Cybersecurity News


The U.S. Department of Justice, United Kingdom and other global partners have seized control of servers used by the LockBit ransomware-as-a-service group, charging five of the group’s affiliates for their participation in a conspiracy to attack over 2,000 victims and demand over $120 million in ransom payments.
Bryan Smith, recently retired chief of the FBI’s Cyber Criminal Operations Section, discusses the challenge of protecting the nation's caregivers and patients from cyberattacks and how partnerships are crucial in prevailing against cybercriminals.
The National Institute of Standards and Technology this week released updated guidance to help HIPAA-covered entities and business associates assess and manage cybersecurity risks to electronic protected health information and comply with the HIPAA security rule.
The FBI Feb. 15 released an alert to help organizations detect and reduce the risk of network compromise from the Warzone Remote Access Trojan, a malware service used by over 7,000 cybercriminals and nation-state actors.
The health care sector should quickly implement patches or mitigations to address 21 new cyber vulnerabilities identified by the Cybersecurity and Infrastructure Security Agency in January, the Department of Health and Human Services’ Health Sector Cybersecurity Coordination Center (HC3) advised this week.
The Department of Justice has disrupted a botnet of hundreds of small office and home office routers hijacked by hackers sponsored by the People’s Republic of China in a campaign targeting U.S. critical infrastructure and other organizations.
The Cybersecurity & Infrastructure Security Agency and FBI Jan. 31 urged small office and home office router manufacturers to eliminate exploitable defects in their products and integrate security into their product design and development, citing recent reports that threat actors known as “Volt Typhoon” and associated with the People’s Republic of China are exploiting defects in these products to compromise networks across U.S. critical infrastructure.
The Cybersecurity and Infrastructure Security Agency recently required federal agencies to take emergency action to protect against actively exploited vulnerabilities in the Ivanti Connect Secure and Ivanti Policy Secure remote access gateways.
The Department of Health and Human Services Jan. 24 released voluntary Cybersecurity Performance Goals for the sector, which include 10 “essential” and 10 “enhanced" goals.
The FBI, Department of Homeland Security and National Counterterrorism Center Jan. 12 reported ongoing bomb threats by malicious actors targeting synagogues, Jewish community centers, schools, hospitals, airports, government buildings and other public institutions in the United States.