT Devices
An IoT vulnerability has been uncovered in a host of Thales products, which are found in millions of connected devices, including medical devices, and can be remotely exploited. Continue Reading
-
News
19 Aug 2020
CISA Alerts to Phishing Campaign Deploying KONNI RAT Malware
Hackers are leveraging a phishing campaign to deploy KONNI malware, a remote access trojan (RAT), to steal data, capture keystrokes, take screenshots, and launch cyberattacks. Continue Reading
-
News
18 Aug 2020
Judge Dismisses Heritage Valley Malware Lawsuit Against Nuance
Heritage Valley Health System filed a lawsuit against Nuance after the vendor fell victim to the 2017 NotPetya malware attack, which then allegedly infected and damaged the health system’s network. Continue Reading
-
News
17 Aug 2020
Telehealth Adoption Requires Modern Identity Verification
It’s time for healthcare organizations to replace paper-based systems and manual processes with a biometric-based approach Continue Reading
-
News
13 Aug 2020
CISA Alerts to Phishing Campaign Spoofing COVID-19 Loan Relief Site
A hacking group has launched a malicious phishing campaign that spoofs the Small Business Administration COVID-19 loan relief website for credential stealing and malicious redirects. Continue Reading
-
News
12 Aug 2020
Citrix Urges Patch of Critical XenMobile Server Vulnerabilities
Warning that threat actors will likely move to quickly exploit the flaws, Citrix released patches for two critical vulnerabilities found in its XenMobile Server, a mobile device management platform. Continue Reading
-
News
12 Aug 2020
Microsoft Patches Remote Execution, Spoofing Flaws Under Active Exploit
DHS CISA alerted private sector organizations to two security updates released by Microsoft, which patch a spoofing flaw and a remote code execution vulnerability under active exploit. Continue Reading
-
News
11 Aug 2020
NIST Shares Final Zero Trust Architecture Strategies, Guidance
Developed in collaboration with federal agencies, the final NIST Zero Trust Architecture publication details the enterprise security model and provides a roadmap for deploying the concept. Continue Reading
-
News
10 Aug 2020
BEC Phishing Campaigns Bypass MFA, Target Office 365 Executive Accounts
Researchers observed an increase in business email compromise phishing campaigns able to bypass MFA, while Trend Micro found an uptick in BEC scams targeting executive Office 365 accounts. Continue Reading
-
News
10 Aug 2020
Breaking Down Telehealth Inclusivity Barriers for Older Adults
COVID-19 has greatly changed the outlook for virtual visits, but the process can be frustrating Continue Reading
-
News
06 Aug 2020
Hacker Leaks 900 Enterprise VPN Server Passwords on Dark Web
Threat intelligence firm KELA shared a list of more than 900 Pulse Secure VPN enterprise server usernames and passwords with ZDNet, which a hacker had posted on the dark web in plain text. Continue Reading
-
News
05 Aug 2020
FBI: Operating Windows 7 Increases Cyber Risk to Network Infrastructure
An industry alert from the FBI warns that network infrastructures still operating with Windows 7 platforms, after it reached end of life status in January 2020, are at an increased risk of cyberattack. Continue Reading
-
Answer
04 Aug 2020
The Risk of Nation-State Hackers, Government-Controlled Health Data
Throughout the COVID-19 pandemic, an increasing amount of health data is being controlled and stored by the government. As nation-state hacking increases, the risks to privacy will follow. Continue Reading
-
News
04 Aug 2020
COVID-19 Impact on Ransomware, Threats, Healthcare Cybersecurity
Interpol, Coveware, and Fortified Health Security shed light on how the COVID-19 crisis spurred an increase in ransomware and cybercriminal efforts to take advantage of the remote landscape. Continue Reading
-
News
03 Aug 2020
DHS CISA Alert Warns of Chinese-Backed Malware Cyberattacks
DHS CISA identified a malware variant known as Taidoor tied to the government of China, designed to maintain presence on victim networks and for further exploits and cyberattacks. Continue Reading
-
Answer
31 Jul 2020
How Zero Trust in Healthcare Can Keep Pace with the Threat Landscape
Hackers are outpacing healthcare in the overall cybersecurity race. Zero trust in healthcare can help stop attack proliferation, but it will be an uphill battle. Continue Reading
-
News
30 Jul 2020
FBI Alerts to Rise in Targeted Netwalker Ransomware Attacks
An FBI flash alert warns of a significant increase in targeted Netwalker ransomware attacks on US and foreign health agencies, governments, private companies, and education entities. Continue Reading
-
News
29 Jul 2020
Proposed COVID-19 Relief Bills Include Privacy, Security Funding
The COVID-19 relief package proposed by Senate Republicans would allocate $53 million to DHS CISA to protect research data, while Senate Democrats are urging for the inclusion of privacy protections. Continue Reading
-
News
29 Jul 2020
IBM: Health Sector Leads in Annual Data Breach Costs, Topping $7.13M
While the average global data breach costs for all sectors was just $3.86 million, IBM finds health sector breaches are the costliest at $7.13 million due to federal and state regulations, like HIPAA. Continue Reading
-
Answer
27 Jul 2020
COVID-19 Cybersecurity: Building Resilience Beyond the Crisis
Visibility, network access management, and automation are crucial to securing and building resilience to the healthcare infrastructure long after the COVID-19 pandemic ends. Continue Reading
-
News
27 Jul 2020
Telehealth Is the New Normal, But So Is Online Fraud
Given the breadth and scope of fraud threats, healthcare systems need to take a comprehensive three-pronged approach to cybersecurity. Continue Reading
-
News
23 Jul 2020
FBI Alerts to Rise in DDoS Attacks Via Exploited Built-In Network Protocols
Hackers are exploiting built-in network protocols to fuel more destructive distributed-denial-of-service (DDoS) cyberattacks using limited resources, according to a recent FBI alert. Continue Reading
-
News
22 Jul 2020
Emotet Malware Threat Actors Return with Massive Email Campaign
Reports from Proofpoint and Malwarebytes found the notorious Emotet malware threat actors have reemerged after a hiatus, sending 250,000 malicious emails with highly obfuscated macros. Continue Reading
-
News
22 Jul 2020
Top Risks of 1H 2020: Ransomware, Mobile, Health Infrastructure
Fueled by COVID-19, Skybox Security predicts over 20,000 vulnerability reports by the end of 2020, as hackers ramp up ransomware and health infrastructure and mobile device attacks. Continue Reading
-
News
21 Jul 2020
DOJ Accuses China of Targeted Hacking on COVID-19 Research Data
Two hackers are accused by DOJ of working with the Chinese government to target and hack hundreds of US entities, stealing more than a terabyte of data, including COVID-19 research. Continue Reading
-
News
20 Jul 2020
Feds Issue Emergency Directive to Patch Critical DNS Server Flaw
CISA officials stress that while the emergency directive on patching the critical Windows DNS server flaw is aimed at federal agencies, private sector organizations should also take immediate action. Continue Reading
-
News
20 Jul 2020
DHS Shares Insights on Network Tunneling, Obfuscating Cyberattacks
Threat actors leverage obfuscation, network tunneling, and spoofing techniques to mislead incident responders. New DHS CISA insights shed light on these cyberattack methods. Continue Reading
-
News
17 Jul 2020
Report Finds Serious Flaws in COVID-19 Vaccine Developers' Systems
BitSight assessed 17 biomedical companies publicly recognized for playing a role in the development of a COVID-19 vaccine and found many operate with serious security vulnerabilities. Continue Reading
-
News
16 Jul 2020
Russian Hackers Target COVID-19 Vaccine Developers with Cyberattacks
A UK NSCS advisory, supported by the NSA, warns the Russian hackers known as APT29 are targeting healthcare, pharma, and COVID-19 vaccine developers with cyberattacks to steal data. Continue Reading