Afleveringen
-
This comprehensive cybersecurity update covers key incidents and trends from the past week, including the emergence of a phishing-as-a-service platform targeting Microsoft 365 users, a critical zero-day vulnerability affecting Windows Server 2012, and high-profile ransomware attacks on healthcare and financial institutions. It highlights industry developments such as mergers and acquisitions aimed at bolstering cloud security, the use of AI in disinformation campaigns, and the evolving tactics of ransomware groups actively recruiting cybersecurity professionals. Additionally, the report underscores significant data breaches, the risks posed by exposed databases, and critical security patches addressing vulnerabilities in Microsoft systems. This roundup provides valuable insights into the rapidly evolving cybersecurity landscape and the ongoing challenges facing organizations worldwide.
-
HEAL Security Dispatch Daily Digest is your essential briefing on the latest developments in cybersecurity, with a focus on its implications for the healthcare sector and beyond. Hosted by Richard Simmons from London, the podcast delivers timely updates, expert analyses, and actionable insights into critical cyber threats and trends. In this episode from Wednesday, November 27, 2024, topics include a range of high-stakes incidents: a Zello security breach prompting password resets, the discovery of the first Linux UEFI bootkit by ESET, and the dismantling of a major illegal streaming service linked to piracy and malware. Other updates cover Microsoft's assurance on AI data privacy, a data broker's exposure of sensitive files, Black Friday skimmer malware targeting e-commerce sites, a Chinese hacker infiltration of T-Mobile's network, and an alarming vulnerability in the ProjectSend file-sharing software. With a clear focus on the evolving digital security landscape, the podcast equips listeners with the knowledge needed to navigate a complex and ever-changing cybersecurity environment.
https://healsecurity.com/ -
Zijn er afleveringen die ontbreken?
-
HEAL Security Dispatch Daily Digest is your essential cybersecurity podcast focusing on the intersection of healthcare and digital security, hosted by Richard Simmons from London. Each episode delivers in-depth analysis of the latest cyber incidents, including sophisticated attacks by groups like "RomCom," ransomware disruptions targeting supply chains, and high-profile breaches impacting hospitals and enterprises. With timely updates on vulnerabilities in industrial controls, IoT devices, and critical software like VMware and WordPress plugins, the podcast highlights the urgency of robust cybersecurity measures. It also sheds light on global operations like "Operation Serengeti," where international efforts dismantled malicious infrastructures, and calls out lapses in regulatory oversight, such as the lack of U.S. healthcare privacy audits. Offering expert insights and actionable guidance, the Digest emphasizes the critical need for vigilance in a rapidly evolving digital landscape.
https://healsecurity.com/ -
HEAL Security Dispatch Daily Digest is a comprehensive cybersecurity podcast hosted by Richard Simmons from London, offering expert insights and the latest news at the intersection of healthcare and cybersecurity. Covering recent developments such as a Microsoft 365 outage affecting essential services, vulnerabilities in Zyxel firewalls exploited for ransomware attacks, and a major data breach involving the FlipaClip animation app, the podcast keeps listeners informed on critical issues. It also highlights emerging threats like Fancy Bear's 'Nearest Neighbor' Wi-Fi attack, Microsoft's temporary block of the Windows 11 update for USB-connected scanners, and additions to the CISA's Known Exploited Vulnerabilities Catalog. Furthermore, it discusses advanced cyber espionage efforts by China’s Salt Typhoon group targeting US telecoms using tools like the GhostSpider backdoor. Packed with actionable advice, the podcast serves as an invaluable resource for navigating today's digital threat landscape.
https://healsecurity.com/ -
HEAL Security Dispatch Daily Digest is your essential daily podcast for staying informed on the rapidly evolving landscape of cybersecurity with a focus on the healthcare sector. Hosted by Richard Simmons and broadcast from London, the podcast offers an in-depth analysis of critical cyber threats and vulnerabilities impacting industries worldwide. In today’s episode, topics covered include the distribution of JarkaStealer malware via Python libraries, a "Nearest Neighbor Attack" targeting a U.S. firm via Wi-Fi from Russia, a Chinese APT group exploiting Linux systems, and significant healthcare data breaches in France and by Aspen Healthcare. Additionally, the podcast highlights new vulnerabilities identified by Google’s AI-powered fuzzing tool, the takedown of the PopeyeTools marketplace, and pressing cybersecurity alerts from CISA and GAO, including ransomware threats and medical device risks. With expert insights into ransomware attacks on critical infrastructure, exploitation of zero-day vulnerabilities, and strengthened defenses, the podcast equips its listeners with the knowledge needed to navigate and mitigate today’s cybersecurity challenges.
