![]() An REvil ransomware affiliate gained access to Kaseya systems, through which it was possible to access the systems and encrypt data of around 60 of its customers, many of which are MSPs. The recent Kaseya supply chain attack showed just how serious such an attack can be. They typically have privileged access to their clients’ networks, so a cyberattack on a single MSP can see the attacker gain access to the systems of many, if not all, of their clients. ![]() Managed Service Providers (MSPs) are attractive targets for cybercriminals. Read MoreĬISA Publishes Guidance for MSPs and SMBs on Hardening Security Defenses The website includes a newsroom with the latest ransomware-related advice, along with alerts from CISA, the FBI, Department of Treasury, and other federal agencies about the ever-evolving tactics, techniques, and procedures used. Detailed information is provided on how organizations can improve their security posture and defend against attacks, including ransomware best practices, bad practices to avoid, cyber hygiene tips, FAQs, and training material. The new resource provides general information about ransomware, including what ransomware is and how it is used by cybercriminals to extort money from public and private sector organizations. The new resource – – is an interagency resource that provides guidance on ransomware protection, detection, and response in a single location. The Department of Justice and the DHS’ Cybersecurity and Infrastructure Security Agency (CISA) have announced the launch of a new web resource that will serve as a one-stop-shop providing information to help public and private sector organizations deal with the growing ransomware threat. Government Launches New One-Stop Ransomware Website The use of any software or cloud platform in conjunction with protected health information requires the vendor of the service to sign a HIPAA-compliant business. G Suite incorporates all of the necessary controls to make it a HIPAA-compliant service and can therefore be used by HIPAA-covered entities to share PHI (in accordance with HIPAA Rules), provided the account is configured correctly and standard security practices are applied. The service does not violate HIPAA Rules provided HIPAA Rules are followed by users. G Suite – formerly Google Apps, of which Google Drive is a part – does support HIPAA compliance. Even a software solution or cloud service that is billed as being HIPAA-compliant can easily be used in a manner that violates HIPAA Rules. HIPAA compliance is less about technology and more about how technology is used. Google Drive is a useful tool for sharing documents, but can those documents contain PHI? Is Google Drive HIPAA compliant? Is Google Drive HIPAA Compliant? The answer to the question, “Is Google Drive HIPAA compliant?” is yes and no. Brave browser’s Tor feature found to leak.Google Alerts used to launch fake Adobe Flash Player updater.Flash version distributed in China after EOL is installing adware.This botnet is abusing Bitcoin blockchains to stay in the shadows.New malware found on 30,000 Macs has security pros stumped.Cybersecurity authorities of five countries issued a joint warning including details of the vulnerabilities leveraged and mitigations. As if to corroborate this, Airplane maker Bombardier had very sensitive data posted on a ransomware leak site. Accellion and Mandiant linked them to the Clop ransomware gang and the FIN11 threat group. More details and victims of the Accellion attacks keep emerging. Global Accellion data breaches linked to Clop ransomware gang
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |