CyberSecurity Blog

New guidance provides healthcare entities and medical device makers a jump-start for negotiating critical cybersecurity issues pertaining to procurement contracts, says Jim Jacobson of device manufacturer Siemens Healthineers, co-chair of an industry group that developed the contract template.http://dlvr.it/SNnLjp

Expanded Rewards Follow FBI Attributing Ronin Network Hack to Lazarus Group The U.S. government is offering up to $5 million for information that helps disrupt the illicit flow of funds to North Korea, including via cryptocurrency exchange hacks and ransomware. The expanded reward comes as the FBI has attributed a $620 million cryptocurrency heist to…
Read more

New legislation mandating cyber incident reporting for critical infrastructure providers within 72 hours, and the reporting of ransom payments within 24 hours, is “groundbreaking,” says former National Security Agency deputy commander Tim Kosiba, CEO of security firm Bracket f Inc.http://dlvr.it/SNn21N

ICYMI: If you follow the global threat landscape closely, then you may already be aware of a notorious Chinese hacking collective known as “Storm Cloud.” What few people know is that this group seems …http://dlvr.it/SNlNCF

ICYMI: Online photography platform Shutterfly is the latest high-profile company to fall victim to a hacking attack.  The company recently disclosed that in December of last year (2021) they were targeted by the …http://dlvr.it/SNhpkQ

ICYMI: New legislation mandating cyber incident reporting for critical infrastructure providers within 72 hours, and the reporting of ransom payments within 24 hours, is “ground-breaking,” says former National Security Agency deputy commander Tim Kosiba, CEO of security firm Bracket f Inc.http://dlvr.it/SNhjQB

Do you have a Wyze Cam?  If you’re not sure what that is, it’s an internet camera that offers a low-cost solution to those who are interested in playing around with video …http://dlvr.it/SNhjLL

ICYMI: The latest edition of the ISMG Security Report analyses the latest cyber threats to the energy sector as Russia’s invasion of Ukraine continues. It also examines best practices for Customer Identity and Access Management and how healthcare institutions can sharpen their defense strategies.http://dlvr.it/SNfc2t

ICYMI: Aite-Novarica’s Schreider Breaks Down What Makes This Scam ‘Interesting’ Researchers discovered a new social engineering-heavy malware campaign focused on defrauding employees in West Africa’s banking sector. Although this campaign is not exactly new, it shows a detailed account of what social engineering looks like, according to cybersecurity veteran Tari Schreider.http://dlvr.it/SNfDhB

ICYMI: Joint Advisory Issued by U.S. Govt. Agencies, Mandiant, Dragos, Schneider Electric U.S. government agencies, including the Department of Energy, CISA, the NSA and the FBI issued a joint cybersecurity advisory about advanced persistent threat actors using new tools and malwares to target industrial control systems and supervisory control and data acquisition devices.http://dlvr.it/SNfDdm