Search Results
The default setting for search results displays All Content. If you prefer to see recent content only, please adjust the date filter.
Filter your results:
Types
Topics
18 Results Found
HC3 TLP White Analyst Note: Application Programming Interfaces and Healthcare Cybersecurity
Application Programming Interfaces (APIs) are a critical component to modern health information technology infrastructures.
HC3-TLP white Analyst Note: New DNS Vulnerabilities Impacting Healthcare Organizations April 14, 2021
On 12 April 2021, security researchers disclosed a series of medium, high and critical severity DNS vulnerabilities impacting the TCP/IP stacks present in potentially millions of enterprise and consumer devices, with organizations in the healthcare and government sectors impacted most
HC3 Analyst Note TLP White - TCP/IP Stack Vulnerabilities Possibly Affect Healthcare Devices
On December 8, 2020, a report titled Amnesia:33 developed by Forescout disclosed multiple zero-day vulnerabilities in the TCP/IP stacks impacting numerous Operational Technology (OT), Internet of Things (IoT), Building Automation Systems, and Information Technology (IT) devices.
HC3 TLP White: Analyst Note: BrakTooth Vulnerabilities September 23, 2021
The BrakTooth vulnerabilities came on the radar in August 31, 2021, after being discovered by the ASSET (Automated Systems Security) Research Group at the Singapore University of Technology and Design (SUTD).
HC3 TLP White Analyst Note: Vishing and Phishing Campaigns Targeting the HPH Sector April 13, 2021
In late March 2021, security researchers revealed details of a malicious campaign targeting the healthcare and public health (HPH) sector by leveraging call centers to distribute malware to its targets.
HC3 TLP White Analyst Note: New Ryuk Ransomware Variant Poses Threat to HPH Sector
The French National Agency for the Security of Information Systems (ANSSI) has identified a new variant of the Ryuk ransomware that is capable of self-replicating using existing Windows processes.
HC3 TLP White Analyst Note: Active Exploitation of Pulse Secure Zero-Day Vulnerabilities by Multiple Threat Actors
VPN provider Ivanti Pulse Secure has released mitigations for multiple actively exploited vulnerabilities affecting the Pulse Connect Secure (PCS) SSL VPN appliance, including a new vulnerability tracked as CVE-2021-22893.
Tools for Detection of Compromise of Microsoft Exchange Server Vulnerabilities
Executive Summary
Microsoft released patches for four Exchange Server zero-day vulnerabilities on March 2, 2021.
HC3 TLP White: Analyst Note: Mespinoza/GoldBurlap/CYBORG SPIDER, January 6, 2022
Mespinioza (also known as GOLD BURLAP and CYBORG SPIDER) is a cybercriminal group who operates PYSA ransomware, among other cyber weapons, and have been active since 2018.
HC3 TLP White: Analyst Note Overview of Phobos Ransomware July 7, 2021
Overview of Phobos Ransomware
Executive Summary
Phobos ransomware first surfaced in late 2017 with many rese