https://healsecurity.com/ -
The HEAL Security Dispatch Daily Digest is your trusted source for cutting-edge cybersecurity updates and expert perspectives with a focus on the intersection of healthcare and digital security. Hosted by Richard Simmons from London, the podcast dives deep into global developments, such as the UK's fortified defenses against cyber threats targeting critical infrastructures like the NHS, and Microsoft’s response to flawed app updates. Topics include evolving ransomware tactics, a French hospital's patient data breach, and cyber criminals exploiting platforms like Spotify. It also examines geopolitical concerns, including a Chinese vessel near damaged subsea cables, and corporate actions like Microsoft dismantling a phishing-as-a-service operation. Additionally, the Digest highlights advances in security technology, such as NordVPN earning top ratings for its threat protection features. Packed with insights, the show equips listeners with vital information to navigate the ever-changing cybersecurity landscape.
https://healsecurity.com/ -
The HEAL Security Dispatch Daily Digest is a cybersecurity-focused podcast hosted by Richard Simmons, delivering timely updates on security trends, with a special focus on healthcare and critical infrastructure. In this episode, recorded on Wednesday, November 20th, 2024, Richard covers several significant cybersecurity incidents and developments. Key highlights include Apple's response to actively exploited zero-day vulnerabilities in macOS, a ransomware recovery after nine months of disruption in a U.S. healthcare payments network, and criticism of the US Health and Human Services for failing to address critical information security challenges. Additionally, the podcast discusses the latest CWE Top 25 list of dangerous software weaknesses, CISA’s updated vulnerability catalog, a newly identified NFC payment exploit called Ghost Tap, and critical vulnerabilities in Progress Kemp's LoadMaster and Oracle's Agile PLM software. It’s a must-listen for anyone looking to stay informed about the evolving cybersecurity landscape, particularly within the healthcare industry.
https://healsecurity.com/ -
HEAL Security Dispatch Daily Digest is your essential daily briefing on the latest cybersecurity developments, with a focus on the intersection of healthcare and cybersecurity. Hosted by Richard Simmons from London, the podcast delivers timely updates on emerging threats, trends, and expert insights to keep listeners informed. In this episode from November 19, 2024, key topics include cybercriminals exploiting Black Friday deals with fake websites, Microsoft's $4 million Zero Day Quest event to identify vulnerabilities in AI and Cloud systems, new threats posed by the FrostyGoop/BUSTLEBERM malware, and tensions surrounding TSA's cybersecurity mandates for the rail and pipeline industries. The episode also covers the extradition of Russian cybercriminal Evgenii Ptitsyn, critical vulnerabilities in D-Link routers, a data breach at Maxar Technologies, and the exploitation of Zyxel VPN devices by Helldown ransomware. Stay informed, stay secure, with HEAL Security.
https://healsecurity.com/ -
HEAL Security Dispatch Daily Digest is your trusted source for the latest developments in cybersecurity, with a focus on the crucial intersection between healthcare and digital security. Hosted by Richard Simmons from London, this daily podcast dives into breaking news and expert insights from the world of cybersecurity. In this episode from Monday, November 18, 2024, key topics include the unveiling of NSO Group’s direct involvement in operating Pegasus spyware, a data breach at AnnieMac Home Mortgage affecting 171,000 individuals, and the emergence of the BabbleLoader malware, which spreads info-stealing software. Also highlighted are responses to zero-day vulnerabilities in Palo Alto Networks’ firewalls, a ransomware attack on an Oklahoma medical center compromising patient data, and the hacking of the Library of Congress. The episode further discusses cyberattacks on U.S. drinking water systems, the Department of Homeland Security’s new AI Security Framework, and the launch of the UK’s Cyber Resilience Network (CRANE) to tackle current and future cyber threats.
