OpenEMR Flaws Could Allow Attackers to Steal Data, More

Marianne Kolbasuk McGee • January 31, 2023

A combination of three security flaws contained in an open-source electronic health record used mainly by smaller medical practices in the U.S. could allow attackers to steal patient data and potentially compromise an organization's entire IT infrastructure, says a new research report.

►

Breach Notification

ITRC Breach Report: Lack of Transparency, Details Worsen

Critical Infrastructure Security

Russian Sandworm APT Adds New Wiper to Its Arsenal

FBI Seizes Hive Ransomware Servers in Multinational Takedown

Latest

Fraud Management & Cybercrime

Skyrocketing Cyber Insurance Premium Growth May Slow

Akshaya Asokan , David Perera • January 31, 2023

Premiums for cyber insurance have climbed sharply along with global rates of ransomware. But signs of increased competition and capital inflows suggest the cyber insurance market may be softening, Marsh executive Sara Stephens told a U.K. parliamentary committee.

3rd Party Risk Management

CISA to Set Up New Office for Supply Chain Security

Prajeet Nair • January 31, 2023

U.S. Federal authorities are establishing a new office to tackle supply chain security issues and help industry partners put federal guidance and policies into practice. Former GSA administrator Shon Lyublanovits says she is spearheading the launch of the new organization.

Endpoint Security

Trellix CEO on Unifying Endpoint, SecOps and Data Protection

Michael Novinson • January 31, 2023

Trellix will debut a console that offers endpoint, security operations and data protection capabilities and a plug-in for network detection and response. The company has moved FireEye's best-in-class detection engines to the cloud for NDR and examined how to address areas such as packet capture.

Business Email Compromise (BEC)

Microsoft-Verified OAuth Apps Used to Infiltrate Inboxes

Prajeet Nair • January 31, 2023

Cybercriminals exploited the verification process for Microsoft-certified authentication apps to obtain access to the inboxes of financial and marketing companies. Among the permissions threat actors sought were access to emails and calendars, says cybersecurity firm Proofpoint.

Governance & Risk Management

Juniper Exec Samantha Madrid on Pursuing Single-Vendor SASE

Michael Novinson • January 31, 2023

Juniper Networks has debuted security service edge capabilities that help clients consistently apply zero trust policies in the cloud regardless of the user or device. Juniper takes the policies customers already use within their network and converts them to cloud-delivered policies with one click.

Application Security

Snyk CEO Peter McKay on Making Defense Easier for Developers

Michael Novinson • January 31, 2023

The nearly $200 million it raised in December will allow Snyk to consolidate the developer security market through organic investment and M&A, says CEO Peter McKay. Snyk has focused on bringing open-source security, container security, infrastructure- as-code security and cloud security together.

Identity & Access Management

Okta Exec Sagnik Nandy on Protecting the Extended Workforce

Michael Novinson • January 31, 2023

The guardrails organizations use to protect employee identities are often ineffective for contractors, business partners or vendors since they bring their own devices. Many businesses struggle to implement identity safeguards in a setting that's more heterogeneous and offers fewer controls.

Customer Identity & Access Management (CIAM)

Founder Sachin Nayyar Back as CEO of Identity Vendor Saviynt

Michael Novinson • January 31, 2023

Saviynt has brought founder and longtime leader Sachin Nayyar back as its chief executive to govern access around privileged, machine and third-party identities. Saviynt wants Nayyar to implement a strategy that incorporates everything from critical apps and cloud workloads to IoT devices and bots.

Cybercrime

HHS, AHA Warn of Surge in Russian DDoS Attacks on Hospitals

Marianne Kolbasuk McGee • January 30, 2023

Government authorities and industry groups are warning the healthcare sector of ongoing distributed denial-of-service attacks on hospitals and other medical entities by Russian nuisance hacking group KillNet, whose name comes from a tool used to launch DDoS attacks.

Governance & Risk Management

Tenable's $25M Venture Capital Fund Seeks Early-Stage Firms

Michael Novinson • January 30, 2023

Tenable has debuted a $25 million corporate investment program to support prevention-focused startups focused on technologies such as cloud, OT and identity. The Baltimore-area exposure management vendor says Tenable Ventures plans to scour Israel and the United States for startups.

Governance & Risk Management

Are We Doomed? Not If We Focus on Cyber Resilience

Steve King • January 30, 2023

In this episode of "Cybersecurity Unplugged," Patricia Muoio, a partner at SineWave Ventures, discusses the need for cyber resilience as security leaders face the inevitable stream of cybercrimes, how to achieve it through a zero trust approach, and how CISOs and the government can help.

Cyberwarfare / Nation-State Attacks

Ukraine Links Media Center Attack to Russian Intelligence

Mihir Bagwe , Prajeet Nair • January 28, 2023

Ukraine traced a cyberattack that delayed a press briefing by the nation's information protection agency Tuesday to Russian Sandworm hackers. The group, which is accused of using wiper malware to disrupt the Ukrainian national Media Center, has close ties to the Russian GRU, investigators say.