Data, Healthcare and Security - Information Management Today

Pharmaceutical giant Cencora discloses a data breach

Security Affairs

FEBRUARY 28, 2024

Pharmaceutical giant Cencora suffered a cyber attack and threat actors stole data from its infrastructure. Pharmaceutical giant Cencora disclosed a data breach after it was the victim of a cyberattack. The company discovered the security breach on February 21 and immediately launched an investigation into the incident.

Healthcare

Healthcare Data breaches Ransomware Insurance

French pharmaceuticals distribution platform Apodis Pharma leaking 1.7+ TB of confidential data

Security Affairs

DECEMBER 1, 2020

The CyberNews investigation team discovered French pharmaceuticals distribution platform Apodis Pharma leaking 1.7+ TB of confidential data. An archive of 25,000+ partner and client organizations, such as pharmaceutical laboratories and pharmacies, serviced by the Apodis Pharma distribution platform. Original post @ [link].

Healthcare

Healthcare Archiving Sales Access

Biopharmaceutical firm Supernus Pharmaceuticals hit by Hive ransomware during an ongoing acquisition

Security Affairs

NOVEMBER 29, 2021

Biopharmaceutical company Supernus Pharmaceuticals discloses a ransomware attack, the Hive ransomware claims to have stolen company data. Biopharmaceutical company Supernus Pharmaceuticals confirmed it was the victim of a data breach after a ransomware attack that hit the firm last in Mid-November. 24 SUPERNUS INC.

Healthcare

Healthcare Ransomware Encryption Data breaches

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Indian Pharmaceutical Company Investigates Security Incident

Data Breach Today

OCTOBER 22, 2020

Reddy's Laboratories Says Plants in Four Countries Affected Dr. Reddy's Laboratories, a multinational pharmaceutical company based in India that's testing a COVID-19 vaccine, says it isolated its data center services Thursday following what it calls a "detected cyberattack."

Healthcare

Healthcare Security IT

Japanese Pharmaceutical giant Eisai hit by a ransomware attack

Security Affairs

JUNE 9, 2023

This week, the Japanese pharmaceutical giant Eisai has taken its systems offline in response to a ransomware attack. Eisai is a Japanese pharmaceutical company with about 10,000 employees and more than $5 billion in revenue. Eisai announced it is working to recover the impacted systems and determine the scope of the security breach.

Healthcare

Healthcare Ransomware Encryption Data breaches

IAM's Role in the Pharmaceutical Sector

Data Breach Today

JULY 8, 2019

Sandy Dalal of Allergan on Achieving Security Stability Mergers and acquisitions, along with cloud adoption, are rapidly changing the pharmaceutical industry. Sandy Dalal of Allergan talks about how identity and access management, along with zero trust, are bringing security stability.

Healthcare

Healthcare Cloud Access Security

Healthcare Summit: Securing Life Sciences, Genomic Data

Data Breach Today

JULY 14, 2023

ISMG Summit Speaker Phil Englert of H-ISAC on Emerging Security Healthcare Issues Life sciences firms, including pharmaceutical companies, are facing growing challenges in securing complex sets of sensitive data, including genomic information, said H-ISAC's Phil Englert, one of many high-profile speakers who will discuss industry trends at ISMG's upcoming (..)

Healthcare

Healthcare Security

NailaoLocker ransomware targets EU healthcare-related entities

Security Affairs

FEBRUARY 20, 2025

The experts believe threat actors exploited the zero-dayCVE-2024-24919 in Check Point Security Gateways with Remote Access VPN or Mobile Access features. “On May 28, 2024 we discovered a vulnerability in Security Gateways with IPsec VPN in Remote Access VPN community and the Mobile Access software blade (CVE-2024-24919).

Ransomware

Ransomware Healthcare Encryption Access

Alert: APT Groups Targeting COVID-19 Researchers

Data Breach Today

MAY 5, 2020

Password-Spraying' Campaigns Aimed at Stealing Research Data, US and UK Authorities Warn Authorities in the U.S. are warning medical institutions, pharmaceutical companies, universities and others about "password-spraying campaigns" by advance persistent threat groups seeking to steal COVID-19 research data.

Healthcare

Healthcare Passwords Security

Healthcare Supply Chain Security: Updated Guidance

Data Breach Today

NOVEMBER 16, 2020

With the escalation of cyberattacks on the healthcare sector during the COVID-19 pandemic, supply chain partners need to strengthen their security controls and defenses, say Vishwas Gadgil of pharmaceutical firm Merck and Ed Gaudet of the consultancy Censinet. They describe updated guidance on the subject.

