Security Affairs

DECEMBER 25, 2020

The North Korea-linked Lazarus APT group has recently launched cyberattacks against at least two organizations involved in COVID-19 research. The North Korea-linked APT group Lazarus has recently launched cyberattacks against two entities involved in COVID-19 research. ” reads the analysis published by Kaspersky.

Healthcare 122

Healthcare Phishing Passwords Ransomware 122

Security Affairs

JANUARY 9, 2023

Resecurity detailed the increasing tensions between different influence groups behind illegal marketplaces in Dark Web – attacking each other, performing DDoS attacks and trying to abuse the reputation of competitors to capture a bigger market share. Resecurity noticed a sharp increase in demand for prescription pharmaceuticals.

Healthcare 98

Healthcare Marketing Communications Sales 98

Security Affairs

JUNE 11, 2023

Experts found new MOVEit Transfer SQL Injection flaws The University of Manchester suffered a cyber attack and suspects a data breach Russians charged with hacking Mt.

Healthcare 90

Healthcare Security Ransomware Data breaches 90

Security Affairs

JANUARY 18, 2022

According to the security firm, the group is financially motivated, its cyberespionage campaign hit high value targets such as government and educational institutions, religious movements, pro-democracy and human rights organisations in Hong Kong, Covid-19 research organisations, gambling and cryptocurrency companies, and the media.

Healthcare 109

Healthcare Phishing Archiving Education 109

Security Affairs

OCTOBER 17, 2020

Shane Huntley, Director at Google’s Threat Analysis Group (TAG), revealed that her team has shared its findings with the campaigns and the Federal Bureau of Investigation. Google sent 11,856 government-backed phishing warnings during Q1 2020, 11,023 in Q2 2020, and 10,136 in Q3 2020. Tbps, the largest DDoS attack of ever.

Healthcare 85

Healthcare Phishing Authentication Government 85

Security Affairs

MARCH 27, 2020

Researchers at Group-IB observed new financially motivated attacks in Western Europe traced to Russian-speaking threat actors. At least two companies operating in pharmaceutical and manufacturing sectors have been affected. At least two companies operating in pharmaceutical and manufacturing sectors have been affected.

Healthcare 97

Healthcare Manufacturing Cybersecurity Retail 97

Security Affairs

OCTOBER 18, 2020

The financially-motivated hacker group FIN11 has started spreading ransomware to monetize its cyber criminal activities. The financially-motivated hacker group FIN11 has switched tactics starting using ransomware as the main monetization method. ” reads the analysis published by FireEye. ” reads the analysis.

Ransomware 129

Ransomware IT Healthcare Phishing 129

Security Affairs

SEPTEMBER 18, 2020

Chinese hackers have stolen information from Spanish laboratories working on a vaccine for COVID19, El Pais newspaper revealed. The El Pais newspaper reported that Chinese hackers have stolen information from Spanish laboratories working on a vaccine for COVID19. ” reported El Pais.

Healthcare 137

Healthcare Agriculture Security Government 137

Security Affairs

NOVEMBER 18, 2020

Symantec’s Threat Hunter Team, a Broadcom division, uncovered a global campaign conducted by a China-linked APT10 cyber-espionage group targeting businesses using the recently-disclosed ZeroLogon vulnerability. . The APT10 is well-resourced cyberespionage group that employed multiple tools and sophisticated techniques in its attacks.

Healthcare 101

Healthcare Archiving Cloud Manufacturing 101

Security Affairs

AUGUST 7, 2022

The ransomware targets South Korean healthcare, industrial, and pharmaceutical companies, its name comes from the name of the author ‘Gwisin’ (ghost in Korean). The victims of the Linux GwisinLocker variant are required to log into a portal operated by the group to get in contact with the crooks. . Pierluigi Paganini.

Ransomware 101

Ransomware Healthcare Encryption IT 101

Security Affairs

MARCH 23, 2020

Operation Pangea took place between March 3 and 10, 2020, the authorities dismantled 37 organized crime groups attempting to illegally sell counterfeit surgical masks, unauthorised antiviral medications and the antimalarial chloroquine, Vitamin C, food supplements, painkillers, and antibiotics. link] — EC3 (@EC3Europol) March 23, 2020.

Healthcare 87

Healthcare Sales IT Security 87

Security Affairs

DECEMBER 10, 2020

The APT28 group (aka Fancy Bear , Pawn Storm , Sofacy Group , Sednit , and STRONTIUM ) has been active since at least 2007 and it has targeted governments, militaries, and security organizations worldwide. The group was involved also in the string of attacks that targeted 2016 Presidential election.