https://healsecurity.com/ -
In this episode, we delve into some of the most pressing issues in cybersecurity. We begin by discussing vulnerabilities found in Palo Alto Networks' Expedition software that could allow attackers to access sensitive data and compromise critical systems, leading CISA to issue a December 2024 deadline for federal agencies to apply mitigations. We then touch on a massive data leak involving Microsoft Power Pages and explore how cloud-based services are creating new challenges for data security. Additionally, we cover cyber-espionage campaigns targeting telecommunications providers, orchestrated by Chinese hackers, and a warning from Swiss authorities about malicious QR codes that install malware on Android devices. Iranian hackers have also been actively targeting Israeli organizations through WezRat malware in a surge of cyber-attacks driven by geopolitical tensions. We also review updates around the sentencing of the Bitfinex hacker, responsible for one of the largest cryptocurrency thefts in history. In the tech space, Microsoft faces criticism after pulling its latest Exchange Server updates due to mail delivery issues, while simultaneously signaling the end of the Windows 10 Beta Channel in favor of Windows 11. We explore concerns around 'security tool sprawl' in organizations, emphasizing the need for consolidation, and close with a discussion on how the OSC&R framework can enhance resilience against software supply chain threats. Lastly, new malware, Glove Stealer, is exploiting vulnerabilities to steal sensitive data from Chrome, highlighting the ongoing threats to browser security.
https://healsecurity.com/ -
In this episode, Richard Simmons discusses several critical cybersecurity issues affecting both individuals and organizations worldwide. He begins with a warning from Switzerland's Federal Office for Cybersecurity about a fake weather app that, through a malicious QR code, targets Android users to steal login credentials for numerous applications, including banking. The episode also delves into the surge of API attacks in the UK, highlighting the inadequacy of current security measures to protect sensitive data, along with a data breach at Thompson Coburn law firm, which exposed the personal information of 122 million people. The vulnerability of healthcare and legal sectors underscores the urgency for better data security practices.
Further, Simmons covers the Hive0145 cybercriminal group, which has been deploying malware in phishing campaigns across Europe, including Ukraine, where financially motivated attacks are on the rise. As the holiday season approaches, there’s a concerning spike in scam domain registrations aimed at retailers, emphasizing the importance of vigilance among consumers and businesses. Additionally, misconfigurations in Microsoft Power Pages have exposed NHS workers' personal data, and North Korean-developed macOS apps have bypassed Apple security. Medcrypt’s partnerships to secure medical devices and a Windows zero-day vulnerability primarily targeting Ukrainian entities round out this episode's coverage, illustrating the vast, evolving landscape of cybersecurity threats and the continuous need for vigilance and improvement.
www.healsecurity.com -
The HEAL Security Dispatch Daily Digest is your trusted source for up-to-date cybersecurity news, focusing on healthcare and technology. Hosted by Richard Simmons from London, the show provides expert insights into critical security topics. In this episode for Wednesday, November 13th, 2024, we explore Palo Alto Networks' new hardening guidelines for their Next-Generation Firewalls and Prisma Access, designed to enhance organizational security defenses.
We also discuss the resurgence of China’s Volt Typhoon botnet, which has compromised 30% of visible Cisco routers within a month. Additionally, we cover the U.S. Department of Health’s warning about the Godzilla webshell, posing significant threats to healthcare operations, and a LinkedIn-based espionage campaign targeting professionals in the aerospace and telecom sectors. Furthermore, we examine a Google AI platform vulnerability exposing proprietary models and ransomware claims involving a U.S. pharmacy network. Stay informed on these stories and more at healsecurity.com. -
The HEAL Security Dispatch Daily Digest is your trusted source for up-to-date cybersecurity news, focusing on healthcare and technology. Hosted by Richard Simmons from London, the show provides expert insights into critical security topics. In this episode for Tuesday, November 12th, 2024, we cover VMware’s decision to make its Workstation and Fusion products freely available, aiming to expand user access. Ahold Delhaize reports a cybersecurity breach in its U.S. supermarket chains due to unauthorized activity in a vendor’s system, sparking data privacy concerns.
