How Deepfakes and Misinformation Attacks Threaten Healthcare

Marianne Kolbasuk McGee • December 6, 2022

The prospect of attackers using voice impersonation, deepfake technologies and misinformation against healthcare sector entities is a serious threat that entities need to be closely monitoring, says Dave Summit, vice president of cybersecurity at Florida Cancer Specialists and Research Institute.

►

3rd Party Risk Management

HHS Rule to Ease Record Sharing, Guard Substance Abuse Data

Latest

Endpoint Detection & Response (EDR)

SentinelOne Pushes Upmarket to Minimize Effects of Slowdown

Michael Novinson • December 6, 2022

SentinelOne plans to go after more Fortune 500 and Global 2000 organizations as the economic downturn prompts customers to shrink the size of their purchases. Over the past year, the company doubled the number of clients spending at least $100,000 and $1 million with SentinelOne annually.

Fraud Management & Cybercrime

Rackspace Confirms Exchange Outage Caused by Ransomware

Akshaya Asokan • December 6, 2022

Ransomware lies behind the ongoing outage of hosted Exchange services at Rackspace, the company disclosed in a Tuesday update. The company did not disclose any particular ransomware actor. It told federal regulators that the outage is likely to create a financial loss.

Application Security

Snyk's Iain Rose on How to Secure Cloud-Native Environments

Michael Novinson • December 5, 2022

Organizations should build apps and design development workflows in a way that embraces how quickly cloud-native architectures change, says Snyk Solutions Engineer Iain Rose. Unlike traditional on-premises environments, containerized applications are designed to be ephemeral, Rose says.

Fraud Management & Cybercrime

Hacked French Hospital Suspends Emergency Operations

Mihir Bagwe • December 5, 2022

A French hospital in the Parisian suburbs scrambled to respond to a weekend cyber incident by transferring patients, directing emergency cases elsewhere and bringing on additional staffers to observe patients. The incident does not appear to have spread beyond the Hospital Center of Versailles.

Security Information & Event Management (SIEM)

Securonix Taps Ivanti, BMC, SAP Vet Nayaki Nayyar as New CEO

Michael Novinson • December 5, 2022

Securonix has snagged longtime Ivanti, BMC Software and SAP executive Nayaki Nayyar as CEO to strengthen product capabilities and customer experience. One of a handful of female CEOs in the vendor community, she doubled Ivanti's total addressable market during her 30 months as president.

Cyberwarfare / Nation-State Attacks

A Look Ahead: David Pollino on Evolution of the CISO Role

Tom Field • December 5, 2022

From the invasion of Ukraine to the conviction of a former Uber CISO and the Musk takeover of Twitter, it's been a watershed year for cybersecurity concerns. Veteran CISO David Pollino reflects on 2022 and looks ahead to the challenges - and opportunities - that await in 2023.

Business Continuity Management / Disaster Recovery

Rackspace Hosted Exchange Still Offline Over Security Issue

Prajeet Nair • December 5, 2022

Thousands of Rackspace customers continue to face hosted Microsoft Exchange Server outages after the managed services giant took the offering offline after being affected by an unspecified security incident Thursday. Rackspace urges affected customers to at least temporarily move to Microsoft 365.

Identity & Access Management

OneSpan CEO on Joining Identity Verification and e-Signature

Michael Novinson • December 4, 2022

Bringing OneSpan's identity verification and e-signature businesses together in the cloud will allow the company to secure the whole customer transaction life cycle, says CEO Matt Moynahan. Customers want security capability that is seamlessly integrated and interwoven across their entire workflow.

Incident & Breach Response

New Zealand Health Insurer Investigates IT Provider Hack

Mihir Bagwe • December 4, 2022

New Zealand private health insurer Accuro says an investigation into a cyber incident at a third party IT infrastructure provider so far has not revealed evidence of a data breach affecting its 34,000 customers. Customers should expect delayed service in claims processing.

Industry Specific

Top Cybersecurity Challenges Facing Healthcare Providers

Marianne Kolbasuk McGee • December 3, 2022

With the surge in ransomware and other major hacking incidents affecting third-party suppliers, it is more critical than ever for healthcare sector entities to diligently scrutinize threats and risks involving their vendors, says Denise Anderson, president and CEO of the Health-ISAC.

Fraud Management & Cybercrime

Cuba Ransomware Targeting Critical Infrastructure, Feds Warn

Prajeet Nair • December 2, 2022

The U.S. federal government says the Cuba ransomware gang actively targets critical infrastructure and that its criminal efforts have netted it $60 million so far. The group has recently modified its techniques, says an alert from the FBI and the Cybersecurity and Infrastructure Security Agency.

Cloud Security

Clumio CEO on Why AWS S3 Buckets Pose a Giant Security Risk

Michael Novinson • December 2, 2022

The need for AWS security has increased as S3 buckets have evolved from a dumping ground for data to the home for critical cloud-native applications, says Clumio co-founder and CEO Poojan Kumar. Information in S3 buckets is susceptible to both accidental deletions and cyberattacks.