The Cybersecurity and Infrastructure Security Agency, National Security Agency and international agencies Sept. 3 released joint guidance outlining a “software bill of materials” for organizations to strengthen cybersecurity, reduce risk and decrease costs.
Cybersecurity News
Latest
Chinese state-sponsored cyber actors are maliciously targeting networks globally, including telecommunications, government and others, according to a joint advisory released Aug. 27 by the National Security Agency, Cybersecurity and Infrastructure Security Agency, FBI, Department of Defense Cyber Crime Center and international agencies.
FBI warns Russian cybercriminals attacking devices using Cisco software with unpatched vulnerability
The FBI Aug. 20 released an advisory warning of malicious activity by Russian cyber actors targeting end-of-life devices running an unpatched vulnerability in Cisco Smart Install software.
The Cybersecurity and Infrastructure Security Agency, Environmental Protection Agency, National Security Agency, FBI and international agencies Aug. 13 released guidance for operational technology owners and operators to create and manage an OT asset inventory.
The Department of Justice Aug. 11 announced a series of actions taken against the BlackSuit ransomware group, also known as “Royal,” including the disruption of four servers and nine domains July 24.
The FBI, Cybersecurity and Infrastructure Security Agency and international agencies July 29 released a joint advisory on recent tactics by the Scattered Spider cybercriminal group. Scattered Spider threat actors typically engage in data theft for extortion and also use ransomware variants once in a system to steal information, along with other tactics.
Microsoft July 22 released an update on the ongoing cyberattacks to SharePoint servers used within organizations, attributing the incidents to China-based threat actors.
The FBI, Cybersecurity and Infrastructure Security Agency, Department of Health and Human Services and Multi-State Information Sharing and Analysis Center July 23 released a joint advisory detailing malicious activity from Interlock ransomware.
Microsoft July 19 issued an alert about active attacks from vulnerabilities targeting SharePoint servers used within organizations.
In his latest AHA Cyber and Risk Intel blog, Scott Gee, AHA deputy national advisor for cybersecurity and risk, explains how hospitals can prepare for and mitigate risk for both cyber and physical threats to the hospital environment.
Physical threats and cyberthreats are intertwined challenges that pose risks to your entire enterprise. Learn ways to respond from AHA Deputy National Advisor for Cybersecurity and Risk Scott Gee.
In a statement submitted to the Senate Health, Education, Labor and Pensions Committee for a hearing July 9 on health care cybersecurity and patient privacy, the AHA said the highest cyber risk for patient data is often through third-party service and software providers. The AHA encouraged Congress to use federal agencies and resources to protect hospitals and health systems, especially in rural areas.
Cyberattacks on hospitals are urgent threats to patient safety, care delivery and public trust. In this conversation, Ajay Gupta, board chair of Trinity Health Mid-Atlantic and CEO of HSR.health, speaks about the vital role hospital boards play in preparing for and responding to cyber incidents.
The Food and Drug Administration yesterday released a safety notice announcing a software patch is available to address cybersecurity vulnerabilities in certain Contec and Epsimed patient safety monitors.
The Cybersecurity and Infrastructure Security Agency, FBI, Department of Defense Cyber Crime Center and the National Security Agency June 30 released a fact sheet on Iranian-affiliated cyber actors who may target U.S. devices and networks due to geopolitical tensions.
The Centers for Medicare & Medicaid Services today announced it has identified a fraud scheme targeting Medicare providers and suppliers.
The FBI, Cybersecurity and Infrastructure Security Agency and Australian Cyber Security Centre June 4 released an advisory on updated actions and tactics used by the Play ransomware group.
The National Security Agency, Cybersecurity and Infrastructure Security Agency and international partners May 22 released guidance on securing data used for artificial intelligence and machine learning systems.
The FBI, along with the National Security Agency, and other international cybersecurity agencies, this week released a joint agency advisory on cyber operations by the Russian General Staff Main Intelligence Directorate (GRU), also known as APT28, Fancy Bear, Forest Blizzard, Blue Delta and other identifiers, targeting U.S. and global entities.
The FBI's Internet Crime Complaint Center released an alert May 7 warning of cyber actors exploiting vulnerabilities in end-of-life routers.