The 2022 ransomware attack on Advanced, a National Health Service (NHS) vendor, was devastating to patient care. Now the U.K.’s Information Commissioner’s Office has indicated it plans to impose a substantial fine on the vendor. TechCrunch reports: U.K. data protection authorities have issued a provisional fine of more than £6 million to NHS vendor Advanced […]
When Henry Schein was hit by AlphV/BlackCat last year and didn’t pay, the threat actors hit them again. The Cyber Express reports: Prominent dental and medical equipment provider Henry Schein has lowered its annual profit and growth forecast, owing to a series of cyberattacks last year. Reuters reported that the company’s shares (HSIC) were down 7.3% to […]
Unknown threat actors have been putting Americans’ lives in danger this week. First there was a ransomware attack on OneBlood, a non-profit blood donation center that supplies blood to hospitals throughout southeastern US. Then there was a disruptive attack on the 911 dispatch system for central Texas. Those responsible for the two attacks have not […]
As if the CrowdStrike debacle with a faulty update wasn’t enough vendor drama in July, then Microsoft managed to make a cyberattack’s impact even worse. AP reports: A global Microsoft Azure outage that impacted a range of services for consumers Tuesday — from reports of stalling Outlook emails to trouble ordering on Starbucks’ mobile app — was […]
Some ransomware groups pledge not to encrypt any medical entity if doing so would risk life. Not all ransomware groups have taken that pledge, however, and even some that claim they will not encrypt, do. Scripps News reports a ransomware attack is affecting blood availability to hospitals throughout the southeast U.S.: A nonprofit blood donation […]
Because so many firms outsource to India, it is interesting to note the average cost of a data breach in India may be less than in the U.S., but still significant. Financial Express Online reports: According to a report from the Reserve Bank of India (RBI) released on Monday, the average cost of a data […]
GovInfoSecurity reports that software vendor MCG Health has agreed to pay $8.8 million to settle a consolidated proposed federal class action lawsuit involving a 2020 hacking incident. The Seattle-based firm provides patient care guidelines to providers and health care plans. In a June 2022 announcement, they claimed that on March 25, 2022, they determined that an […]
Following up on recent reports that threat actors were capitalizing on the CrowdStrike glitch by using phishing attacks to obtain credentials or spread malware, CrowdStrike reported yesterday: On July 22, 2024, CrowdStrike Intelligence identified a Word document containing macros that download an unidentified stealer now tracked as Daolpu. The document impersonates a Microsoft recovery manual.1 Initial analysis […]
It’s been a rough time for federal agencies. First the Supreme Court undid 40 years of Chevron deference. Now a federal judge has gutted the Security and Exchange Commission’s lawsuit against SolarWinds. Reuters reports: A U.S. judge dismissed most of a Securities and Exchange Commission lawsuit accusing software company SolarWinds (SWI.N), opens new tab of defrauding investors […]
Cost of a data breach up 10% to almost $5 million — IBM report
IBM’s new cost of a data breach report is out, and the numbers are not encouraging. By the numbers: $4.88 million — The global average cost of a data breach in 2024—a 10% increase over last year and the highest total ever. The highest average cost was $9.77 million for the healthcare sector. The industrial sector […]