Collaborate Disseminate
A patient died after being redirected to another medical facility as the result of a German hospital having suffered a ransomware infection. On September 17, the Associated Press reported that a woman who needed urgent medical attention died after bein… Continue reading German Hospital Hit by Ransomware, Patient Dies After Being Redirected
The gang responsible for the Maze ransomware family conducted an attack in which they distributed their malware payload inside of a virtual machine (VM). Sophos’ Managed Threat Response (MTR) observed the technique in action while investigating an atta… Continue reading Maze Gang Distributed Ransomware Payload Inside VM
In a fast-changing world, stopping to assess your success isn’t really an option anymore. It is increasingly important that security teams are constantly proving their worth and tracking their successes with a view to constantly improving so as to not … Continue reading Building Your Team up to Win the Security Arms Race
A new SMS-based phishing (“smishing”) campaign is using the United States Postal Service (USPS) as a disguise to target mobile users. On September 15, SlickRockWeb CEO Eric JN Eliason tweeted out two examples of the operation. Both attack SMS messages … Continue reading New Smishing Campaign Using USPS as Its Disguise
Security culture matters to executives, but these individuals are struggling to implement it. In a November 2019 study commissioned by KnowBe4, 94% of individuals with managerial duties or higher in security or risk management said that security cultur… Continue reading Report: No Organization’s Security Culture Has Received ‘Excellent’ Score
The Office of Management at the U.S. Department of Veterans Affairs (VA) disclosed a security incident involving the personal data of 46,000 veterans. The VA detailed the data breach in a statement published on its website on September 14. According to… Continue reading Security Incident at VA Exposed 46K Veterans’ Information
The 2020 Cost of Data Breach report from IBM and the Ponemon is out. It provides a detailed analysis of causes, costs and controls that appeared in their sampling of data breaches. The report is full of data, and the website allows you to interact with… Continue reading Using the Cost of a Data Breach to Maximize Your ROI on Your Security Tools
The 2020 Cost of Data Breach report from IBM and the Ponemon is out. It provides a detailed analysis of causes, costs and controls that appeared in their sampling of data breaches. The report is full of data, and the website allows you to interact with… Continue reading Using the Cost of a Data Breach to Maximize Your ROI on Your Security Tools
A National Health Service (NHS) Trust revealed that it had mistakenly uploaded the personal information of over 18,000 people who had previously tested positive for coronavirus 2019 (COVID-19). On September 14, Public Health Wales announced in a web st… Continue reading Over 18K COVID-19 Patients’ Data Mistakenly Exposed by NHS Trust
A phishing attack used real-time validation against an organization’s Active Directory in order to steal users’ Office 365 credentials. According to Armorblox, the phishing attack targeted an executive working at an American brand that was named one of… Continue reading O365 Phishing Attack Used Real-Time Validation against Active Directory