Other Cybersecurity Reports
Health-ISAC Daily Cyber Headlines for January 26, 2021
Please see the attached threat intelligence briefing from the HHS Health Sector Cybersecurity Coordination Center (HC3).
Introduction
HPH Sector:
Comprised of organizations of various sizes, budgets, IT experience, and data
According to the Verizon DBIR, in 2019:
Over 41 million patient records were lost in breaches
3.8 million employee-related incidents affected patient data
CynergisTek2020 Report:…
HC3 Threat Briefing - HPH Distributed Attack Vectors
Please see the attached weekly threat brief from the HHS Health Sector Cybersecurity Coordination Center (HC3).
The SolarWinds hack involved more than just Orion, and will affect more than just Orion users and customers.
The Federal Bureau of Investigation and the Cybersecurity and Infrastructure Security Agency have observed—since the summer of 2020—a surge of DoppelPaymer ransomware attacks against emergency services and healthcare entities. This activity has negatively impacted the provision of critical services…
Russian state-sponsored malicious cyber actors are exploiting a vulnerability in VMware® Access and VMware Identity Manager products, allowing the actors access to protected data and abusing federated authentication. VMware released a patch for the Command Injection Vulnerability captured in CVE-…
Hospitals receive fraudulent, disruptive and nuisance robocalls that flood their communications networks. While similar to unlawful robocalls received by consumers generally, the significant difference with hospital-related robocalls is the impact these calls can have on public health and safety to…
Disinformation; also called “active measures” when referring to its use by a state for national security and power projection purposes
The difference between disinformation and misinformation is intent
Not all false stories are organized campaigns pushed by a nation-state
Often…