Security Slipup Exposes Health Records & Lab Results

NTreatment failed to add password protection to a cloud server, exposing thousands of sensitive medical records online. NTreatment inadvertently exposed thousands of medical records online by neglecting to add password protection to one of its cloud servers, TechCrunch reports. The health technology company, which handles electronic health records for doctors, had put 109,000 files in … Continue reading Security Slipup Exposes Health Records & Lab Results

Driven by Ransomware, Cyber Claims Rise in Number & Value

Companies are on track to file 27% more cyber claims in 2020, one insurer estimates, while another underwriter finds five out of every 100 companies file a claim each year. Cyberattacks and security incidents have become the top business risk for companies, with the number of insurance claims rising 27% in the first nine months … Continue reading Driven by Ransomware, Cyber Claims Rise in Number & Value

North Korean hackers allegedly behind cyberattacks on AstraZeneca

The Reuters agency revealed in an exclusive that the COVID vaccine maker AstraZeneca was targeted by alleged North Korea-linked hackers. According to a report published by Reuters, suspected North Korea-linked hackers targeted AstraZeneca, one of the companies that are developing a COVID vaccine. The attack attempts took place in recent weeks, two people with knowledge … Continue reading North Korean hackers allegedly behind cyberattacks on AstraZeneca

Sopra Steria expects €50 million loss after Ryuk ransomware attack

French IT services giant Sopra Steria said today in an official statement that the October Ryuk ransomware attack will lead to a loss of between €40 million and €50 million. Sopra Steria is a European information technology firm with 46,000 employees in 25 countries providing a large array of IT services, including consulting, systems integration, … Continue reading Sopra Steria expects €50 million loss after Ryuk ransomware attack

UK NCSC’s alert urges orgs to fix MobileIron CVE-2020-15505 RCE

The UK NCSC issued an alert to urge organizations to patch the critical CVE-2020-15505 RCE vulnerability in MobileIron MDM systems. The UK National Cyber Security Centre (NCSC) issued an alert urging organizations to address the critical CVE-2020-15505 remote code execution (RCE) vulnerability in MobileIron mobile device management (MDM) systems. MDM platforms allow administrators to remotely … Continue reading UK NCSC’s alert urges orgs to fix MobileIron CVE-2020-15505 RCE