Healthcare and Information Security - Information Management Today

Pharmaceutical giant Cencora discloses a data breach

Security Affairs

FEBRUARY 28, 2024

Pharmaceutical giant Cencora suffered a cyber attack and threat actors stole data from its infrastructure. Pharmaceutical giant Cencora disclosed a data breach after it was the victim of a cyberattack. Cencora, Inc.

Healthcare

Healthcare Data breaches Ransomware Insurance

French pharmaceuticals distribution platform Apodis Pharma leaking 1.7+ TB of confidential data

Security Affairs

DECEMBER 1, 2020

The CyberNews investigation team discovered French pharmaceuticals distribution platform Apodis Pharma leaking 1.7+ Apodis Pharma is a company that offers a digital supply chain management platform and other software solutions created for pharmacies, healthcare institutions, pharmaceutical laboratories, and health insurance companies.

Healthcare

Healthcare Archiving Sales Access

Biopharmaceutical firm Supernus Pharmaceuticals hit by Hive ransomware during an ongoing acquisition

Security Affairs

NOVEMBER 29, 2021

Biopharmaceutical company Supernus Pharmaceuticals discloses a ransomware attack, the Hive ransomware claims to have stolen company data. Biopharmaceutical company Supernus Pharmaceuticals confirmed it was the victim of a data breach after a ransomware attack that hit the firm last in Mid-November. “Supernus Pharmaceuticals, Inc.

Healthcare

Healthcare Ransomware Encryption Data breaches

Webinars

Automation, Evolved: Your New Playbook For Smarter Knowledge Work

MORE WEBINARS

Merck settles with insurers regarding a $1.4 billion claim over NotPetya damages

Security Affairs

JANUARY 6, 2024

known as Merck Sharp & Dohme (MSD) outside the United States and Canada, is an American multinational pharmaceutical company. It is one of the largest pharmaceutical companies globally, engaged in the research, development, manufacturing, and marketing of a wide range of healthcare products. Merck & Co., Merck filed a $1.4

Insurance

Insurance Healthcare Manufacturing Ransomware

COVID-19 – Johnson & Johnson saw a 30% uptick in cyber-attacks

Security Affairs

DECEMBER 5, 2020

“North Korean hackers have targeted at least six pharmaceutical companies in the U.S., and South Korea working on Covid-19 treatments, according to people familiar with the matter, as the regime seeks sensitive information it could sell or weaponize.” ” reported the Wall Street Journal.

Healthcare

Healthcare Information Security IT Security

Coronavirus: Europol arrests man behind €6M face masks and hand sanitisers scam

Security Affairs

APRIL 7, 2020

million by a European pharmaceutical company, a European State reported. “A European Member State reported to Europol that one of their pharmaceutical companies had been defrauded of €6.64 The man has stolen €6.64 The company paid for the products transferring the funds to Singapore, but they never received them.

Healthcare

Healthcare Sales Security Information Security

Iran-linked APT33 targets Defense Industrial Base sector with FalseFont backdoor

Security Affairs

DECEMBER 25, 2023

The cyber espionage activity attacks are aimed at organizations in the satellite, defense, and pharmaceutical sectors. Peach Sandstorm is an Iranian nation-state threat actor who has recently pursued organizations in the satellite, defense, and pharmaceutical sectors around the globe.” reads the report published by Microsoft.

Healthcare

Healthcare Passwords Authentication Access

NailaoLocker ransomware targets EU healthcare-related entities

Security Affairs

FEBRUARY 20, 2025

As recalled in the French national cybersecurity agencys (ANSSI) Threat landscape for the healthcare sector, while such campaigns can sometimes be conducted opportunistically , they often allow threat groups to gain access to information systems that can be used later to conduct other offensive operations.” ” concludes the report.

Ransomware

Ransomware Healthcare Encryption Access

Chinese hackers stole info from Spanish centers working on Covid19 vaccine

Security Affairs

SEPTEMBER 18, 2020

Chinese hackers have stolen information from Spanish laboratories working on a vaccine for COVID19, El Pais newspaper revealed. The El Pais newspaper reported that Chinese hackers have stolen information from Spanish laboratories working on a vaccine for COVID19. ” reported El Pais.