Healthcare

Healthcare Security

National Safety Council data leak: Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization

Security Affairs

AUGUST 31, 2023

Also, the credentials could have been used to gain initial access into corporate networks to deploy ransomware, steal or sabotage internal documents, or gain access to user data. The data was publicly accessible for 5 months, as the leak was first indexed by IoT search engines on January 31st, 2023.

Passwords

Passwords Healthcare Manufacturing Access

Security Affairs newsletter Round 423 by Pierluigi Paganini – International edition

Security Affairs

JUNE 11, 2023

Every week the best security articles from Security Affairs are free for you in your email box. Experts found new MOVEit Transfer SQL Injection flaws The University of Manchester suffered a cyber attack and suspects a data breach Russians charged with hacking Mt. A new round of the weekly SecurityAffairs newsletter arrived!

Healthcare

Healthcare Security Ransomware Data breaches

Security Affairs newsletter Round 343

Security Affairs

DECEMBER 5, 2021

A new round of the weekly Security Affairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. The post Security Affairs newsletter Round 343 appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Security

Security Healthcare Ransomware Libraries

Japanese tech firm Oomiya hit by LockBit 3.0. Multiple supply chains potentially impacted

Security Affairs

OCTOBER 17, 2022

The business of Omiya Kasei is divided into four major areas, manufacturing and designing chemical and industrial products, designing electronic materials, pharmaceutical development, and factory manufacturing. Multiple supply chains potentially impacted appeared first on Security Affairs. Pierluigi Paganini.

Manufacturing

Manufacturing Healthcare Ransomware Communications

Iranian Peach Sandstorm group behind recent password spray attacks

Security Affairs

SEPTEMBER 16, 2023

The cyber espionage activity attacks are aimed at organizations in the satellite, defense, and pharmaceutical sectors. Peach Sandstorm is an Iranian nation-state threat actor who has recently pursued organizations in the satellite, defense, and pharmaceutical sectors around the globe.” ” Microsoft concludes.

Passwords

Passwords Healthcare Authentication Access

Alleged docs relating to Covid-19 vaccine leaked in darkweb

Security Affairs

JANUARY 1, 2021

Security experts from threat intelligence firm Cyble have found several documents relating to the Covid-19 vaccine allegedly stolen from the European Medicines Agency (EMA) leaked in the Darkweb. In the last months, security experts reported the surge of the illegal market for Covid-19 vaccines on the Darkweb market.

Healthcare

Healthcare Marketing Authentication Access

Russia-linked APT28 and crooks are still using the Moobot botnet

Security Affairs

MAY 3, 2024

In January, the Federal Bureau of Investigation (FBI), National Security Agency (NSA), US Cyber Command, and international partners released a joint Cybersecurity Advisory (CSA) to warn that Russia-linked threat actors are using compromised Ubiquiti EdgeRouters to evade detection in cyber operations worldwide. ” reported Trend Micro.

Healthcare

Healthcare Phishing Mining e-Discovery

Iran-linked APT33 targets Defense Industrial Base sector with FalseFont backdoor

Security Affairs

DECEMBER 25, 2023

The cyber espionage activity attacks are aimed at organizations in the satellite, defense, and pharmaceutical sectors. Peach Sandstorm is an Iranian nation-state threat actor who has recently pursued organizations in the satellite, defense, and pharmaceutical sectors around the globe.” reads the report published by Microsoft.

Healthcare

Healthcare Passwords Authentication Access

Pharma Giant Cencora confirmed the theft of personal and health information

Security Affairs

AUGUST 1, 2024

Pharma company Cencora confirmed the theft of personal and health information following the February 2024 data breach. Pharmaceutical giant Cencora confirmed that the threat actors had access to personally identifiable information (PII) and protected health information (PHI) following the February 2024 cyberattack.

Data breaches

Data breaches Ransomware Healthcare Cybersecurity

The Right Way to Change Your Identity Service Providers

Data Breach Today

JUNE 30, 2022

Takeda's Head of Security Authentication Discusses the Process and Challenges Markus Kalka, head of security authentication services at Takeda, talks about the challenges of changing identity service providers and shares the experience of consolidating three services into one at his company, a Japanese multinational pharmaceutical.

Healthcare

Healthcare Authentication Security

Hundreds of malicious Chrome browser extensions used to spy on you!

