Data and Healthcare - Information Management Today

Pharmaceutical giant Cencora discloses a data breach

Security Affairs

FEBRUARY 28, 2024

Pharmaceutical giant Cencora suffered a cyber attack and threat actors stole data from its infrastructure. Pharmaceutical giant Cencora disclosed a data breach after it was the victim of a cyberattack. Cencora, Inc. “On February 21, 2024, Cencora, Inc.

Healthcare

Healthcare Data breaches Ransomware Insurance

French pharmaceuticals distribution platform Apodis Pharma leaking 1.7+ TB of confidential data

Security Affairs

DECEMBER 1, 2020

The CyberNews investigation team discovered French pharmaceuticals distribution platform Apodis Pharma leaking 1.7+ TB of confidential data. An archive of 25,000+ partner and client organizations, such as pharmaceutical laboratories and pharmacies, serviced by the Apodis Pharma distribution platform. Original post @ [link].

Healthcare

Healthcare Archiving Sales Access

Biopharmaceutical firm Supernus Pharmaceuticals hit by Hive ransomware during an ongoing acquisition

Security Affairs

NOVEMBER 29, 2021

Biopharmaceutical company Supernus Pharmaceuticals discloses a ransomware attack, the Hive ransomware claims to have stolen company data. Biopharmaceutical company Supernus Pharmaceuticals confirmed it was the victim of a data breach after a ransomware attack that hit the firm last in Mid-November. 24 SUPERNUS INC.

Healthcare

Healthcare Ransomware Encryption Data breaches

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Japanese Pharmaceutical giant Eisai hit by a ransomware attack

Security Affairs

JUNE 9, 2023

This week, the Japanese pharmaceutical giant Eisai has taken its systems offline in response to a ransomware attack. Eisai is a Japanese pharmaceutical company with about 10,000 employees and more than $5 billion in revenue. At the time of this writing, no ransomware group has claimed responsibility for the ransomware attack. “Any

Healthcare

Healthcare Ransomware Encryption Data breaches

Indian Pharmaceutical Company Investigates Security Incident

Data Breach Today

OCTOBER 22, 2020

Reddy's Laboratories Says Plants in Four Countries Affected Dr. Reddy's Laboratories, a multinational pharmaceutical company based in India that's testing a COVID-19 vaccine, says it isolated its data center services Thursday following what it calls a "detected cyberattack."

Healthcare

Healthcare Security IT

IAM's Role in the Pharmaceutical Sector

Data Breach Today

JULY 8, 2019

Sandy Dalal of Allergan on Achieving Security Stability Mergers and acquisitions, along with cloud adoption, are rapidly changing the pharmaceutical industry. Sandy Dalal of Allergan talks about how identity and access management, along with zero trust, are bringing security stability.

Healthcare

Healthcare Cloud Access Security

OnDemand | 2021 Pharmaceutical Threat Outlook

Data Breach Today

JANUARY 5, 2021

Thwarting Mobile Phishing

Healthcare

Healthcare Phishing

Healthcare Summit: Securing Life Sciences, Genomic Data

Data Breach Today

JULY 14, 2023

ISMG Summit Speaker Phil Englert of H-ISAC on Emerging Security Healthcare Issues Life sciences firms, including pharmaceutical companies, are facing growing challenges in securing complex sets of sensitive data, including genomic information, said H-ISAC's Phil Englert, one of many high-profile speakers who will discuss industry trends at ISMG's upcoming (..)

Healthcare

Healthcare Security

Alert: APT Groups Targeting COVID-19 Researchers

Data Breach Today

MAY 5, 2020

Password-Spraying' Campaigns Aimed at Stealing Research Data, US and UK Authorities Warn Authorities in the U.S. are warning medical institutions, pharmaceutical companies, universities and others about "password-spraying campaigns" by advance persistent threat groups seeking to steal COVID-19 research data.

Healthcare

Healthcare Passwords Security

DOJ Seizes Fake Domains Impersonating Moderna, Regeneron

Data Breach Today

DECEMBER 21, 2020

Prosecutors: Websites Spoofed Pharmaceutical Firms for ID Theft Federal investigators have seized two domains impersonating the pharmaceutical firms Moderna, which has begun shipping a COVID-19 vaccine, and Regeneron, which developed a treatment, according to the U.S. Justice Department.