Healthcare

Healthcare Agriculture Security Government

Europol seized 30,506 Internet domain names for IP Infringement

Security Affairs

DECEMBER 2, 2019

“These included counterfeit pharmaceuticals and pirated movies , illegal television streaming, music, software, electronics, and other bogus products.” .” reads the press release published by the Europol.

Healthcare

Healthcare Sales Risk Security

Iranian Peach Sandstorm group behind recent password spray attacks

Security Affairs

SEPTEMBER 16, 2023

The cyber espionage activity attacks are aimed at organizations in the satellite, defense, and pharmaceutical sectors. Peach Sandstorm is an Iranian nation-state threat actor who has recently pursued organizations in the satellite, defense, and pharmaceutical sectors around the globe.”

Passwords

Passwords Healthcare Authentication Access

Japanese tech firm Oomiya hit by LockBit 3.0. Multiple supply chains potentially impacted

Security Affairs

OCTOBER 17, 2022

The business of Omiya Kasei is divided into four major areas, manufacturing and designing chemical and industrial products, designing electronic materials, pharmaceutical development, and factory manufacturing. Oomiya is focused on designing and manufacturing microelectronics and facility system equipment.

Manufacturing

Manufacturing Healthcare Ransomware Communications

Russia-linked APT28 and crooks are still using the Moobot botnet

Security Affairs

MAY 3, 2024

Trend Micro also discovered that at least two prominent cybercriminal groups and the Russia-linked APT group Pawn Storm used the botnet. ” reported Trend Micro. “Apart from the EdgeRouter devices, we also found compromised Raspberry Pi and other internet-facing devices in the botnet. ” reported Trend Micro.

Healthcare

Healthcare Phishing Mining e-Discovery

Ransomware threat landscape Jan-Apr 2024: insights and challenges

Security Affairs

JUNE 24, 2024

The industrial and consulting sectors, including pharmaceutical, mechanical, and electronic industries, were among the most targeted in the country. Additionally, during this period, 25 new criminal groups emerged and were added to the monitoring list by Ransomfeed.

Ransomware

Ransomware Healthcare Cybersecurity Government

New financially motivated attacks in Western Europe traced to Russian-speaking threat actors

Security Affairs

MARCH 27, 2020

At least two companies operating in pharmaceutical and manufacturing sectors have been affected. If the latter are the ones to blame, this marks the first time the gang has launched the attacks against pharmaceutical and manufacturing companies and may indicate a significant shift in their modus operandi. .

Healthcare

Healthcare Manufacturing Cybersecurity Retail

Alleged docs relating to Covid-19 vaccine leaked in darkweb

Security Affairs

JANUARY 1, 2021

Security experts from threat intelligence firm Cyble have found several documents relating to the Covid-19 vaccine allegedly stolen from the European Medicines Agency (EMA) leaked in the Darkweb. In early December, the European Medicines Agency (EMA) announced a cyber attack that has targeted it.

Healthcare

Healthcare Marketing Authentication Access

Three APT groups have targeted at least seven COVID-19 vaccine makers

Security Affairs

NOVEMBER 13, 2020

“The targets include leading pharmaceutical companies and vaccine researchers in Canada, France, India, South Korea and the United States. . “In recent months, we’ve detected cyberattacks from three nation-state actors targeting seven prominent companies directly involved in researching vaccines and treatments for Covid-19.”

Healthcare

Healthcare Phishing Government Passwords

Chronicle experts spotted a Linux variant of the Winnti backdoor

Security Affairs

MAY 20, 2019

Chronicle researchers while investigating the cyber attack that hit the Bayer pharmaceutical company in April. “In April 2019, reports emerged of an intrusion involving Winnti malware at a German Pharmaceutical company.” At the time the malware was used in the hack of a Vietnamese gaming company.

Healthcare

Healthcare Communications Libraries Access

FIN11 gang started deploying ransomware to monetize its operations

Security Affairs

OCTOBER 18, 2020

Since August, FIN11 started targeting organizations in many industries, including defense, energy, finance, healthcare, legal, pharmaceutical, telecommunications, technology, and transportation. In recent attacks, the group was observed deploying the Clop ransomware into the networks of its victims.

Ransomware

Ransomware IT Healthcare Phishing

Hundreds of malicious Chrome browser extensions used to spy on you!

Security Affairs

JUNE 20, 2020

Malicious Chrome browser extensions were used in a massive surveillance campaign aimed at users working in the financial services, oil and gas, media and entertainment, healthcare, government organizations, and pharmaceuticals.