Security Affairs

JUNE 20, 2020

Malicious Chrome browser extensions were used in a massive surveillance campaign aimed at users working in the financial services, oil and gas, media and entertainment, healthcare, government organizations, and pharmaceuticals. ” reads the analysis published by Awake Security. appeared first on Security Affairs.

Healthcare

Healthcare Financial Services Security Communications

Ransomware threat landscape Jan-Apr 2024: insights and challenges

Security Affairs

JUNE 24, 2024

The data reveals a concerning trend impacting worldwide citizens’ personal and sensitive information, based on Ransomfeed datasets. The industrial and consulting sectors, including pharmaceutical, mechanical, and electronic industries, were among the most targeted in the country.

Ransomware

Ransomware Healthcare Cybersecurity Government

Hackers target COVID-19 vaccine supply chain and sell the vaccine in Darkweb

Security Affairs

DECEMBER 18, 2020

Threat actors continue to trade critical medical data in the Dark Web while organizations are involved in the response to the COVID-19 pandemic. Cybercrime organizations continue to be very active while pharmaceutical organizations are involved in the development of a COVID-19 vaccine and medicines to cure the infections. ” .

Phishing

Phishing Healthcare Sales Communications

FIN11 gang started deploying ransomware to monetize its operations

Security Affairs

OCTOBER 18, 2020

Since August, FIN11 started targeting organizations in many industries, including defense, energy, finance, healthcare, legal, pharmaceutical, telecommunications, technology, and transportation. “Recently, FIN11 has deployed CLOP ransomware and threatened to publish exfiltrated data to pressure victims into paying ransom demands.”

Ransomware

Ransomware IT Healthcare Phishing

Europe’s Largest Private Hospital Operator Fresenius Hit by Ransomware

Krebs on Security

MAY 6, 2020

The reader said the apparent culprit was the Snake ransomware , a relatively new strain first detailed earlier this year that is being used to shake down large businesses, holding their IT systems and data hostage in exchange for payment in a digital currency such as bitcoin.

Ransomware

Ransomware Healthcare Manufacturing Data breaches

China-linked APT10 leverages ZeroLogon exploits in recent attacks

Security Affairs

NOVEMBER 18, 2020

Targeted sectors include: Automotive Clothing Conglomerates Electronics Engineering General Trading Company Government Industrial Products Managed Service Providers Manufacturing Pharmaceutical Professional Services. The post China-linked APT10 leverages ZeroLogon exploits in recent attacks appeared first on Security Affairs.

Healthcare

Healthcare Archiving Cloud Manufacturing

Financially motivated Earth Lusca threat actors targets organizations worldwide

Security Affairs

JANUARY 18, 2022

According to the security firm, the group is financially motivated, its cyberespionage campaign hit high value targets such as government and educational institutions, religious movements, pro-democracy and human rights organisations in Hong Kong, Covid-19 research organisations, gambling and cryptocurrency companies, and the media.

Healthcare

Healthcare Phishing Archiving Education

China-linked Winnti APT targets South Korean Gaming firm

Security Affairs

APRIL 22, 2020

Security experts from QuoIntelligence (QuoINT) firm reported that China-linked Winnti cyberespionage group targets South Korean video gaming company Gravity. The APT group targeted organizations in various industries, including the aviation, gaming, pharmaceuticals, technology, telecoms, and software development industries.

Healthcare

Healthcare Communications IT Security

CERT-FR warns of Lockean ransomware attacks against French companies

Security Affairs

NOVEMBER 4, 2021

The Lockean group used multiple tools for lateral movements, including AdFind , BITSAdmin , and BloodHound , and the RClone utility for data exfiltration. The post CERT-FR warns of Lockean ransomware attacks against French companies appeared first on Security Affairs. ” reads the report published by CERT-FR.

Ransomware

Ransomware Healthcare Phishing IT

GwisinLocker ransomware exclusively targets South Korea

Security Affairs

AUGUST 7, 2022

The ransomware targets South Korean healthcare, industrial, and pharmaceutical companies, its name comes from the name of the author ‘Gwisin’ (ghost in Korean). ” reads the report published by security firm Ahnlab. That includes identifying and stealing sensitive data for use in so-called “double extortion” campaigns.”

Ransomware

Ransomware Healthcare Encryption IT

Low-Drama ‘Dark Angels’ Reap Record Ransoms

Krebs on Security

AUGUST 5, 2024

A ransomware group called Dark Angels made headlines this past week when it was revealed the crime group recently received a record $75 million data ransom payment from a Fortune 50 company. ” Most ransomware groups maintain flashy victim leak sites which threaten to publish the target’s stolen data unless a ransom demand is paid.

