Cybersecurity concerns surrounding healthcare organizations and hospitals have been brewing at the same time the novel coronavirus (COVID-19) has spread around the world. In fact, warnings from the FBI and Interpol indicate that hospitals are a target for a wide-range of cyber-attacks, from having medical records exposed to attacks that may involve ransomware — software built as a decoy to lock down a computer system until the ransom is paid. This happened on May 5th, 2020, when a reported ransomware attack on the Fresenius Group, a global healthcare company and one of the largest dialysis equipment providers in the U.S., impacted the company’s operations around the world. These attacks can not only cripple healthcare and hospital operations, but hackers and scammers can also put sensitive personal medical information at high risk of fraud. Continue reading
As organizations move to remote work during the COVID-19 crisis, online communications have become essential. Online audio, web and video conferencing tool usage have increased 400% in only one month, according to AT&T. This new popularity for virtual meetings has also seen a multitude of security exploitations on popular video conferencing sites like Zoom.
On April 14, 2020, over 500,000 Zoom account credentials were found for sale on the Dark Web. The information available for purchase include the user’s email address, password, personal meeting URL, and their Zoom Host Key — all being sold for less than a penny each. In some cases, the account credentials were being offered for free. The account details were obtained through credential stuffing attacks, where cyberthieves use emails and passwords previously exposed in other, non-related data breaches, to attempt access into other sites.
Corporate data breaches are nearly a daily occurrence, and it’s not only the largest, most visible companies that are exposed to the risk. Often, data vulnerabilities can stem from relationships that companies have with vendors, suppliers, partners, and other third parties. Small- and Medium-sized Businesses (SMBs) are especially vulnerable to data theft. They typically have fewer resources, lack a security infrastructure, or don’t think they are as exposed to the risk of breaches as larger organizations. Continue reading
Ever wonder what happens to your information once it is exposed in a data breach? In most cases, the data is put up for sale to cybercriminals operating in the dark web — the black market of the internet where individuals can act privately and anonymously, and which requires specific “dark web browsers” to access. But one website was designed to house stolen data on the surface, bringing it out of the dark web and putting it at the fingertips of anyone who performed a simple search — starting as low as $2! Continue reading