A Texas-based physical and occupational therapy provider is notifying nearly 4 million patients that they have joined the soaring tally of victims of a data theft incident at a Nevada medical transcription vendor last year. The supply chain hack appears to have affected at least 14 million people.
The U.S. Cybersecurity and Infrastructure Security Agency is aiming to improve the implementation of software bills of materials across the public and private sectors as experts warn that a failure to build and use the critical inventory lists could result in "catastrophic security breaches."
In the latest weekly update, Troy Leach, CSO at Cloud Security Alliance, joins three editors at ISMG to discuss important cybersecurity issues, including how generative AI is enhancing multi-cloud security, AI's influence on authentication processes, and the state of zero trust and IoT security.
A nation-state hacking group run by Russian intelligence gained access to a Microsoft "legacy, non-production test tenant account" and used it to authorize malicious Office 365 OAuth applications, access Outlook, and steal Microsoft and customers' emails and attachments, Microsoft said.
A U.S. federal judge sentenced a Russian national to five years and four months in prison for his role in developing TrickBot malware. Vladimir Dunaev, 40, pleaded guilty in December. Dunaev helped develop the malware "while hiding behind his computer," U.S. Attorney Rebecca Lutzko said.
This week, Chainalysis reviewed 2023 crypto trends, Blockfence uncovered a $32 million rug pull, the U.S. CFTC cracked down on alleged pig butchering, the ex-IcomTech CEO was sentenced, hackers stole millions from Gamee, Socket recovered funds, and hackers exploited a flaw in Mailer Lite.
Federal authorities are warning of attacks on healthcare sector firms that use ConnectWise's remote access tool ScreenConnect. Hackers compromised a locally hosted version of the tool used by a large national pharmacy supply chain and managed services provider in 2023.
The Federal Trade Commission is investigating whether five artificial intelligence technology giants are exerting undue influence or gaining privileged access "in ways that undermine fair competition" across the generative AI sector, said Chairwoman Lina Khan.
This week, U.S. short seller lender EquiLend Holdings was hacked, the Ivanti exploitation continued, Apple addressed the first zero-day of 2024, Ukraine said hackers had hit a Russian research center, Kasseika ransomware evolved, North Korean hackers were active, and Trello experienced a data leak.
In an age reliant on operational technology, ensuring robust security for diverse industries is crucial. Join us as we discuss operational challenges, highlighting specific threats faced by businesses today. Explore how the powerful alliance between HCLTech and Microsoft empowers organizations to safeguard critical...
Supply chain attacks and zero-day exploits surged in 2023, helping to set yet another record for data breaches tracked by the Identity Theft Resource Center. James E. Lee, COO of the group, explained why the number of compromises grew so dramatically - from 1,801 incidents in 2022 to 3,205 in 2023.
Fortinet has just announced Fortinet Advisor, its own version of Generative AI aimed at SecOps teams. John Maddison and Kevin Faulkner of Fortinet discuss the new solution and how it could bridge the networking and security sides of Fortinet to give companies a more holistic view of their organization.
Does a day ever go by without a fresh set of data breach notifications? Some organizations' breach notifications at least signal respect for the recipient. But others play it shadier, by resorting to marketing spin, minimizing the blame, and in some cases, even indulging in corporate cheerleading.
Overwhelming data. Imposing organization silos. Lack of insight from tools and information. These are broad challenges shared by many public sector entities. Fadi Fadhil of Palo Alto Networks offers strategies to address the complexities and streamline cybersecurity operations.
No doubt, limited budgets impact the ability of public sector organizations to invest in robust cybersecurity measures. But Fadi Fadhil, CIO at Palo Alto Networks, says AI is one emerging technology these agencies can put to use to help mitigate resource constraints and a dearth of security skills.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.