Hacking Attacks on Hospitals for Patient Data Increase During Coronavirus Pandemic

Articles of interest from the week of July 20, 2020

Hacking Attacks on Hospitals for Patient Data Increase During Coronavirus Pandemic

More than 80% of medical practices have been the victims of cyberattacks, according to a national survey. Over half reported patient safety concerns from the hacks, and 20% said that their business had been interrupted for more than five hours.. (By Karen Weintraub, USA TODAY) Ingalls: The most important decision a business can make regarding cybersecurity risk management is to determine their cybersecurity risk management strategy. Our blog covers the pros and cons of both the Responsive and Proactive Strategies.

 

20,000+ New Vulnerability Reports Predicted for 2020, Shattering Previous Records

Over 9,000 new vulnerabilities have been reported in the first six months of 2020, and we are on track to see more than 20,000 new vulnerability reports this year — a new record, Skybox Security reveals. (By Help Net Security) Ingalls: The focus and the capability of attackers is clear: they have the means to impart serious financial and reputational harm on organizations. Ingalls has the tools and expertise for focused remediation strategies that are informed by full network visibility and contextual, data-rich intelligence.


Microsoft Seizes Malicious Domains Used in Mass Office 365 Attacks

The phishing campaign targeted Office 365 accounts in 62 countries, using business-related reports and the coronavirus pandemic as lures. Microsoft has seized several domains associated with a massive hacking campaign, which has targeted Office 365 accounts with phishing and business email compromise (BEC) emails. (By Lindsey O'Donnell, Threatpost) Ingalls: Email-based threats, like BEC attacks, are becoming a bigger problem for businesses. Ingalls has the ability to investigate Cloud-based BEC breaches as well as deploy tools into any on-premises environments to check for lateral movement by attackers who have access to Single Sign On (SSO) credentials such as those managed by Microsoft Active Directory and Azure Active Directory. We are able to assist in remediation of any BEC breaches by analyzing email accounts, determining what actions attackers took (such as creation of forward and delete rules for inboxes, etc.), and purging email accounts of spear phishing emails as well as unauthorized changes.


Secret Service Creates Cyber Fraud Task Forces

Traditional financial crime and cyberattacks are converging, requiring new skills and approaches to the problem, officials said. The U.S. Secret Service has created the Cyber Fraud Task Forces (CFTFs), aimed at preventing, detecting and mitigating complex cyber-enabled financial crime – including making arrests and convictions. (By Tara Seals, Threatpost


Cybersecurity Teams Are Struggling With a Lack of Visibility Into Key Security Controls

89% of security professionals are most concerned about phishing, web and ransomware attacks. This is especially alarming, considering that only 48% confirm that they have continuous visibility into the risk area of phishing, web and ransomware, a Balbix report reveals. (By Help Net Security) Ingalls: Our Managed Detection and Response (MDR) service provides increased environment visibility and effective cybersecurity risk management. It also uses a combination of human intelligence and technical innovation to provide a service that goes far beyond simply sending out an endless list of non-valuable alerts. To learn more about MDR visit our recent blog post titled: Managed Detection And Response (MDR): What’s It All About?

Share :

Sign Up For Network Security News