Healthcare

Healthcare Financial Services Security Communications

CERT-FR warns of Lockean ransomware attacks against French companies

Security Affairs

NOVEMBER 4, 2021

CERT-FR published a detailed report on the activity of the Lockean ransomware gang that has been active since June 2020. ” reads the report published by CERT-FR.

Ransomware

Ransomware Healthcare Phishing IT

China-linked APT10 leverages ZeroLogon exploits in recent attacks

Security Affairs

NOVEMBER 18, 2020

Targeted sectors include: Automotive Clothing Conglomerates Electronics Engineering General Trading Company Government Industrial Products Managed Service Providers Manufacturing Pharmaceutical Professional Services. The latest campaign has been active since mid-October in 2019 and appears to be still ongoing.

Healthcare

Healthcare Archiving Cloud Manufacturing

Security Affairs newsletter Round 423 by Pierluigi Paganini – International edition

Security Affairs

JUNE 11, 2023

Experts found new MOVEit Transfer SQL Injection flaws The University of Manchester suffered a cyber attack and suspects a data breach Russians charged with hacking Mt.

Healthcare

Healthcare Security Ransomware Data breaches

Hackers target COVID-19 vaccine supply chain and sell the vaccine in Darkweb

Security Affairs

DECEMBER 18, 2020

Cybercrime organizations continue to be very active while pharmaceutical organizations are involved in the development of a COVID-19 vaccine and medicines to cure the infections. Threat actors continue to trade critical medical data in the Dark Web while organizations are involved in the response to the COVID-19 pandemic.

Phishing

Phishing Healthcare Sales Communications

Financially motivated Earth Lusca threat actors targets organizations worldwide

Security Affairs

JANUARY 18, 2022

The APT group targeted organizations in various industries, including the aviation, gaming, pharmaceuticals, technology, telecoms, and software development industries. The researchers grouped the Earth Lusca’s infrastructure into two “clusters.

Healthcare

Healthcare Phishing Archiving Education

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Security Affairs

MARCH 25, 2020

Victims operate in the Banking/Finance, Construction, Defense Industrial Base, Government, Healthcare, High Technology, Higher Education, Legal, Manufacturing, Media, Non-profit, Oil & Gas, Petrochemical, Pharmaceutical, Real Estate, Telecommunications, Transportation, Travel, and Utility. .

Healthcare

Healthcare Education Manufacturing Government

Malvertising campaign exploits recently disclosed WordPress Plugin flaws

Security Affairs

JULY 24, 2019

. “The Defiant Threat Intelligence team has identified a malvertising campaign which is causing victims’ sites to display unwanted popup ads and redirect visitors to malicious destinations, including tech support scams, malicious Android APKs, and sketchy pharmaceutical ads.” ” states the report published by WordFence.

Healthcare

Healthcare Security IT Information Security

GwisinLocker ransomware exclusively targets South Korea

Security Affairs

AUGUST 7, 2022

The ransomware targets South Korean healthcare, industrial, and pharmaceutical companies, its name comes from the name of the author ‘Gwisin’ (ghost in Korean). Researchers warn of a new ransomware called GwisinLocker which is able to encrypt Windows and Linux ESXi servers.

Ransomware

Ransomware Healthcare Encryption IT

Balikbayan Foxes group spoofs Philippine gov to spread RATs

Security Affairs

NOVEMBER 1, 2021

Both Remcos and NanoCore are used for information gathering, data exfiltration, surveillance, and control of the victims’ computers. . The group focuses on Shipping/Logistics, Manufacturing, Business Services, Pharmaceutical, and Energy entities, among others. ” reads the analysis published by the experts.

Healthcare

Healthcare Phishing Government Manufacturing

Russia-linked APT28 uses COVID-19 lures to deliver Zebrocy malware

Security Affairs

DECEMBER 10, 2020

The threat actors used lures consisted of documents about Sinopharm International Corporation, a pharmaceutical company involved in the development of a COVID-19 vaccine and that is currently going through phase three clinical trials.

Phishing

Phishing Healthcare Military Data collection

Winnti APT continues to target game developers in Russia and abroad

Security Affairs

JANUARY 15, 2021

The APT group targeted organizations in various industries, including the aviation, gaming, pharmaceuticals, technology, telecoms, and software development industries. Small studios tend to neglect information security, making them a tempting target.