We also discuss the new 'GoIssue' cybercrime tool, which targets GitHub developers by exploiting repository vulnerabilities, highlighting the urgent need for enhanced cybersecurity measures. Additionally, Adobe's latest Patch Tuesday release addresses critical flaws in popular software, while Citrix patches zero-day vulnerabilities in its Recording Manager. Lastly, Signal introduces a "call links" feature to streamline encrypted group communication. Stay informed on these stories and more at healsecurity.com. -
In this episode of the 'HEAL Security Dispatch Daily Digest,' Richard Simmons dives into a range of recent cybersecurity incidents impacting multiple sectors, with a focus on healthcare, finance, technology, and the public sphere. Simmons opens with the sentencing of a prominent cryptocurrency launderer involved in extensive dark web operations, marking a pivotal move in the fight against cybercriminal networks. He further highlights a significant malware breach affecting SelectBlinds, where credit card data for nearly 200,000 customers was compromised, raising serious concerns over financial and data security. The episode also details a targeted phishing attack leveraging a Microsoft 365 vulnerability to spread the Remcos remote access Trojan through Microsoft Excel, which has added to the growing list of threats aimed at stealing sensitive data from unsuspecting users.
Throughout the briefing, Simmons underscores recent government and corporate responses to these cyber threats, including the FBI's alert on fraudulent emergency data requests aimed at U.S. organizations, which emphasizes the importance of verifying data requests to prevent breaches. He also discusses cybersecurity challenges within critical infrastructure, such as a ransomware attack that cost Halliburton $35 million and the launch of a Public Health Cybersecurity Readiness Survey, which aims to strengthen the resilience of healthcare agencies against ransomware and other cyber threats. Further updates include legal battles and cybersecurity adjustments from tech giants Facebook and Microsoft, as well as clarifications from Palo Alto Networks on a reported vulnerability. This comprehensive update captures the ongoing challenges and efforts across industries to address and mitigate cybersecurity risks in today’s digital landscape.
www.healsecurity.com -
The HEAL Security Dispatch Daily Digest is your trusted source for up-to-date cybersecurity news, focusing on healthcare and technology. Hosted by Richard Simmons from London, the show provides expert insights into critical security topics. In this episode for Friday, November 8th, 2024, we explore key stories: mysterious reboots of securely stored iPhones running iOS 18 are complicating forensic access, with officials recommending isolation precautions. Mazda also faces scrutiny as unpatched vulnerabilities in its infotainment systems expose vehicles to unauthorized control, with a software update still pending.
We also cover a recent cyberattack dubbed 'Salt Typhoon,' allegedly orchestrated by Chinese hackers against a U.S. government agency, urging employees to limit phone use. Additionally, North Korea's BlueNoroff group is targeting cryptocurrency businesses on macOS through phishing, exploiting new malware to maintain control over infected systems. Lastly, AndroxGh0st malware has combined with the Mozi botnet to intensify threats to IoT and cloud devices, signaling the need for upgraded defenses. Stay informed on these stories and more at healsecurity.com. -
The HEAL Security Dispatch Daily Digest is your trusted source for up-to-date cybersecurity news, with a special focus on healthcare and technology. Hosted by Richard Simmons from London, the show provides expert insights into pressing security issues. In this episode for Thursday, November 7th, 2024, we dive into critical developments: Microsoft’s plan to integrate an AI-powered rewriting tool into Windows 11’s Notepad, enhancing user productivity and text refinement. We also cover CISA’s urgent alert about a high-risk vulnerability in Palo Alto Networks software that could allow remote code execution, stressing the need for immediate patching.
