Healthcare Sector Faces New Cybersecurity Expectations Amid Medicare 2025 Rule Proposal In a significant development for the healthcare industry, federal regulators are hinting at the introduction of enhanced cybersecurity requirements tied to Medicare participation. The Centers for Medicare and Medicaid Services (CMS) recently included a brief announcement in its expansive…
Cerebral Fined Over Major Privacy Violations in Telehealth Services The U.S. Federal Trade Commission (FTC) has taken decisive action against Cerebral, a mental telehealth company, prohibiting it from utilizing or sharing personal medical data for advertising purposes. The company has also been levied a hefty fine exceeding $7 million in…
A hacker believed to be behind a significant series of breaches involving Snowflake accounts has been apprehended in Canada, following a request from U.S. law enforcement. The Canadian Justice Department confirmed the detention of Alexander Moucka, also known as Connor, under a provisional arrest warrant on October 30. Reports of…
Enhancing Cyber Resilience with CVSS: Understanding the Latest Developments in Vulnerability Scoring In late 2023, the unveiling of the Common Vulnerability Scoring System (CVSS) version 4.0 marked a significant advancement in vulnerability assessment methodologies. This updated framework, replacing its predecessor CVSS v3.0, focuses on improving the evaluation of vulnerabilities for…
A new malware loader known as HijackLoader is increasingly being adopted by cybercriminals to deploy various payloads, including information-stealing software such as DanaBot, SystemBC, and RedLine Stealer. First identified in July 2023, HijackLoader distinguishes itself with a modular architecture that allows for adaptable code injection and execution. This characteristic is…
Nokia Investigates Cyberattack Linked to Hacking Group IntelBroker Nokia has launched an extensive inquiry into a cyberattack reportedly executed by a hacking group identified as IntelBroker. This group has been disseminating sensitive corporate information across the internet for the last three days, prompting significant concerns both within Nokia and the…
US Cyber Defense Agency Disavows Election Fraud Allegations, Ensures Election Day Security The Cybersecurity and Infrastructure Security Agency (CISA) has firmly stated that there are no credible threats that could impact the outcome of the upcoming presidential election. In a press briefing held a day before the election on November…
A new Android Trojan, named SoumniBot, has been uncovered, specifically targeting users in South Korea by exploiting vulnerabilities in the Android manifest extraction and parsing procedures. This malware is distinctive for its unconventional methods of evasion, particularly through the obfuscation of the Android manifest, as revealed by Kaspersky researcher Dmitry…
In a recent address at the HIMSS Healthcare Cybersecurity Forum, cybersecurity experts John Riggi and Richard Staynings emphasized the significant cybersecurity threats that arise from third-party vendors and associated organizations. Riggi, a former FBI special agent and a national advisor for Cybersecurity and Risk at the American Hospital Association, highlighted…