Healthcare

Healthcare Archiving Information Security Security

Pharma Giant Cencora confirmed the theft of personal and health information

Security Affairs

AUGUST 1, 2024

Pharma company Cencora confirmed the theft of personal and health information following the February 2024 data breach. Pharmaceutical giant Cencora confirmed that the threat actors had access to personally identifiable information (PII) and protected health information (PHI) following the February 2024 cyberattack.

Data breaches

Data breaches Ransomware Healthcare Cybersecurity

Security Affairs newsletter Round 343

Security Affairs

DECEMBER 5, 2021

CISA adds Zoho, Apache, Qualcomm, Mikrotik flaws to the list of actively exploited issues Russian internet watchdog Roskomnadzor bans six more VPN services NginRAT – A stealth malware targets e-store hiding on Nginx servers Europol arrested 1800 money mules as part of an anti-money-laundering operation Mozilla fixes critical flaw in Network Security (..)

Security

Security Healthcare Ransomware Libraries

German firms BASF, Siemens, Henkel hit by cyber attacks

Security Affairs

JULY 25, 2019

Recently Chronicle researchers while investigating the cyber attack that hit the Bayer pharmaceutical company in April spotted a Linux variant of the Winnti backdoor. The groups show similar tactics, techniques, and Procedures (TTPs) and in some cases shared portions of the same hacking infrastructure.

Healthcare

Healthcare Security IT Information Security

Winnti uses a new PipeMon backdoor in attacks aimed at the gaming industry

Security Affairs

MAY 22, 2020

The APT group targeted organizations in various industries, including the aviation, gaming, pharmaceuticals, technology, telecoms, and software development industries.

Healthcare

Healthcare Encryption Passwords IT

Hackers target German Task Force for COVID-19 PPE procurement

Security Affairs

JUNE 9, 2020

. “The remaining half belong to executives at third-party partners, including European and American companies associated with chemical manufacturing, aviation and transport, medical and pharmaceutical manufacturing, finance, oil and gas, and communications.”

Phishing

Phishing Healthcare Manufacturing Government

Open database leaves major Chinese ports exposed to shipping chaos?

Security Affairs

MARCH 11, 2022

Zhangjiagang’s main cargoes include steel, timber, coal, cement and chemical fertilizers, while Nanjing typically trades in goods such as metal ore, light industrial goods, petroleum and pharmaceutical products.

Healthcare

Healthcare Authentication Access Risk

Europol analyses on criminal operations in Europe during COVID-19 Crisis

Security Affairs

MAY 1, 2020

Europol continues to observe on a daily base the trading of counterfeit pharmaceutical and healthcare products. .” The increase in activities related to online child pornography is worrisome, while there has been a limited impact of the COVID-19 pandemic on the level of terrorist threats to the European states.

Healthcare

Healthcare Ransomware Marketing Cybersecurity

Information security and compliance training for the healthcare sector

IT Governance

JULY 12, 2018

Furthermore, the sector depends on its workforce to provide vital care, which is only possible when information is shared and available at the point of delivery. Pharmacies, rehabilitation care, social care, medical research and pharmaceuticals all rely on this data being available to individuals delivering their services. ISO 27001 ?is

Information Security

Information Security Compliance GDPR Security

New RA Group ransomware gang is the latest group using leaked Babuk source code

Security Affairs

MAY 15, 2023

Compromised organizations operate in different business verticals, including manufacturing, wealth management, insurance providers, and pharmaceuticals. The researchers noticed that the path contains the same mutex name as the Babuk ransomware, a circumstance that suggests the malware borrows Babuk’s leaked source code.

Ransomware

Ransomware Encryption Healthcare Insurance

China-linked APT Bronze Starlight deploys ransomware as a smokescreen

Security Affairs

JUNE 26, 2022

The victims include pharmaceutical companies in Brazil and the U.S., However, the victimology, the short lifespan of each ransomware family employed in the attacks, and access to malware used by nation-state actors suggest that the main motivation of the group may be intellectual property theft or cyberespionage.