Phishing 105

Phishing Healthcare Military Data collection 105

Security Affairs

JUNE 26, 2022

Researchers from Secureworks reported that a China-linked APT group, tracked as Bronze Starlight (APT10), is deploying post-intrusion ransomware families to cover up the cyber espionage operations. The victims include pharmaceutical companies in Brazil and the U.S., and an aerospace and defense division of an Indian conglomerate.

Ransomware 82

Ransomware Healthcare Manufacturing Encryption 82

Security Affairs

MAY 20, 2019

It is the first time that researchers found a Linux version of the backdoor user by China-linked APT groups tacked as Winnti. The experts believe that under the Winnti umbrella there are several APT groups , including Winnti , Gref, PlayfullDragon, APT17, DeputyDog , Axiom, BARIUM, LEAD , PassCV , Wicked Panda, and ShadowPad.

Healthcare 95

Healthcare Communications Libraries Access 95

Security Affairs

JULY 25, 2019

A new wave of cyber attacks carried out by a China-linked APT group hit German blue-chip companies BASF, Siemens, Henkel and others. German media reported that the cyber attacks were launched by China-linked cyberespionage group. The gang is financially-motivated and was mostly involved in cyber espionage campaigns.

Healthcare 98

Healthcare Security IT Information Security 98

Security Affairs

JANUARY 15, 2021

Experts attribute the attacks to the China-linked Winnti APT group (aka APT41 ) and reported that the attackers used a previously undocumented backdoor in the attacks. The Winnti group was first spotted by Kaspersky in 2013, but according to the researchers the gang has been active since 2007.

Healthcare 69

Healthcare Archiving Information Security Security 69

Security Affairs

MAY 22, 2020

The Winnti hacking group continues to target gaming industry, recently it used a new malware named PipeMon and a new method to achieve persistence. Winnti hacking group is using a new malware dubbed PipeMon and a novel method to achieve persistence in attacks aimed at video game companies. ” concludes ESET.

Healthcare 103

Healthcare Encryption Passwords IT 103

The Last Watchdog

MARCH 17, 2021

Backed by Japanese telecom giant NTT Group , this new facility instantly jumped into the vanguard of basic research already underway that will eventually enable the routine use of quantum computers, which, in turn, will open the door to things like driverless cars and Star Trekkian medical treatments. billion annually for R&D projects.

Digital transformation 222

Digital transformation Encryption Analytics Privacy 222

Security Affairs

DECEMBER 6, 2020

The post Security Affairs newsletter Round 292 appeared first on Security Affairs. Pierluigi Paganini. SecurityAffairs – hacking, newsletter).

Security 70

Security Healthcare Ransomware Education 70

Security Affairs

MAY 7, 2021

Hancitor became another commodity malware which partnered with ransomware gangs to help them gain initial access to target networks – the increasing trend outlined by Group-IB researchers in the recent Ransomware Uncovered 2020/2021 report. In addition, the group leveraged some custom tools for network reconnaissance. About Group-IB.

Ransomware 113

Ransomware Education Manufacturing Healthcare 113

Security Affairs

AUGUST 4, 2020

In May, the FBI and CISA also warned cyber attacks coordinated by Beijing and attempting to steal COVID-19 information from US health care, pharmaceutical, and research industry sectors. Do not add users to the local administrators group unless required. Enforce a strong password policy and implement regular password changes.

Healthcare 106

Healthcare Passwords Government Systems administration 106

Security Affairs

SEPTEMBER 16, 2023

The APT33 group has been around since at least 2013, since mid-2016, the group targeted the aviation industry and energy companies with connections to petrochemical production. The cyber espionage activity attacks are aimed at organizations in the satellite, defense, and pharmaceutical sectors. South Korean, and Europe.

Passwords 103

Passwords Healthcare Authentication Access 103

Security Affairs

SEPTEMBER 15, 2020

CISA published an advisory on China-linked groups targeting government agencies by exploiting flaws in Microsoft Exchange, Citrix, Pulse, and F5 systems. CISA published a security advisory warning of a wave of attacks carried out by China-linked APT groups affiliated with China’s Ministry of State Security.

Government 73

Government Energy and Utilities Healthcare Access 73

Security Affairs

MAY 1, 2020

Europol continues to observe on a daily base the trading of counterfeit pharmaceutical and healthcare products. .” The increase in activities related to online child pornography is worrisome, while there has been a limited impact of the COVID-19 pandemic on the level of terrorist threats to the European states.

Healthcare 96

Healthcare Ransomware Marketing Cybersecurity 96

Security Affairs

DECEMBER 25, 2023

Microsoft reports that the Iran-linked APT33 group is targeting defense contractors worldwide with FalseFont backdoor. The APT33 group has been around since at least 2013, since mid-2016, the group targeted the aviation industry and energy companies with connections to petrochemical production. South Korea, and Europe.

