The Latest Emerging Healthcare Cybersecurity Threat? A Forgotten Function on Your All-In-One Printer

Does anyone even fax anymore? And if they do, aren't they using digital variations like eFax and SmartFax? Or maybe you're still using an all-in-one printer (like my OfficeJet 4650: Print - Fax - Scan - Copy - Web)? If yours is anything like mine, the FAX function is still automatically built in at the factory, and it is this "sweet-spot", your printer's unused fax function, that attackers are targeting. Even with the current IoT boom, printers are often an after thought, if

Healthcare is Going Mobile - And So Are the Threats to Your Hospital and Patients

By now the move to all-mobile-everything seems almost inevitable, but what does that mean for your security strategy? Malware, Ransomware and Phishing attacks continue to target and plague hospitals, often at a rate two times higher than other sectors. Despite this disturbing trend however, studies show over the last several years, organizations are become more active in defending their patients and infrastructure from cyber threats. According to a recent HIMSS Cybersecurity

Cyber Criminals are Costing Your Bank $18 Million... PER ATTACK. Is it time to play offense?

Cyberattacks cost targeted firms in the financial sector an average $18 million per incident, $6 million more than similar attacks in other sectors. Additionally, financial institutions also fall victim to cyberattacks 300 times more often than businesses in other industries, a rate that has tripled over the last five years. While the typical American business is attacked 4 million times per year, the typical American financial services firm is attacked a staggering 1 billion

Does Your Bank or Credit Union Use Fiserv? If so, Your Financial Info May be at Risk.

If you're one of the 1700+ banks or credit unions currently using Fiserv, or are a customer of one, a flaw in the company's web platform may have exposed your personal and financial information to the masses. The flaw was fist recognized by Kristian Erik Hermansen, when he received an email alert indicating a new transaction had posted to his own bank account. Noticing the alert was assigned with a specific "event number", Hermansen hypothesized the event numbers for similar

Protect your Patients... Protect Your Hospital: Best Practices for Avoiding Cyber Pitfalls

Over the last decade the healthcare industry has become a leading target for hackers and bad actors. The amount of information stored in patient records is a literal goldmine for thieves who are looking to commit fraud or extort ransoms, and these targeted attacks are only increasing. So what can you do to keep your patients, hospital, and employees safe? 1. It's not enough to just "talk" cybersecurity: According to a study by HIMSS Analytics and Symantec, 82% of the healthc

Flashback Friday? Chinese "Hackers" Revert to Old School Methods to Deliver Malware to State Targets

Is social engineering devolving? In weird news of the week, it appears Chinese "hackers" are going old school with their latest scam, and sending CDs (yes, compact discs) loaded with malware to state officials. The ploy is simple, send the CD with a brief note and wait for the recipient to load the CD into their computer (Do computers even still have CD roms??). The CDs are laced with Microsoft Word files that contain script-based malware which will then run when the victims

Hacking Medical Devices? It's not just for Hollywood anymore. How IoT is shaping the medical sector.

Data breaches in the medical sector cost the industry an average of 6 billion dollars per year, and as technology continues to evolve exponentially, the Internet of Things (IoT) will only increase opportunities for potential hackers and data breaches to exploit the sector. As we reported previously, the Orangeworm virus is the first wide-known deliberate attack on medical devices. The entire reasoning behind the launch of Orangeworm is still unknown, however, the virus does g

Tracking Badges, Phishing Scams and Russian Hackers: The latest in World Cup 2018 Cybersecurity News

Special Note: As the World Cup continues, we will update this post with any relevant information on cybersecurity incidents and news. Original Publication Date: 6/13/2018 July 3: Badge of honor or Tracking Device? Fan IDs have become the piece of fan memorabilia for over 1.6 Million World Cup attendees. The badge is roughly the size of a standard conference badge and includes each attendees name and credentials. In addition to entry into the games, the badge gives attendees a

Shoe & Athleisure Giant Adidas Discloses Major Security Breach

Adidas announced today they have alerted millions of customers that their private data may now be in the hands of hackers, after a possible security breach on their US-based website. Preliminary investigations show the loss includes contact information, user names and passwords, however, the company does not believe any financial or credit card information of customers were impacted. This breach comes just days after a phishing scam targeting World Cup enthusiasts, promised s

Almost half of government entities report regular cyber attacks. 5 ways you can prepare...

The digital footprints of state and local governments are growing exponentially, leaving the public sector especially vulnerable to cyber attacks and breaches. Between employees using computers to access networks remotely, internet-connected technology such as red-light cameras and CCTVs, mapping and informational systems inside police and other government issued vehicles, and more, organizations must defend and monitor an ever growing number of end points and network infrast

Aultman Health falls victim to phishing scheme in February, exposing records of 42,000 patients

The attack may have exposed and compromised the patient records of over 42,000 in the foundation's occupational medicine division, hospital and 25 physician practices. In addition to medical histories, patient demographics and test results, driver's license and social security numbers of some patients were also compromised. While it took over a month to detect the breach, once discovered, Altman officials reset passwords of compromised accounts, while increasing the length an

Think hackers are only targeting multi-million dollar companies? Think again...

Mom and pops beware, for less than $14, amateur hackers mare using ready-made tools to target your information and dump it on the dark web. And according to the UK's Times, amateur's are also targeting schools, with small and medium size businesses being 20 times more likely to be targeted. Small businesses, like schools, restaurants, and mom and pop shops, are targeted in greater numbers because these types of entities typically have fewer resources, outdated systems and und

Rowhammer Vulnerability Targets Android Smartphone User

Hide your smartphones! A new(ish) attack is now targeting your fifth appendage… Yesterday, a team of Dutch security researchers identified a “GLitch” in Rowhammer (Android users, this applies to you), that allows it to be exploited by using Javascript to hack the device via the phone’s web browser. Originally just a “what if”, the new research shows that repeatedly activating the memory cells can cause the phone’s electrical charges to fluctuate, which can alter the data stor

ICYMI: Hackers use Amazon.com traffic to loot Cryptocurrency

You may have been so wrapped up in this weeks biggest news stories: A truce among the Koreas, the cat that took over JFK, the teacher walkouts in Colorado and Arizona, the Kanye/Trump lovefest, Shaquem Griffin becoming the first one-handed player to be drafted in modern era of the NFL, the blockbuster release (as if there were any doubt) of Avengers Infinity War... that you missed the slight disturbance at the world's retail Mecca on Tuesday, April 24. We of course are talkin

Orangeworm Continues to Target the Medical Industry

Orangeworm has struck again, this time targeting the computers that operate MRI, X-Ray and other medical devices and machines. These attacks aren’t destructive or malicious however, rather the hackers are accessing the devices in order to learn more about them as part of an ongoing corporate espionage operation. The attack appears to be targeting/gathering information on how these types of machines work, and have also shown interest in "machines used to assist patients in com

94% of Medical Institutions have been victim of a cyber attack. Will that number grow?

According to Prof. Ari Shamiss, CEO of Assuta Medical Centers Network, the medical industry was the target of 88% of the ransomware attacks in the United States, in 2017. And how are hackers entry to the medical industry? Through medical devices of course. Shamiss continues, "In a best-case scenario, these attackers would compromise patient data privacy. In a worst-case scenario, they would gain control of these medical devices, potentially shut them down or disconnect them,

SUBSCRIBE TO OUR NEWSLETTER TODAY: