Zack Whittaker reports: Folks in America: Your senators only have a few weeks left to pass the PRESS Act, a federal “shield” bill that the House passed with unanimous, bipartisan support in January but has been waiting in the Senate for a final vote ever since. The PRESS Act, if passed into law, would enshrine nationwide protections for journalists across…
Ransomware attack on Bucharest: data of hundreds of thousands of citizens involved
The following is an automated machine translation. Matthew Garvey reports: The data of approximately 200,000 citizens of Sector 5 (such as CNP, first and last name, address, among others) were put up for sale by the hackers who launched a cyber attack on the City Hall at the end of October. The attackers also gained…
NIST publishes guide on due diligence for cyber supply chain risk management
Add this to the list of things I missed last week. Nathan Salminen and Ryan Campbell write: Last week, the National Institute of Standards and Technology (NIST) released a “quick-start guide” to facilitate due diligence assessments from a cyber supply chain risk management perspective. The guide helps companies navigate due diligence under the agency’s Special…
Remarks at a UN Security Council Briefing on Ransomware Attacks against Hospitals and Other Healthcare Facilities and Services
Anne Neuberger Deputy National Security Advisor of the United States New York, New York November 8, 2024 AS DELIVERED Thank you, Mr. President. Good morning. My name is Anne Neuberger and since 2021, I have had the privilege of coordinating the United States’ national security policy on cyber and emerging technologies. I am honored to…
Still in the dark: A “500 marker” is updated, but too many still aren’t. Is HHS doing anything about this??
In March 2024, LockBit3.0 added Redwood Coast Regional Center (RCRC) to its leak site. On May 3, RCRC notified HHS of the March 6 incident, reporting that 500 patients had been affected. RCRC only recently updated that report to indicate that 24,937 patients were affected. On or about November 5, they began mailing out letters…
In the midst of restructuring, Guardian Healthcare hit by ransomware attack
A recent article on the cybersecurity risks posed by mergers and acquisitions begins: When companies merge, it creates significant cybersecurity challenges in two main ways: firstly, challenges arise in integrating disparate security infrastructures, and secondly, an M&A transaction brings together diverse organizational cultures which presents its own challenges from a cyber perspective. Yet the limited…