Healthcare 124

Healthcare Passwords Authentication Access 124

Hunton Privacy

JULY 17, 2015

Several groups, including the Pharmaceutical Research and Manufacturers of America and the Association of American Medical Colleges, support the 21st Century Cures Act. The Act, which garnered widespread bipartisan support, now moves to the Senate, which is expected to take up the legislation this fall.

Healthcare 49

Healthcare Privacy Manufacturing Marketing 49

Security Affairs

OCTOBER 26, 2019

Radicati Group reports that the total number of emails that businesses and consumers send and receive every day is expected to grow to a whopping 347 billion by 2023. Safeguard the integrity of intellectual property, especially when there’s a risk of corporate espionage, which is prevalent in industries like pharmaceuticals, etc.

Encryption 46

Encryption Communications Privacy Cybersecurity 46

Hunton Privacy

SEPTEMBER 15, 2011

PHR Data is grouped into two broad categories: (1) “Personal Data,” which is any PHR Data that identifies an individual, such as “names, health conditions, and other identifiers,” and (2) “Statistical Data,” which is PHR Data that is grouped so as to not connect to a specific individual and has names and other identifiers removed or altered.

Privacy 40

Privacy Healthcare Insurance Personal data 40

Data Matters

JANUARY 2, 2018

Perhaps the most personal aspects of cyberspace will arise with the marked increase in the rise of wearables, digital pharmaceuticals, and advances in personal medicine. We anticipate this legislative interest to remain and potentially grow as these technologies continue to develop. The Internet of Bodies.

Cybersecurity 68

Cybersecurity Privacy Data breaches GDPR 68

Security Affairs

NOVEMBER 4, 2021

CERT-France warns of a new ransomware group named Lockean that is behind a series of attacks against French organizations over the past 2 years. “First observed in June 2020, this group named Lockean is thought to have affiliated with several Ransomware-as-a-Service (RaaS) including DoppelPaymer, Maze, Prolock, Egregor and Sodinokibi.

Ransomware 88

Ransomware Healthcare Phishing IT 88

Security Affairs

OCTOBER 17, 2022

The business of Omiya Kasei is divided into four major areas, manufacturing and designing chemical and industrial products, designing electronic materials, pharmaceutical development, and factory manufacturing. Oomiya is focused on designing and manufacturing microelectronics and facility system equipment.

Manufacturing 126

Manufacturing Healthcare Ransomware Communications 126

IT Governance

DECEMBER 27, 2019

IT Governance is closing out the year by rounding up 2019’s biggest information security stories. Many people speculated that Huawei’s close ties with the Chinese government presented security risks, and thus the organisation should only be used for “non-core” parts of the system.

Data breaches 59

Data breaches GDPR Passwords Personal data 59

Security Affairs

DECEMBER 5, 2021

Hundreds of vulnerabilities in common Wi-Fi routers affect millions of users German BSI agency warns of ransomware attacks over Christmas holidays Cuba ransomware gang hacked 49 US critical infrastructure organizations CISA warns of vulnerabilities in Hitachi Energy products NSO Group spyware used to compromise iPhones of 9 US State Dept officials (..)

Security 85

Security Healthcare Ransomware Libraries 85

Security Affairs

DECEMBER 5, 2020

“North Korean hackers have targeted at least six pharmaceutical companies in the U.S., and South Korea working on Covid-19 treatments, according to people familiar with the matter, as the regime seeks sensitive information it could sell or weaponize.” ” reported the Wall Street Journal. ” Pierluigi Paganini.

Healthcare 82

Healthcare Information Security IT Security 82

Security Affairs

MARCH 3, 2024

Private Plane Owners’ Data Linked to LA Intl. Private Plane Owners’ Data Linked to LA Intl.

Security 102

Security Ransomware Retail Artificial Intelligence 102

IT Governance

MARCH 11, 2024

Other news ISO/IEC 27006:2024 published ISO (the International Organization for Standardization) and the IEC (International electrotechnical Commission) have published a new standard in the ISO 27000 information security series.

Data Privacy 79

Data Privacy Privacy Security Data breaches 79

ForAllSecure

APRIL 26, 2022

So there’s a need, a definite need, for information security professionals to have access to industrial control systems -- not virtual, but actual hands on systems -- so they can learn. In a moment I’ll introduce you to someone who is trying to do that--bring ICS equipment to security conferences. Now that is here.

Energy and Utilities 52

Energy and Utilities Manufacturing Risk IT 52