Cybersecurity News

The Cybersecurity & Infrastructure Security Agency and FBI Jan. 31 urged small office and home office router manufacturers to eliminate exploitable defects in their products and integrate security into their product design and development, citing recent reports that threat actors known as “Volt Typhoon” and associated with the People’s Republic of China are exploiting defects in these products to compromise networks across U.S. critical infrastructure.

The Cybersecurity and Infrastructure Security Agency recently required federal agencies to take emergency action to protect against actively exploited vulnerabilities in the Ivanti Connect Secure and Ivanti Policy Secure remote access gateways.

The Department of Health and Human Services Jan. 24 released voluntary Cybersecurity Performance Goals for the sector, which include 10 “essential” and 10 “enhanced" goals.

The FBI, Department of Homeland Security and National Counterterrorism Center Jan. 12 reported ongoing bomb threats by malicious actors targeting synagogues, Jewish community centers, schools, hospitals, airports, government buildings and other public institutions in the United States.

The AHA has been made aware of a validated IT help desk social engineering scheme that uses the stolen identity of revenue cycle employees or employees in other sensitive financial roles.

The Government Accountability Office Dec. 21 recommended the Food and Drug Administration and Cybersecurity and Infrastructure and Security Agency update a 5-year-old agreement regarding medical device security.

The Department of Justice announced Dec. 19 the launch of a disruption campaign against a ransomware group that has targeted the computer networks of more than 1,000 victims, including networks that support critical U.S. infrastructure.

The FBI, Cybersecurity and Infrastructure Security Agency and Australian Cyber Security Centre Dec. 18 released a warning about actions and tactics used by the Play ransomware group.

The Cybersecurity and Infrastructure Security Agency Dec. 15 released an advisory on ways health care organizations can enhance their cybersecurity protection.

In new guidance for software manufacturers, cybersecurity agencies in the U.S. and United Kingdom urge every software manufacturer to implement memory safe programming languages (MSLs) and publish a roadmap that details how they will eliminate MSL vulnerabilities in their products.

The Department of Health and Human Services Dec. 6 released a concept paper outlining its cybersecurity strategy for the health care sector, which builds on a national strategy President Biden released last year.

Health care and other organizations that operate Unitronics Programmable Logic Controllers should protect the devices from potential compromise through default passwords, U.S. and Israeli agencies announced Dec. 2.

A Russian national Dec. 4 pleaded guilty to his role in developing and deploying a suite of malware tools known as Trickbot, used to launch ransomware attacks against American hospitals and other businesses, the Department of Justice announced.

The Department of Health and Human Services’ Health Sector Cybersecurity Coordination Center is urging hospitals and other critical infrastructure to take immediate action to patch and harden network systems to protect against a significant ransomware threat, the “Citrix Bleed” vulnerability.

Cyber actors attacking the Okta Help Center customer support management system in October downloaded a report containing the names and email addresses of all system users, and could use this inform

The U.S. Cybersecurity and Infrastructure Security Agency, U.K. National Cyber Security Centre and other global partners this week released recommended guidelines or secure artificial intelligence design, development, deployment and use.

The Cybersecurity and Infrastructure Security Agency, Federal Bureau of Investigation, Multi-State Information Sharing and Analysis Center and international partners are alerting health care and other critical infrastructure organizations of the threat of LockBit 3.0 ransomware, labeled "Citrix Bleed," which allows cyberthreat actors to bypass password requirements and multifactor authentication measures.

The Food and Drug Administration on Nov. 16 announced a new report from government contractor MITRE, Next Steps Toward Managing Legacy Medical Device Cybersecurity Risks.

The FBI and Cybersecurity and Infrastructure Security Agency Nov. 16 recommended health care and other critical infrastructure take steps to protect their networks from the Scattered Spider group, which uses social engineering techniques and legitimate remote access tools to compromise victim networks, extort ransom and steal data. 

The FBI, Cybersecurity and Infrastructure Security Agency, and Multi-State Information Sharing and Analysis Center Nov. 15 issued a warning about Rhysida, a ransomware-as-a-service group that has predominantly deployed its ransomware variant since May against the health care, education, manufacturing, information technology and government sectors.