Also on today’s docket is Nokia’s response to a third-party application breach, with leaked source code raising supply chain security alarms. The episode highlights a significant global law enforcement effort to dismantle a cybercrime network, resulting in the takedown of 22,000 IP addresses linked to malicious activity. Additionally, we explore North Korean hackers’ latest campaign targeting macOS users with malicious cryptocurrency PDFs, and the Canadian government’s decision to ban TikTok, citing national security risks. Lastly, we discuss the OpenNotes Lab’s partnership with Abridge to explore genAI’s role in creating patient visit summaries, advancing transparency and health equity in healthcare. Stay updated on these stories and more at healsecurity.com. -
Good evening and welcome to HEAL Security Dispatch Daily Digest, your essential source for the latest developments in cybersecurity, with a special focus on the healthcare sector. Hosted by Richard Simmons from London, this podcast dives into current cyber threats and expert insights. In today's episode for Wednesday, November 6, 2024, we discuss a range of pressing cybersecurity issues: from Schneider Electric’s ransomware attack, where hackers demanded payment in baguettes, to the proliferation of the ToxicPanda malware in Italy, affecting fraudulent banking transactions. We also cover a critical Cisco vulnerability that compromises wireless network security, and a breach of Singtel allegedly by China's Volt Typhoon. The episode continues with reports on data stolen from UK logistics software company Microlise, along with Interpol’s major cybercrime crackdown, Operation Synergia II, which secured over 1,200 arrests. We also refute recent hacking claims affecting Nokia and examine the growing concerns around VEILDrive malware exploiting Microsoft services. Stay tuned for critical updates and analysis in the fast-evolving world of cybersecurity.
https://healsecurity.com/ -
The HEAL Security Dispatch Daily Digest is your trusted source for up-to-date cybersecurity news, with a special focus on healthcare and technology. Hosted by Richard Simmons from London, the show provides expert insights into pressing security issues. In this episode of Tuesday, November 5th, 2024, the podcast explores a range of critical developments: from Synology’s urgent call to patch a zero-click vulnerability affecting millions of NAS devices, to Interpol’s successful takedown of a cybercrime network impacting over 22,000 IP addresses. Also covered are the risks of a DocuSign API exploit used in business email compromise (BEC) schemes, Schneider Electric’s latest ransomware attack involving the Hellcat variant, and the dangers of a typosquatting campaign targeting developers on npm. The episode highlights Google’s Big Sleep LLM’s role in identifying vulnerabilities in SQLite, along with newly released patches for Android zero-day vulnerabilities actively exploited in the wild. Lastly, Sekoia reports on a social engineering tactic called ClickFix, which deceives users on Google Meet and Zoom to download malware. Stay informed on these vital security updates and more at healsecurity.com.
-
In this episode, Richard Simmons brings you the latest updates in healthcare cybersecurity, starting with a widespread hacking incident involving TP-Link routers, where thousands have been compromised, raising concerns about consumer-grade network security. He also covers Microsoft's response to blue screen errors in Windows Server 2025, as well as recent SEC fines imposed on companies for insufficient disclosure around the SolarWinds breach.
Further, the UK’s National Cyber Security Centre has uncovered "Pigmy Goat," a Linux malware targeting Sophos XG firewall devices, allegedly linked to Chinese threat actors. Richard discusses New York State's newly enacted hospital cybersecurity regulations, which now mandate reporting breaches within 72 hours, and highlights a ransomware attack by Rhysida in Columbus, Ohio, affecting 500,000 individuals.
In addition, he sheds light on a HIMSS Healthcare Cybersecurity Forum discussion, which underscored third-party vendor risks, exemplified by the Change Healthcare breach impacting 150 million users. Finally, Richard closes with a critical update from the Cybersecurity and Infrastructure Security Agency (CISA), adding two new vulnerabilities to its Known Exploited Vulnerabilities Catalog, urging organizations to mitigate these threats to secure their systems effectively.
www.healsecurity.com -
Welcome to HEAL Security Dispatch, your daily insight into the world of healthcare and tech cybersecurity. Hosted by Richard Simmons, this podcast delivers the latest on AI vulnerabilities, new malware threats, and critical security risks affecting healthcare and tech industries. From data breaches targeting patient information to evolving malware tactics and AI-driven risks, we provide in-depth analysis and practical insights to keep you informed and protected. Join us to understand the importance of proactive cybersecurity measures in safeguarding lives, reputation, and integrity within the healthcare sector and beyond. For essential updates on today’s cyber landscape, tune in daily to HEAL Security Dispatch. healsecurity.com/
- Laat meer zien