Healthcare

South Korea Claims North Korea Tried Hacking Pfizer

Data Breach Today

FEBRUARY 16, 2021

Reported Attempt at Stealing COVID-19 Data Comes in Wake of Global Warnings South Korean intelligence officials allege that North Korean hackers attempted to steal COVID-19 vaccine and treatment data by hacking the U.S. pharmaceutical firm Pfizer.

Healthcare

National Safety Council data leak: Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization

Security Affairs

AUGUST 31, 2023

Also, the credentials could have been used to gain initial access into corporate networks to deploy ransomware, steal or sabotage internal documents, or gain access to user data. The data was publicly accessible for 5 months, as the leak was first indexed by IoT search engines on January 31st, 2023.

Passwords

Passwords Healthcare Manufacturing Access

NailaoLocker ransomware targets EU healthcare-related entities

Security Affairs

FEBRUARY 20, 2025

Threat actors attempted data exfiltration, capturing the ntds.dit file. “Researchers from Mandiant for instance observed APT41 targeting US pharmaceutical entities in early 2020, meanwhile APT18 or APT10 have been historically tied to even older breaches affecting this vertical.” ” concludes the report.

Ransomware

Ransomware Healthcare Encryption Access

Feds Warn Health Sector of Top Russia-Backed APT Groups

Data Breach Today

MAY 20, 2022

Alert Comes as Other Ransomware Assaults, Data Leaks Plague Medical Providers Federal authorities are alerting healthcare sector entities of threats posed by Russian state-sponsored cyber groups, including some linked to attacks on pharmaceutical and related firms. medical facilities.

Healthcare

Healthcare Ransomware

Iran-linked APT33 targets Defense Industrial Base sector with FalseFont backdoor

Security Affairs

DECEMBER 25, 2023

The cyber espionage activity attacks are aimed at organizations in the satellite, defense, and pharmaceutical sectors. Peach Sandstorm is an Iranian nation-state threat actor who has recently pursued organizations in the satellite, defense, and pharmaceutical sectors around the globe.” reads the report published by Microsoft.

Healthcare

Healthcare Passwords Authentication Access

Japanese tech firm Oomiya hit by LockBit 3.0. Multiple supply chains potentially impacted

Security Affairs

OCTOBER 17, 2022

The business of Omiya Kasei is divided into four major areas, manufacturing and designing chemical and industrial products, designing electronic materials, pharmaceutical development, and factory manufacturing. At this time, the ransomware gang has yet to publish samples of the alleged stolen documents.

Manufacturing

Manufacturing Healthcare Ransomware Communications

Iranian Hackers Gain Sophistication, Microsoft Warns

Data Breach Today

SEPTEMBER 15, 2023

Noisy 'Peach Sandstorm' Password Spraying Campaign Is Followed by Stealth Iranian state threat actor "Peach Sandstorm" is growing in sophistication, warns Microsoft in an alert about a campaign of password hacking targeting the satellite, defense and pharmaceutical sectors.

Healthcare

Healthcare Passwords

Iranian Peach Sandstorm group behind recent password spray attacks

Security Affairs

SEPTEMBER 16, 2023

The cyber espionage activity attacks are aimed at organizations in the satellite, defense, and pharmaceutical sectors. Peach Sandstorm is an Iranian nation-state threat actor who has recently pursued organizations in the satellite, defense, and pharmaceutical sectors around the globe.”

Passwords

Passwords Healthcare Authentication Access

Ransomware threat landscape Jan-Apr 2024: insights and challenges

Security Affairs

JUNE 24, 2024

The data reveals a concerning trend impacting worldwide citizens’ personal and sensitive information, based on Ransomfeed datasets. The industrial and consulting sectors, including pharmaceutical, mechanical, and electronic industries, were among the most targeted in the country.

Ransomware

Ransomware Healthcare Cybersecurity Government

New LookingGlass CEO Bryan Ware to Diversify Customer Base

Data Breach Today

MAY 11, 2022

New Attack Surface Management Tool Should Help Reach New Clients New CEO Bryan Ware plans to leverage LookingGlass' nascent attack surface management capabilities to capture clients in verticals such as pharmaceuticals, manufacturing and utilities.

