Healthcare, Risk and Security - Information Management Today

Pharmaceutical giant Cencora discloses a data breach

Security Affairs

FEBRUARY 28, 2024

Pharmaceutical giant Cencora suffered a cyber attack and threat actors stole data from its infrastructure. Pharmaceutical giant Cencora disclosed a data breach after it was the victim of a cyberattack. The company discovered the security breach on February 21 and immediately launched an investigation into the incident.

Healthcare

Healthcare Data breaches Ransomware Insurance

Merck settles with insurers regarding a $1.4 billion claim over NotPetya damages

Security Affairs

JANUARY 6, 2024

known as Merck Sharp & Dohme (MSD) outside the United States and Canada, is an American multinational pharmaceutical company. It is one of the largest pharmaceutical companies globally, engaged in the research, development, manufacturing, and marketing of a wide range of healthcare products. Merck & Co., Merck filed a $1.4

Insurance

Insurance Healthcare Manufacturing Ransomware

FBI warns US companies on the use of Chinese Tax Software

Security Affairs

JULY 28, 2020

The FBI has issued an alert to warn US organizations of the risk associated with the use of Chinese tax software that could be infected with malware. The Federal Bureau of Investigation has issued an alert to inform organizations in the United States of the risk associated with the use of Chinese tax software. ” reads the alert.

Healthcare

Healthcare Risk Government Security

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Security Affairs newsletter Round 423 by Pierluigi Paganini – International edition

Security Affairs

JUNE 11, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Healthcare

Healthcare Security Ransomware Data breaches

Europol seized 30,506 Internet domain names for IP Infringement

Security Affairs

DECEMBER 2, 2019

some private security firms. “These included counterfeit pharmaceuticals and pirated movies , illegal television streaming, music, software, electronics, and other bogus products.” The post Europol seized 30,506 Internet domain names for IP Infringement appeared first on Security Affairs. Pierluigi Paganini.

Healthcare

Healthcare Sales Risk Security

Alleged docs relating to Covid-19 vaccine leaked in darkweb

Security Affairs

JANUARY 1, 2021

Security experts from threat intelligence firm Cyble have found several documents relating to the Covid-19 vaccine allegedly stolen from the European Medicines Agency (EMA) leaked in the Darkweb. In the last months, security experts reported the surge of the illegal market for Covid-19 vaccines on the Darkweb market.

Healthcare

Healthcare Marketing Authentication Access

Resecurity Released a Status Report on Drug Trafficking in the Dark Web (2022-2023)

Security Affairs

JANUARY 9, 2023

Resecurity, a Los Angeles-based cybersecurity and risk management provider has released an eye-opening report on drug trafficking marketplaces currently operating in the Dark Web. Resecurity noticed a sharp increase in demand for prescription pharmaceuticals.

Healthcare

Healthcare Marketing Communications Sales

Open database leaves major Chinese ports exposed to shipping chaos?

Security Affairs

MARCH 11, 2022

ElasticSearch lacks a default authentication and authorization system – meaning the data must be put behind a firewall, or else run the risk of being freely accessed, modified or deleted by threat actors. appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook. Pierluigi Paganini.

Healthcare

Healthcare Authentication Access Risk

SILENTFADE a long-running malware campaign targeted Facebook AD platform

Security Affairs

OCTOBER 3, 2020

The attackers primarily ran malicious ad campaigns, often in the form of advertising pharmaceutical pills and spam with fake celebrity endorsements.” This use of compromised credentials runs the risk of encountering accounts that are protected with two-factor authentication, which SilentFade cannot bypass.”. Pierluigi Paganini.

Healthcare

Healthcare Paper Authentication Metadata

Interpol warns that crooks are increasingly targeting hospitals

Security Affairs

APRIL 7, 2020

According to experts from Group-IB, Russian-speaking threat actors targeted at least two companies in Western Europe in the pharmaceutical and manufacturing industries. A few days ago, Microsoft warned dozens of hospitals of the risks of ransomware attacks due to insecure VPN devices and gateways exposed online. Pierluigi Paganini.

Ransomware

Ransomware Healthcare Manufacturing Passwords

Winnti APT continues to target game developers in Russia and abroad

Security Affairs

JANUARY 15, 2021

The APT group targeted organizations in various industries, including the aviation, gaming, pharmaceuticals, technology, telecoms, and software development industries. Small studios tend to neglect information security, making them a tempting target. ” concludes the report. ” concludes the report. Pierluigi Paganini.

Healthcare

Healthcare Archiving Information Security Security

Ransomware accounts for 54% of cyber threats in the health sector

Security Affairs

JULY 5, 2023

42% of incidents reported targeted hospitals, while health authorities, bodies and agencies accounted for 14%, and the pharmaceutical industry for 9%. “Insiders and poor security practices, including misconfigurations, were identified as primary causes of these leaks. ” reads the report.

Ransomware

Ransomware Healthcare Cybersecurity Security

Pharma Industry Seeing Reduction in Data Breach Costs, But Still Have Much to Do

KnowBe4

SEPTEMBER 28, 2023

Insights from IBM’s Cost of a Data Breach Report on the Pharmaceutical Industry shows that while the overall cost has improved, there are clear areas of risk that need to be addressed.

Data breaches

Data breaches Healthcare Risk Security awareness

Connecting the Bots – Hancitor fuels Cuba Ransomware Operations

Security Affairs

MAY 7, 2021

Despite the fact the group is leveraging quite common techniques in their operations, their attacks are still quite effective and affects organizations from various sectors, including financial, pharmaceutical, educational, industrial, professional services and software development, focusing mainly on Europe and USA. Pierluigi Paganini.

Ransomware

Ransomware Education Manufacturing Healthcare

Mozilla Drops Onerep After CEO Admits to Running People-Search Networks

Krebs on Security

MARCH 22, 2024

“Though customer data was never at risk, the outside financial interests and activities of Onerep’s CEO do not align with our values,” Mozilla wrote. In a statement released today, a spokesperson for Mozilla said it was moving away from Onerep as a service provider in its Monitor Plus product.

Healthcare

Healthcare Privacy Data breaches Government

News Alert: CybeReady issues a summer saeson guide outlining 5 workforce security strategies

The Last Watchdog

JUNE 20, 2023

— CybeReady, a global leader in security awareness training, today announced the release of its informative guide, “Five Workforce Security Strategies to Consider During Summer Holidays.” So, as we unwind on vacation over the next few months, vigilance and adherence to security protocols are paramount.

Security awareness

Security awareness Security Healthcare Risk

Encryption – A Feasible Savior against Prevalent Privacy Issues in Business Communication

Security Affairs

OCTOBER 26, 2019

Impact of Privacy & Security Issues in Business Communication. And, the dilemma is that not every business is prepared for it or have sufficient means to mitigate the risks. Encryption plays an integral role in securing the online data as well as its integrity. Why is Encryption a Feasible Option against Digital Threats?

Encryption

Encryption Communications Privacy Cybersecurity

Security in a World of Physically Capable Computers

Schneier on Security

OCTOBER 12, 2018

The risks are about to get worse, because computers are being embedded into physical devices and will affect lives, not just our data. Security is not a problem the market will solve. We have accepted this tenuous situation because, for a very long time, computer security has mostly been about data.

Security

Security Government Marketing Manufacturing

Intelligent Search – Strategies to Find What You Need

AIIM

AUGUST 26, 2021

Storing important information in a secure and compliant way. For many organizations, especially those in jargon-intense fields like the Oil and Gas, Pharmaceutical, or Healthcare industries, “speaking the right language” goes well beyond standard search terms. It all boils down to: Finding the right information when you need it.

Digital transformation

Digital transformation Search queries Artificial Intelligence Healthcare

Pharmaceutical Company to Plead Guilty and Settle Drug Marketing Charges

Hunton Privacy

MAY 19, 2016

Recently, Aegerion Pharmaceuticals announced that it will enter into several settlements and plead guilty to two misdemeanors in connection with alleged violations of HIPAA, drug marketing regulations and securities laws. The criminal charges stem from the company’s marketing of a cholesterol drug called Juxtapid.

Healthcare

Healthcare Marketing Privacy Risk

Illumio Unveils CloudSecure for Zero Trust Segmentation in the Cloud

eSecurity Planet

OCTOBER 26, 2021

Illumio today announced the launch of Illumio CloudSecure, an agentless solution designed to support zero trust security in public, hybrid, and multi-cloud environments. ” Securing Multi-Cloud Environments. “There’s more people involved, which means there’s more risk in those environments,” he said.

Cloud

Cloud Manufacturing Healthcare Risk

Why You Need to Tune EDR to Secure Your Environment

eSecurity Planet

APRIL 21, 2022

This allows EDR to deploy very quickly, but it also allows for a number of security vulnerabilities. Here we’ll discuss why EDR vendors choose these configurations, and how organizations can tune their EDR systems to fit their organization and improve security. Also read: 10 Top Active Directory Security Tools.

Security

Security Access Sales e-Discovery

MY TAKE: Why ‘basic research’ is so vital to bringing digital transformation to full fruition

The Last Watchdog

MARCH 17, 2021

Ongoing basic research in advanced cryptography concepts is pivotal to putting the brakes on widening cyber risks and ultimately arriving at a level of privacy and security that makes sense. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. (LW

Digital transformation

Digital transformation Encryption Privacy Analytics

MY TAKE: Cyber attacks on industrial controls, operational technology have only just begun

The Last Watchdog

OCTOBER 8, 2018

And the risks are multiplying as more digital devices become connected in insufficiently secured environments. But Gartner and others now recommend merging OT and IT security. It’s time to upgrade security to a modern, multi-layered approach and realize that firewalls are no longer sufficient,” Neray says.

Military

Military Healthcare Phishing Security

The Value of Data Governance and How to Quantify It

erwin

MARCH 25, 2021

For example, one global pharmaceutical giant reduced cost by 70 percent and generated 95 percent of production code with “zero touch.” Risk Management and Regulatory Compliance. Risk management, specifically around regulatory compliance, is an important use case to demonstrate the true value of data governance.

Government

Government IT Compliance Risk

Vulnerability Management as a Service: Top VMaaS Providers

eSecurity Planet

OCTOBER 24, 2022

It falls to IT security teams to determine where those vulnerabilities lie in their organization and which ones they need to prioritize. Typically, a security team will leverage a cloud security platform to detect vulnerabilities, misconfigurations, and other cloud risks. That process can be overwhelming.

Cloud

Cloud Risk Security Data breaches

Cambridgeshire crowned the UK’s cyber crime capital

IT Governance

SEPTEMBER 21, 2020

Figures from the ONS (Office of National Statistics) show that security incidents in Cambridgeshire increased from 2,789 in 2016 to 4,155 in 2018. For example, the pharmaceutical giant AstraZeneca, which is based in Cambridge, was last year imitated in a sophisticated phishing scam targeting job seekers. Protect your organisation.

Healthcare

Healthcare Education Phishing Risk

STEPS FORWARD: Math geniuses strive to make a pivotal advance — by obfuscating software code

The Last Watchdog

NOVEMBER 16, 2020

Simply put, iO must be achieved in order to preserve privacy and security while tapping into the next generation of IT infrastructure. It will, of course, be vital to have these next-gen, AI-infused systems run securely, in ways that preserve individual privacy. An intolerable security bottleneck, in fact, is taking shape.

Computer and Electronics

Computer and Electronics Encryption Energy and Utilities Cloud

New Cybersecurity Directives (NIS2 and CER) Enter into Force

Hunton Privacy

JANUARY 18, 2023

However, the concept of an “essential entity” is much broader and will also capture many organizations that have, to-date, not been subject to the NIS regime—for example, pharmaceutical companies and operators of hydrogen production, storage and transmission. Reporting of incidents. Reporting of incidents. Enforcement.

Cybersecurity

Cybersecurity Healthcare Encryption Risk

Information security and compliance training for the healthcare sector

IT Governance

JULY 12, 2018

Pharmacies, rehabilitation care, social care, medical research and pharmaceuticals all rely on this data being available to individuals delivering their services. Most data breaches occur as a result of human error , so when the number of individuals handling data increases, so do the potential risks. ISO 27001 training. ISO 27001 ?is

Information Security

Information Security Compliance GDPR Security

68% of Pharma Executives Have Had Credentials Breached Online

Adam Levin

MAY 7, 2020

The online credentials for 68% of pharmaceutical executives analyzed for a study have been compromised recently. The study, conducted by cybersecurity firm Blackcloak, found that the email accounts of over two-thirds of pharmaceutical executives had been compromised within the last five to ten years.

