Here’s a great way to destroy any trust your patients might have in you. Madeleine Damo reports:
"Staff at a western Sydney radiologist – recently hit with a cyber attack – were told to tell concerned patients the breach was “an operational IT issue”, while also fielding harassing phone calls from hackers themselves."
In other words: don’t tell patients that there was a ransomware attack in which their data was encrypted and their personal and protected health information acquired by the criminals?
This is yet another example of why we need firm laws requiring more honest and full disclosures and prohibiting deception or minimization in disclosures.
#TeamViewer#infosec#vulnerability#ransomware
“TeamViewer is a legitimate remote access tool used extensively in the enterprise world, valued for its simplicity and capabilities.
W jaki sposób Meta wprowadza szyfrowanie e2e do facebookowego Messengera, co to jest Labyrinth i czy możemy czuć się w pełni bezpieczni, korzystając dziś z tego komunikatora - wyjaśnia @mateuszchrobok
Busy day today, which is good for getting through the tedium. However as a result I meant to post this much earlier today and have only gotten around to it now. More tales from yesteryear involving a bit of corporate spying. Tame but entertaining.
SonicWall next-gen firewall (NGFW) series 6 and 7 devices are affected by 2 DoS #vulnerabilities that can lead to remote code execution (RCE): #CVE-2022-22274 and CVE-2023-0656. Bishop Fox research revealed that these issues are fundamentally the same, but exploitable at different HTTP URI paths. Read more & download our test script at our blog.
Leanpub has been instrumental in assisting professionals in publishing highly successful books in the field of data science. Now, we are extending our support to cybersecurity experts who aspire to achieve the same level of success. If you are interested, feel free to get in touch with us via DM or by emailing hello@leanpub.com. Simply mention "Special Cybersecurity Author Onboarding Offer" in the subject line for more details. Join us in the world of information security and books! #infosec
Got the official thumbs up from my bosses internally about the Domain Assassin tool I forked from @cybersheepdog Domain Hunter tool. It's working in dev right now on the multiple domains we have as an AWS lambda and piping tickets to Jira in our sandbox. Next step is working with Ops to add the Crowdstrike IoC integration.
I plan to hopefully open source both the local and terraform versions after sanitizing it end of month. I even have a shell script to switch tfenv files #Infosec#typosquat
🔐 Get ready to join penetration tester Laura Knight on an electrifying journey through the world of cybersecurity in "Pen Test Diaries"! 🔍💻
💥 Dive into her thrilling experiences, based on real-world scenarios, unraveling the technical and non-technical aspects of fortifying an organization's security measures.
🛡️ Follow Laura's gripping adventures and discoveries as she uncovers vulnerabilities, all in a riveting, fictionalized narrative. 📖✨
Perfect for tech aficionados or those intrigued by the dynamic world of penetration testing.
#CompTIA has just released the $50 Cloud+ CV1–004 beta exam. Register at PearsonVUE, pass the exam and be one of the first recipients of the new Cloud+ certification #cloud#infosec