Ransomware

Ransomware Healthcare Insurance Cybersecurity

Conti’s Ransomware Toll on the Healthcare Industry

Krebs on Security

APRIL 18, 2022

Cybersecurity & Infrastructure Security Agency (CISA), Zloader had a special relationship with Ryuk/Conti, acting as a preferred distribution platform for deploying Ryuk/Conti ransomware. National Security Agency (NSA). National Security Agency (NSA). ” The figures cited by Weiss appear highly conservative.

Ransomware

Ransomware Cybersecurity Healthcare Security

Russia-linked APT28 uses COVID-19 lures to deliver Zebrocy malware

Security Affairs

DECEMBER 10, 2020

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The post Russia-linked APT28 uses COVID-19 lures to deliver Zebrocy malware appeared first on Security Affairs.

Phishing

Phishing Healthcare Military Data collection

Safeguarding COVID-19 Research, Other Intellectual Property

Data Breach Today

MAY 28, 2020

As cyberthreats to medical research on COVID-19 - and other intellectual property - grow, organzations must take critical steps to prevent the theft of their "innovation capital," says Russell Koste, chief security officer of Alexion Pharmaceuticals.

Healthcare

Healthcare Security

Open database leaves major Chinese ports exposed to shipping chaos?

Security Affairs

MARCH 11, 2022

The freight logs of two major Chinese shipping ports have been leaking data, a problem which if left unresolved could disrupt the supply chain of up to 70,000 tonnes of cargo a day, with potentially serious consequences for international shipping. appeared first on Security Affairs. Source Maritime intelligence. Pierluigi Paganini.

Healthcare

Healthcare Authentication Access Risk

US DoJ indicts Chinese hackers over state-sponsored cyber espionage

Security Affairs

DECEMBER 21, 2018

“Zhu and Zhang were members of a hacking group operating in China known within the cyber security community as Advanced Persistent Threat 10 (the APT10 Group).” The APT10 Group stole hundreds of gigabytes of sensitive data and information from the victims’ computer systems. Pierluigi Paganini.

Computer and Electronics

Computer and Electronics Healthcare Manufacturing Government

Balikbayan Foxes group spoofs Philippine gov to spread RATs

Security Affairs

NOVEMBER 1, 2021

Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . The group focuses on Shipping/Logistics, Manufacturing, Business Services, Pharmaceutical, and Energy entities, among others. ” reads the analysis published by the experts.

Healthcare

Healthcare Phishing Government Manufacturing

SILENTFADE a long-running malware campaign targeted Facebook AD platform

Security Affairs

OCTOBER 3, 2020

The attackers primarily ran malicious ad campaigns, often in the form of advertising pharmaceutical pills and spam with fake celebrity endorsements.” The malware sends the data to the C2 servers in the form of an encrypted JSON blob through custom HTTP headers. Pierluigi Paganini. SecurityAffairs – hacking, Facebook).

Healthcare

Healthcare Paper Authentication Metadata

Ransomware accounts for 54% of cyber threats in the health sector

Security Affairs

JULY 5, 2023

The first data that emerged from the report is that ransomware accounts for 54% of cybersecurity threats in the health sector. 42% of incidents reported targeted hospitals, while health authorities, bodies and agencies accounted for 14%, and the pharmaceutical industry for 9%. ” reads the report.

Ransomware

Ransomware Healthcare Cybersecurity Security

New RA Group ransomware gang is the latest group using leaked Babuk source code

Security Affairs

MAY 15, 2023

Compromised organizations operate in different business verticals, including manufacturing, wealth management, insurance providers, and pharmaceuticals. RA Group launched their data leak site on April 22, 2023, and on April 27, we observed the first batch of victims, three in total, followed by another one on April 28.

Ransomware

Ransomware Encryption Healthcare Insurance

Pharma Industry Seeing Reduction in Data Breach Costs, But Still Have Much to Do

KnowBe4

SEPTEMBER 28, 2023

Insights from IBM’s Cost of a Data Breach Report on the Pharmaceutical Industry shows that while the overall cost has improved, there are clear areas of risk that need to be addressed.

