HC3 Sector Alert

Oct 2, 2020
On September 28, 2020, security researchers openly shared recent observations associated with RYUK ransomware deployments.
Sep 18, 2020
In August, Microsoft released a patch for a vulnerability that is applicable to the healthcare community. CVE-2020-1472.
Aug 13, 2020
The XenMobile application is used by many businesses, including those in the HPH sector, and enables businesses to manage employees’ mobile devices and mobile applications by controlling device security settings and updates.
Jul 29, 2020
On July 14, 2020, Microsoft released a patch for CVE-2020-1147. If left unpatched the vulnerability, which affects Microsoft SharePoint, .NET Framework, and Visual Studio, could allow an attacker to run arbitrary code.
Jul 20, 2020
In recent days, a significant number of vulnerabilities in common information systems relevant to the healthcare sector have been disclosed to the public. These vulnerabilities are from Microsoft, Adobe, Oracle, Cisco and Google, as well as others.
Jul 13, 2020
Top malware detections for the month of May 2020 by the EINSTEIN national IDS included NetSupport Manager RAT, Kovter, and XMRig.
Jun 30, 2020
On June 29, 2020, Palo Alto Networks announced a vulnerability (CVE-2020-2021) affecting their PAN-OS firewall software.
Jun 23, 2020
On June 17, 2020, researchers reported on a bus driver installed by FabulaTech for their “USB for Remote Desktop” software that has a vulnerability (tracked as CVE-2020-9332). The vulnerability allows a non-privileged user to potentially take over a targeted device on the network.
Jun 17, 2020
Pony malware, also known as Fareit, Classified by Trend Micro as a Trojan-Spyware, this crimeware is primarily used to steal user and File Transfer Protocol (FTP) credentials and passwords, download other payloads, and bring compromised systems into a botnet.