Bill Toulas reports: The Robin Banks phishing-as-a-service (PhaaS) platform is back in action with infrastructure hosted by a Russian internet company that offers protection against distributed denial-of-service (DDoS) attacks. Robin Banks faced operational disruption in July 2022, when researchers at IronNet exposed the platform as a highly threatening phishing service targeting Citibank, Bank of America, Capital One, Wells…
Category: Commentaries and Analyses
Article: Factors Associated with Information Breach in Healthcare Facilities: A Systematic Literature Review
Factors Associated with Information Breach in Healthcare Facilities: A Systematic Literature Review Ahmad Khanijahani · Shabnam Iezadi· Sarah Agoglia · Spencer Barber· Courtney Cox · Natalie Olivo November 2022 Journal of Medical Systems 46(12) DOI:10.1007/s10916-022-01877-1 Abstract This systematic review aimed to identify the factors associated with information breaches in healthcare settings. We searched electronic databases, including…
Black Basta ransomware gang linked to the FIN7 hacking group
Bill Toulas reports: Security researchers at Sentinel Labs have uncovered evidence that links the Black Basta ransomware gang to the financially motivated hacking group FIN7, also known as “Carbanak.” When analyzing tools used by the ransomware gang in attacks, the researchers found signs that a developer for FIN7 has also authored the EDR (Endpoint Detection…
Ransomware cost US banks $1.2 billion last year
Dan Robinson reports: Banks in the US paid out nearly $1.2 billion in 2021 as a result of ransomware attacks, a marked rise over the year before though it may simply be due to more financial institutions being asked to report incidents. The figures come from the most recent Financial Trend Analysis report [PDF] on ransomware from…
World leaders make fresh vows to fight global ransomware threat
Martin Matishak reports: A coalition of government cybersecurity leaders from nearly 40 countries on Tuesday reaffirmed to work together to stamp out ransomware attacks, launching several new efforts meant to better combat the rising global threat. “We commit to work together to prioritize disruption targets to leverage the breadth of authorities and tools available to…
OCR Releases New Recognized Security Practices Video
In recognition of National Cybersecurity Awareness Month, OCR has produced a new video this October for organizations covered under the HIPAA Rules on Recognized Security Practices. Recommended security practices can help organizations improve their ability to safeguard patient information from cyberattacks and better safeguard the health care services we all rely upon. Section 13412 of…