Ransomware

Ransomware Healthcare Manufacturing Encryption

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Security Affairs

SEPTEMBER 15, 2020

Department of Justice indictment, MSS-affiliated actors have targeted various industries across the United States and other countries—including high-tech manufacturing; medical device, civil, and industrial engineering; business, educational, and gaming software; solar energy; pharmaceuticals; and defense—in a campaign that lasted over ten years.[

Government

Government Energy and Utilities Healthcare Access

Connecting the Bots – Hancitor fuels Cuba Ransomware Operations

Security Affairs

MAY 7, 2021

Despite the fact the group is leveraging quite common techniques in their operations, their attacks are still quite effective and affects organizations from various sectors, including financial, pharmaceutical, educational, industrial, professional services and software development, focusing mainly on Europe and USA.

Ransomware

Ransomware Education Manufacturing Healthcare

MY TAKE: Why ‘basic research’ is so vital to bringing digital transformation to full fruition

The Last Watchdog

MARCH 17, 2021

Biomedical engineer Dr. Joe Alexander, the former medical director at pharmaceutical giant Pfizer, grabbed a distinguished scientist post, as well. The daunting challenge, going forward, is that PKI attack vectors will only multiply as companies increase their reliance on cloud infrastructure and mobile apps.

Digital transformation

Digital transformation Encryption Privacy Analytics

Pharmaceutical giant Cencora discloses a data breach

French pharmaceuticals distribution platform Apodis Pharma leaking 1.7+ TB of confidential data

Webinars

Trending Sources

Biopharmaceutical firm Supernus Pharmaceuticals hit by Hive ransomware during an ongoing acquisition

Webinars

Merck settles with insurers regarding a $1.4 billion claim over NotPetya damages

COVID-19 – Johnson & Johnson saw a 30% uptick in cyber-attacks

Coronavirus: Europol arrests man behind €6M face masks and hand sanitisers scam

Iran-linked APT33 targets Defense Industrial Base sector with FalseFont backdoor

NailaoLocker ransomware targets EU healthcare-related entities

Chinese hackers stole info from Spanish centers working on Covid19 vaccine

Europol seized 30,506 Internet domain names for IP Infringement

Iranian Peach Sandstorm group behind recent password spray attacks

Japanese tech firm Oomiya hit by LockBit 3.0. Multiple supply chains potentially impacted

Russia-linked APT28 and crooks are still using the Moobot botnet

Ransomware threat landscape Jan-Apr 2024: insights and challenges

New financially motivated attacks in Western Europe traced to Russian-speaking threat actors

Alleged docs relating to Covid-19 vaccine leaked in darkweb

Three APT groups have targeted at least seven COVID-19 vaccine makers

Chronicle experts spotted a Linux variant of the Winnti backdoor

FIN11 gang started deploying ransomware to monetize its operations

Hundreds of malicious Chrome browser extensions used to spy on you!

CERT-FR warns of Lockean ransomware attacks against French companies

China-linked APT10 leverages ZeroLogon exploits in recent attacks

Security Affairs newsletter Round 423 by Pierluigi Paganini – International edition

Hackers target COVID-19 vaccine supply chain and sell the vaccine in Darkweb

Financially motivated Earth Lusca threat actors targets organizations worldwide

China-linked APT41 group exploits Citrix, Cisco, Zoho flaws

Malvertising campaign exploits recently disclosed WordPress Plugin flaws

GwisinLocker ransomware exclusively targets South Korea

Balikbayan Foxes group spoofs Philippine gov to spread RATs

Russia-linked APT28 uses COVID-19 lures to deliver Zebrocy malware

Winnti APT continues to target game developers in Russia and abroad

Pharma Giant Cencora confirmed the theft of personal and health information

Security Affairs newsletter Round 343

German firms BASF, Siemens, Henkel hit by cyber attacks

Winnti uses a new PipeMon backdoor in attacks aimed at the gaming industry

Hackers target German Task Force for COVID-19 PPE procurement

Open database leaves major Chinese ports exposed to shipping chaos?

Europol analyses on criminal operations in Europe during COVID-19 Crisis

Information security and compliance training for the healthcare sector

New RA Group ransomware gang is the latest group using leaked Babuk source code

China-linked APT Bronze Starlight deploys ransomware as a smokescreen

China-linked hackers target government agencies by exploiting flaws in Citrix, Pulse, and F5 systems, and MS Exchange

Connecting the Bots – Hancitor fuels Cuba Ransomware Operations

MY TAKE: Why ‘basic research’ is so vital to bringing digital transformation to full fruition

Stay Connected