Healthcare

Healthcare Manufacturing IT

Inside the DemandScience by Pure Incubation Data Breach

Troy Hunt

NOVEMBER 13, 2024

Apparently, before a child reaches the age of 13, advertisers will have gathered more 72 million data points on them. I knew I'd seen a metric about this sometime recently, so I went looking for "7,000", which perfectly illustrates how unaware we are of the extent of data collection on all of us. Does it matter?

Data breaches

Data breaches Passwords B2B Healthcare

Fraud Detection: Lessons From Novartis Case

Data Breach Today

AUGUST 3, 2020

Compliance Expert Thomas Fox on the Role Data Analytics Can Play Incidents of fraud at pharmaceutical giant Novartis that resulted in over $1 billion in fines worldwide might have been avoided if the company's compliance team used data analytics to detect patterns, says Thomas Fox, a compliance evangelist and author.

Healthcare

Healthcare Analytics Compliance

Russia-linked APT28 and crooks are still using the Moobot botnet

Security Affairs

MAY 3, 2024

Trend Micro also discovered that at least two prominent cybercriminal groups and the Russia-linked APT group Pawn Storm used the botnet. ” reported Trend Micro. “Apart from the EdgeRouter devices, we also found compromised Raspberry Pi and other internet-facing devices in the botnet. ” reported Trend Micro.

Healthcare

Healthcare Phishing Mining e-Discovery

Healthcare Supply Chain Security: Updated Guidance

Data Breach Today

NOVEMBER 16, 2020

With the escalation of cyberattacks on the healthcare sector during the COVID-19 pandemic, supply chain partners need to strengthen their security controls and defenses, say Vishwas Gadgil of pharmaceutical firm Merck and Ed Gaudet of the consultancy Censinet. They describe updated guidance on the subject.

Healthcare

Healthcare Security

Alleged docs relating to Covid-19 vaccine leaked in darkweb

Security Affairs

JANUARY 1, 2021

While the pandemic is spreading on a global scale, threat actors continue to target government organizations and entities in the pharmaceutical industry. The links to the documents have been shared by a newly created profile which was used only for the alleged data leak. ” reported the analysis published by Cyble. .

Healthcare

Healthcare Marketing Authentication Access

The Right Way to Change Your Identity Service Providers

Data Breach Today

JUNE 30, 2022

Takeda's Head of Security Authentication Discusses the Process and Challenges Markus Kalka, head of security authentication services at Takeda, talks about the challenges of changing identity service providers and shares the experience of consolidating three services into one at his company, a Japanese multinational pharmaceutical.

Healthcare

Healthcare Authentication Security

Pharma Giant Cencora confirmed the theft of personal and health information

Security Affairs

AUGUST 1, 2024

Pharma company Cencora confirmed the theft of personal and health information following the February 2024 data breach. Pharmaceutical giant Cencora confirmed that the threat actors had access to personally identifiable information (PII) and protected health information (PHI) following the February 2024 cyberattack.

Data breaches

Data breaches Ransomware Healthcare Cybersecurity

Merck's Success Story: Boosting Efficiency With RPA and Bots

Data Breach Today

JULY 21, 2023

Learn how this technology revolutionized their workflow and what it mean for the future of the pharmaceutical industry. How Merck Used Bots to Assist With Regulatory Filings in 23 Geographies Discover how Merck, a traditional global pharma giant, achieved efficiency by embracing RPA and bots for regulatory documentation.

Healthcare

Healthcare IT

How Do You Migrate PAM to the Cloud?

Data Breach Today

JUNE 8, 2022

Peter Gankin, head of identity and access management at Takeda, a Japanese multinational pharmaceutical company, shares his views. Peter Gankin of Takeda Shares His Company's Journey What are some challenges of shifting on-premises PAM to the cloud, and how should one go about it?

Cloud

Cloud Healthcare Access IT

FIN11 gang started deploying ransomware to monetize its operations

Security Affairs

OCTOBER 18, 2020

Since August, FIN11 started targeting organizations in many industries, including defense, energy, finance, healthcare, legal, pharmaceutical, telecommunications, technology, and transportation. “Recently, FIN11 has deployed CLOP ransomware and threatened to publish exfiltrated data to pressure victims into paying ransom demands.”

Ransomware

Ransomware IT Healthcare Phishing

China-linked APT10 leverages ZeroLogon exploits in recent attacks

Security Affairs

NOVEMBER 18, 2020

Targeted sectors include: Automotive Clothing Conglomerates Electronics Engineering General Trading Company Government Industrial Products Managed Service Providers Manufacturing Pharmaceutical Professional Services. The latest campaign has been active since mid-October in 2019 and appears to be still ongoing. ” Pierluigi Paganini.

Healthcare

Healthcare Archiving Cloud Manufacturing

Security Affairs newsletter Round 423 by Pierluigi Paganini – International edition

Security Affairs

JUNE 11, 2023

Experts found new MOVEit Transfer SQL Injection flaws The University of Manchester suffered a cyber attack and suspects a data breach Russians charged with hacking Mt. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Healthcare

Healthcare Security Ransomware Data breaches

Hackers target COVID-19 vaccine supply chain and sell the vaccine in Darkweb

Security Affairs

DECEMBER 18, 2020

Threat actors continue to trade critical medical data in the Dark Web while organizations are involved in the response to the COVID-19 pandemic. Cybercrime organizations continue to be very active while pharmaceutical organizations are involved in the development of a COVID-19 vaccine and medicines to cure the infections. ” .

Phishing

Phishing Healthcare Sales Communications

CERT-FR warns of Lockean ransomware attacks against French companies

Security Affairs

NOVEMBER 4, 2021

The Lockean group used multiple tools for lateral movements, including AdFind , BITSAdmin , and BloodHound , and the RClone utility for data exfiltration. CERT-FR published a detailed report on the activity of the Lockean ransomware gang that has been active since June 2020. ” reads the report published by CERT-FR.

Ransomware

Ransomware Healthcare Phishing IT

Hundreds of malicious Chrome browser extensions used to spy on you!

Security Affairs

JUNE 20, 2020

Malicious Chrome browser extensions were used in a massive surveillance campaign aimed at users working in the financial services, oil and gas, media and entertainment, healthcare, government organizations, and pharmaceuticals. ” reads the analysis published by Awake Security.

Healthcare

Healthcare Financial Services Security Communications

Europe’s Largest Private Hospital Operator Fresenius Hit by Ransomware

Krebs on Security

MAY 6, 2020

The reader said the apparent culprit was the Snake ransomware , a relatively new strain first detailed earlier this year that is being used to shake down large businesses, holding their IT systems and data hostage in exchange for payment in a digital currency such as bitcoin.

Ransomware

Ransomware Healthcare Manufacturing Data breaches

Safeguarding COVID-19 Research, Other Intellectual Property

Data Breach Today

MAY 28, 2020

As cyberthreats to medical research on COVID-19 - and other intellectual property - grow, organzations must take critical steps to prevent the theft of their "innovation capital," says Russell Koste, chief security officer of Alexion Pharmaceuticals.

Healthcare

Healthcare Security

Open database leaves major Chinese ports exposed to shipping chaos?

Security Affairs

MARCH 11, 2022

The freight logs of two major Chinese shipping ports have been leaking data, a problem which if left unresolved could disrupt the supply chain of up to 70,000 tonnes of cargo a day, with potentially serious consequences for international shipping. Source Maritime intelligence.

Healthcare

Healthcare Authentication Access Risk

Financially motivated Earth Lusca threat actors targets organizations worldwide

Security Affairs

JANUARY 18, 2022

The APT group targeted organizations in various industries, including the aviation, gaming, pharmaceuticals, technology, telecoms, and software development industries. “Our telemetry data shows Earth Lusca sending spear phishing emails containing malicious links to one of their targets — a media company.

Healthcare

Healthcare Phishing Archiving Education

China-linked Winnti APT targets South Korean Gaming firm

Security Affairs

APRIL 22, 2020

The APT group targeted organizations in various industries, including the aviation, gaming, pharmaceuticals, technology, telecoms, and software development industries. “Based on previous knowledge and targeting of the Winnti Group, we assess that this sample was likely used to target Gravity Co., a South Korean video game company.”

Healthcare

Healthcare Communications IT Security

Pharma Industry Seeing Reduction in Data Breach Costs, But Still Have Much to Do

KnowBe4

SEPTEMBER 28, 2023

Insights from IBM’s Cost of a Data Breach Report on the Pharmaceutical Industry shows that while the overall cost has improved, there are clear areas of risk that need to be addressed.

