Morphisec has uncovered a new malware threat known as ResolverRAT, which employs sophisticated techniques to execute code directly in computer memory. This malware dynamically assesses the system’s functions and resources while it operates, utilizing multiple layers of tactics to elude detection from security software. Recently identified by Morphisec researchers, ResolverRAT…
Strategic Communication Essential for Healthcare Cybercrises, Experts Say As healthcare organizations continue to grapple with the rising threat of cyber incidents, crisis communication planning is more critical than ever. Tom Bolitho, a crisis communications expert at FTI Consulting, emphasizes that the proactive development of a communications strategy is essential for…
Ransomware attacks have evolved into a major threat within the cybercrime landscape, predominantly characterized by hackers encrypting essential databases and demanding payment for access to decryption keys. This method of cyber extortion has already inflicted considerable disruption across various industries. However, cybercriminals continue to innovate and refine their tactics, becoming…
Tailoring Machine Identity Management to Industry-Specific Needs In today’s digital landscape, a standardized approach to machine identity management is proving inadequate for organizations across various sectors. Much like a race car designed for high-speed tracks faltering on mud or a monster truck taxing in urban settings, generic security strategies fail…
Data Privacy, Data Security, Healthcare HHS Highlights Security Vulnerabilities in Data Breach Affecting Nearly 300,000 Individuals Marianne Kolbasuk McGee (HealthInfoSec) • April 11, 2025 (Image: Northeast Radiology) A medical imaging firm operating in New York and Connecticut has agreed to a settlement of $350,000 with federal regulators due to potential…
Fraud Management & Cybercrime, Healthcare, Industry Specific Sen. Mark Warner Raises Concerns Over Oracle’s Role Amidst Security Breaches Marianne Kolbasuk McGee (HealthInfoSec) • April 9, 2025 Image: TikTok Concerns regarding Oracle’s potential acquisition of TikTok from its parent company, ByteDance, have been amplified following the software company’s two significant data…
Data Privacy, Data Security, Healthcare FTC Asserts 23andMe’s Privacy Obligations Must Be Honored Amid Bankruptcy Marianne Kolbasuk McGee (HealthInfoSec) • March 31, 2025 Image credit: 23andMe The Federal Trade Commission (FTC) has issued a communication to the bankruptcy trustees of 23andMe, emphasizing that any prospective sale of the genetic testing…
The Food and Drug Administration (FDA) recently released draft guidance on artificial intelligence (AI)-enabled medical devices, signaling an increase in regulatory oversight in this evolving field. Dr. Scott Schell, the chief medical officer at IT consulting firm Cognizant, emphasized that although the guidance is non-binding, it represents a pivotal shift…
For executives in healthcare, ensuring security compliance transcends mere regulatory obligations; it is integral to safeguarding the organization’s reputation, minimizing risks, and guaranteeing business continuity. In particular, HITRUST CSF e1 or i1 certifications can markedly boost patient confidence and health plan assurance while curtailing security vulnerabilities. Such certifications also pave…