Healthcare

Healthcare Passwords Cybersecurity Data breaches

How to protect healthcare and life-sciences data from a cyber attack pandemic

Thales Cloud Protection & Licensing

APRIL 25, 2022

According to analyst firm IDC , 93% of pharmaceutical companies and 72% of biotech companies already have business-critical applications in the cloud, including product lifecycle management, analytics, revenue management, and much more. The risks of non-compliance. Data security. But the threat is a lot more insidious.

Healthcare

Healthcare Big data Cloud Compliance

Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk

The Security Ledger

AUGUST 20, 2019

Related Stories Episode 155: Disinformation is a Cyber Weapon and APTs warm to Mobile Malware Podcast Episode 117: Insurance Industry Confronts Silent Cyber Risk, Converged Threats NotPetya Horror Story Highlights Need for Holistic Security. Read Security Ledger coverage of NotPetya here.

Insurance

Insurance Risk Healthcare Manufacturing

The hidden threats facing your intellectual property

IT Governance

SEPTEMBER 4, 2018

The risk of losing your IP. For life sciences and pharmaceutical companies, this includes data on the development and testing of new therapies and details of how therapies are manufactured. The range of threats that organisations face make it impossible to eliminate the risk of a breach. million fine. Preventive measures.

Healthcare

Healthcare Insurance Manufacturing Risk

Mobile Malware: Threats and Solutions

eSecurity Planet

AUGUST 11, 2021

While the total volume of mobile malware is a fraction of that created for desktops, it is nonetheless a growing security concern, as more and more high-value and sensitive tasks are performed on mobile devices. Security researchers at Kaspersky determined that it accounted for 61.43% of mobile malware detected in Q1 2021. Bitdefender.

Healthcare

Healthcare Risk Phishing Encryption

The Cloud Trust Paradox: Keeping Control of Data & Encryption Keys in the Cloud

Thales Cloud Protection & Licensing

MARCH 4, 2021

Trust is a much-debated topic in cloud security. It is as important as privacy, security and compliance. Besides these security considerations, Google Cloud has identified “three patterns where keeping the keys off the cloud may in fact be truly necessary or outweighs the benefits of cloud-based key management.”. Cloud security.

Encryption

Encryption Cloud Compliance Healthcare

Customer Experience Trends: How To Stand Out From the Crowd

Reltio

JANUARY 9, 2020

Every organization — from mom and pop shops to pharmaceutical manufacturers — must adopt tools and techniques for providing the hyper-personalized experiences customers require at every touchpoint in their journey. . Your Customer Experience Is Your Most Valuable Asset.

Customer Experience

Customer Experience Digital transformation Healthcare Communications

Half of EDR Tools, Organizations Vulnerable to Clop Ransomware: Researchers

eSecurity Planet

JUNE 30, 2023

Cymulate ran 3,107 assessments across 340 organizations recently to see if security controls were adequate against the Clop (sometimes called “Cl0p” with a zero) ransomware group’s exploitation of a MOVEit software vulnerability ( CVE-2023-34362 ). Endpoint Security: Install and update antivirus software on all hosts.

Ransomware

Ransomware Passwords Cybersecurity Healthcare

Data Intelligence and Its Role in Combating Covid-19

erwin

MARCH 30, 2020

Privately it will come from hospitals, labs, pharmaceutical companies, doctors and private health insurers. This data will be collected from organizations such as, the World Health Organization (WHO), the Centers for Disease Control (CDC), and state and local governments across the globe.

Metadata

Metadata IT Government Healthcare

Security Teams Lean Into AI As Cyber Worker Shortage Persists

The Security Ledger

JULY 22, 2024

The post Security Teams Lean Into AI As Cyber Worker Shortage Persists appeared first on The Security Ledger with Paul F. Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk Episode 256: Recursive Pollution? Related Stories China Calls Out U.S. For Hacking. Data Feudalism?

Artificial Intelligence

Artificial Intelligence Security Cybersecurity Risk

The Applications of Blockchain in Data Management

AIIM

MAY 21, 2020

This means it is completely secure, and it cannot be changed. Data Security. Security methods, such as encryption, are useful in the fight against data breaches, but they cannot offer complete protection. Even the systems of organizations with the highest levels of security have been penetrated. Data Traceability.

Blockchain

Blockchain Data breaches Government Artificial Intelligence

Counting Down to the EU NIS2 Directive

Thales Cloud Protection & Licensing

MAY 22, 2024

Counting Down to the EU NIS2 Directive madhav Thu, 05/23/2024 - 05:16 Our recently released 2024 Data Threat Report showed a direct correlation between compliance and cyber security outcomes. NIS2 expands the original NIS Directive to cover more industry sectors, with additional risk-management measures and incident reporting obligations.

Compliance

Compliance Authentication Cybersecurity Risk

Takeaways from Forrester’s Latest Report on Enterprise Architecture Management Suites

erwin

MARCH 12, 2020

The report notes six primary EA competencies in which we excel in the large vendor category: modeling, strategy translation, risk management, financial management, insights and change management. They’re looking for product management, dev/ops, security modeling, personas and portfolio management all to be part of an integrated EA platform.

Artificial Intelligence

Artificial Intelligence Healthcare Compliance Risk

GUEST ESSAY. Everyone should grasp these facts about cyber threats that plague digital commerce

The Last Watchdog

FEBRUARY 28, 2021

Regardless of how familiar you are with Information Security, you’ve probably come across the term ‘malware’ countless times. Related: Companies must bear a broad security burden. This article will walk you through the various types of malware, how to identify and prevent a malware attack, and how to mitigate the risks.

Computer and Electronics

Computer and Electronics Phishing Ransomware Encryption

Pharmaceutical giant Cencora discloses a data breach

Merck settles with insurers regarding a $1.4 billion claim over NotPetya damages

Webinars

Trending Sources

FBI warns US companies on the use of Chinese Tax Software

Webinars

Security Affairs newsletter Round 423 by Pierluigi Paganini – International edition

Europol seized 30,506 Internet domain names for IP Infringement

Alleged docs relating to Covid-19 vaccine leaked in darkweb

Resecurity Released a Status Report on Drug Trafficking in the Dark Web (2022-2023)

Open database leaves major Chinese ports exposed to shipping chaos?

SILENTFADE a long-running malware campaign targeted Facebook AD platform

Interpol warns that crooks are increasingly targeting hospitals

Winnti APT continues to target game developers in Russia and abroad

Ransomware accounts for 54% of cyber threats in the health sector

Pharma Industry Seeing Reduction in Data Breach Costs, But Still Have Much to Do

Connecting the Bots – Hancitor fuels Cuba Ransomware Operations

Mozilla Drops Onerep After CEO Admits to Running People-Search Networks

News Alert: CybeReady issues a summer saeson guide outlining 5 workforce security strategies

Encryption – A Feasible Savior against Prevalent Privacy Issues in Business Communication

Security in a World of Physically Capable Computers

Intelligent Search – Strategies to Find What You Need

Pharmaceutical Company to Plead Guilty and Settle Drug Marketing Charges

Illumio Unveils CloudSecure for Zero Trust Segmentation in the Cloud

Why You Need to Tune EDR to Secure Your Environment

MY TAKE: Why ‘basic research’ is so vital to bringing digital transformation to full fruition

MY TAKE: Cyber attacks on industrial controls, operational technology have only just begun

The Value of Data Governance and How to Quantify It

Vulnerability Management as a Service: Top VMaaS Providers

Cambridgeshire crowned the UK’s cyber crime capital

STEPS FORWARD: Math geniuses strive to make a pivotal advance — by obfuscating software code

New Cybersecurity Directives (NIS2 and CER) Enter into Force

Information security and compliance training for the healthcare sector

68% of Pharma Executives Have Had Credentials Breached Online

How to protect healthcare and life-sciences data from a cyber attack pandemic

Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk

The hidden threats facing your intellectual property

Mobile Malware: Threats and Solutions

The Cloud Trust Paradox: Keeping Control of Data & Encryption Keys in the Cloud

Customer Experience Trends: How To Stand Out From the Crowd

Half of EDR Tools, Organizations Vulnerable to Clop Ransomware: Researchers

Data Intelligence and Its Role in Combating Covid-19

Security Teams Lean Into AI As Cyber Worker Shortage Persists

The Applications of Blockchain in Data Management

Counting Down to the EU NIS2 Directive

Takeaways from Forrester’s Latest Report on Enterprise Architecture Management Suites

GUEST ESSAY. Everyone should grasp these facts about cyber threats that plague digital commerce

Stay Connected