Data breaches

Data breaches Healthcare Risk Security awareness

GwisinLocker ransomware exclusively targets South Korea

Security Affairs

AUGUST 7, 2022

The ransomware targets South Korean healthcare, industrial, and pharmaceutical companies, its name comes from the name of the author ‘Gwisin’ (ghost in Korean). That includes identifying and stealing sensitive data for use in so-called “double extortion” campaigns.”

Ransomware

Ransomware Healthcare Encryption IT

Balikbayan Foxes group spoofs Philippine gov to spread RATs

Security Affairs

NOVEMBER 1, 2021

Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . The group focuses on Shipping/Logistics, Manufacturing, Business Services, Pharmaceutical, and Energy entities, among others. ” reads the analysis published by the experts.

Healthcare

Healthcare Phishing Government Manufacturing

Low-Drama ‘Dark Angels’ Reap Record Ransoms

Krebs on Security

AUGUST 5, 2024

A ransomware group called Dark Angels made headlines this past week when it was revealed the crime group recently received a record $75 million data ransom payment from a Fortune 50 company. ” Most ransomware groups maintain flashy victim leak sites which threaten to publish the target’s stolen data unless a ransom demand is paid.

Ransomware

Ransomware Healthcare Insurance Cybersecurity

Pharmaceutical giant Cencora discloses a data breach

French pharmaceuticals distribution platform Apodis Pharma leaking 1.7+ TB of confidential data

Webinars

Trending Sources

Biopharmaceutical firm Supernus Pharmaceuticals hit by Hive ransomware during an ongoing acquisition

Webinars

Japanese Pharmaceutical giant Eisai hit by a ransomware attack

Indian Pharmaceutical Company Investigates Security Incident

IAM's Role in the Pharmaceutical Sector

OnDemand | 2021 Pharmaceutical Threat Outlook

Healthcare Summit: Securing Life Sciences, Genomic Data

Alert: APT Groups Targeting COVID-19 Researchers

DOJ Seizes Fake Domains Impersonating Moderna, Regeneron

South Korea Claims North Korea Tried Hacking Pfizer

National Safety Council data leak: Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization

NailaoLocker ransomware targets EU healthcare-related entities

Feds Warn Health Sector of Top Russia-Backed APT Groups

Iran-linked APT33 targets Defense Industrial Base sector with FalseFont backdoor

Japanese tech firm Oomiya hit by LockBit 3.0. Multiple supply chains potentially impacted

Iranian Hackers Gain Sophistication, Microsoft Warns

Iranian Peach Sandstorm group behind recent password spray attacks

Ransomware threat landscape Jan-Apr 2024: insights and challenges

New LookingGlass CEO Bryan Ware to Diversify Customer Base

Inside the DemandScience by Pure Incubation Data Breach

Fraud Detection: Lessons From Novartis Case

Russia-linked APT28 and crooks are still using the Moobot botnet

Healthcare Supply Chain Security: Updated Guidance

Alleged docs relating to Covid-19 vaccine leaked in darkweb

The Right Way to Change Your Identity Service Providers

Pharma Giant Cencora confirmed the theft of personal and health information

Merck's Success Story: Boosting Efficiency With RPA and Bots

How Do You Migrate PAM to the Cloud?

FIN11 gang started deploying ransomware to monetize its operations

China-linked APT10 leverages ZeroLogon exploits in recent attacks

Security Affairs newsletter Round 423 by Pierluigi Paganini – International edition

Hackers target COVID-19 vaccine supply chain and sell the vaccine in Darkweb

CERT-FR warns of Lockean ransomware attacks against French companies

Hundreds of malicious Chrome browser extensions used to spy on you!

Europe’s Largest Private Hospital Operator Fresenius Hit by Ransomware

Safeguarding COVID-19 Research, Other Intellectual Property

Open database leaves major Chinese ports exposed to shipping chaos?

Financially motivated Earth Lusca threat actors targets organizations worldwide

China-linked Winnti APT targets South Korean Gaming firm

Pharma Industry Seeing Reduction in Data Breach Costs, But Still Have Much to Do

GwisinLocker ransomware exclusively targets South Korea

Balikbayan Foxes group spoofs Philippine gov to spread RATs

Low-Drama ‘Dark Angels’ Reap Record Ransoms

Stay Connected