Data breaches

Data breaches Healthcare Risk Security awareness

Connecting the Bots – Hancitor fuels Cuba Ransomware Operations

Security Affairs

MAY 7, 2021

Its operators have a DLS site, where they post exfiltrated data from their victims who refused to pay the ransom. Group-IB Threat Hunting Framework Huntpoint detecting abnormal activity caused by Hancitor Data received from C2 server is base64-encoded and XORed with 0x7A. Cuba ransomware has been active since at least January 2020.

Ransomware

Ransomware Education Manufacturing Healthcare

China-linked APT Bronze Starlight deploys ransomware as a smokescreen

Security Affairs

JUNE 26, 2022

The victims include pharmaceutical companies in Brazil and the U.S., They then deploy ransomware and exfiltrate sensitive data from the victim’s environment.” The post China-linked APT Bronze Starlight deploys ransomware as a smokescreen appeared first on Security Affairs. ” concludes the report. Pierluigi Paganini.

Ransomware

Ransomware Healthcare Manufacturing Encryption

FAIR Data Principles in Life Sciences: A case for Data Intelligence Cloud

Collibra

MAY 25, 2022

The FAIR Data Principles for scientific data management and stewardship were first introduced and published in scientific journals in 2016. At its core, FAIR aims to break down data silos by providing guidelines to make data: Findable – metadata and data should be searchable and should be easily located.

Cloud

Cloud Metadata Healthcare Artificial Intelligence

Pharmaceutical giant Cencora discloses a data breach

French pharmaceuticals distribution platform Apodis Pharma leaking 1.7+ TB of confidential data

Webinars

Trending Sources

Biopharmaceutical firm Supernus Pharmaceuticals hit by Hive ransomware during an ongoing acquisition

Webinars

Indian Pharmaceutical Company Investigates Security Incident

Japanese Pharmaceutical giant Eisai hit by a ransomware attack

IAM's Role in the Pharmaceutical Sector

Healthcare Summit: Securing Life Sciences, Genomic Data

NailaoLocker ransomware targets EU healthcare-related entities

Alert: APT Groups Targeting COVID-19 Researchers

Healthcare Supply Chain Security: Updated Guidance

National Safety Council data leak: Credentials of NASA, Tesla, DoJ, Verizon, and 2K others leaked by workplace safety organization

Security Affairs newsletter Round 423 by Pierluigi Paganini – International edition

Security Affairs newsletter Round 343

Japanese tech firm Oomiya hit by LockBit 3.0. Multiple supply chains potentially impacted

Iranian Peach Sandstorm group behind recent password spray attacks

Alleged docs relating to Covid-19 vaccine leaked in darkweb

Russia-linked APT28 and crooks are still using the Moobot botnet

Iran-linked APT33 targets Defense Industrial Base sector with FalseFont backdoor

Pharma Giant Cencora confirmed the theft of personal and health information

The Right Way to Change Your Identity Service Providers

Hundreds of malicious Chrome browser extensions used to spy on you!

Ransomware threat landscape Jan-Apr 2024: insights and challenges

Hackers target COVID-19 vaccine supply chain and sell the vaccine in Darkweb

FIN11 gang started deploying ransomware to monetize its operations

Europe’s Largest Private Hospital Operator Fresenius Hit by Ransomware

China-linked APT10 leverages ZeroLogon exploits in recent attacks

Financially motivated Earth Lusca threat actors targets organizations worldwide

China-linked Winnti APT targets South Korean Gaming firm

CERT-FR warns of Lockean ransomware attacks against French companies

GwisinLocker ransomware exclusively targets South Korea

Low-Drama ‘Dark Angels’ Reap Record Ransoms

Conti’s Ransomware Toll on the Healthcare Industry

Russia-linked APT28 uses COVID-19 lures to deliver Zebrocy malware

Safeguarding COVID-19 Research, Other Intellectual Property

Open database leaves major Chinese ports exposed to shipping chaos?

US DoJ indicts Chinese hackers over state-sponsored cyber espionage

Balikbayan Foxes group spoofs Philippine gov to spread RATs

SILENTFADE a long-running malware campaign targeted Facebook AD platform

Ransomware accounts for 54% of cyber threats in the health sector

New RA Group ransomware gang is the latest group using leaked Babuk source code

Pharma Industry Seeing Reduction in Data Breach Costs, But Still Have Much to Do

Connecting the Bots – Hancitor fuels Cuba Ransomware Operations

China-linked APT Bronze Starlight deploys ransomware as a smokescreen

FAIR Data Principles in Life Sciences: A case for Data Intelligence Cloud

Stay Connected