All posts tagged: cybersecurity

UnitedHealth says Change Healthcare hacked by nation state, as pharmacy outages drag on

UnitedHealth says Change Healthcare hacked by nation state, as pharmacy outages drag on

U.S. health insurance giant UnitedHealth Group said Thursday in a filing with government regulators that its subsidiary Change Healthcare was compromised likely by government-backed hackers. In a filing Thursday, UHG blamed the ongoing cybersecurity incident affecting Change Healthcare on suspected nation state hackers but said it had no timeframe for when its systems would be back online. UHG did not attribute the cyberattack to a specific nation or government, or cite what evidence it had to support its claim. A company spokesperson did not respond to a request for comment at the time of writing. Change Healthcare provides patient billing across the U.S. healthcare system. The company processes billions of healthcare transactions annually and claims it handles around one-in-three U.S. patient records, amounting to around a hundred million Americans. The cyberattack began early Wednesday, according to the company’s incident tracker. Change Healthcare has not yet disclosed the specific nature of its cyberattack. Pharmacies across the U.S. are reporting that they are unable to fulfill prescriptions through patients’ insurance due to the ongoing outage at Change …

Biden orders new cybersecurity measures at U.S. ports

Biden orders new cybersecurity measures at U.S. ports

WASHINGTON —  President Biden signed an executive order Wednesday that creates new rules to shore up security at American ports — and commits $20 billion to replace Chinese-made cranes that U.S. officials worry could be vulnerable to hacking and remote control. The executive order empowers the U.S. Coast Guard to respond to cybersecurity incidents at ports, and lays out a new set of safety regulations that port operators must follow to fend off digital attackers. “Most critical infrastructure owners and operators have a list of safety regulations they have to comply with,” said Anne Neuberger, deputy national security advisor at the White House. “We want to ensure that there are similar requirements for cyber, when a cyberattack can cause just as much, if not more, damage than a storm or another physical threat.” Nationwide, roughly 31 million jobs and $5.4 trillion in economic activity are linked to trade that passes through ports, all of which could be disrupted by a ransomware or other type of cyberattack, Neuberger said. The ports of Los Angeles and Long Beach …

Six things we learned from the LockBit takedown

Six things we learned from the LockBit takedown

A sweeping law enforcement operation led by the U.K.’s National Crime Agency this week took down LockBit, the notorious Russia-linked ransomware gang that has for years wreaked havoc on businesses, hospitals, and governments around the world. The action saw LockBit’s leak site downed, its servers seized, multiple arrests made, and U.S. government sanctions applied in what is one of the most significant operations taken against a ransomware group to date. It’s also, undoubtedly, one of the more novel takedowns we’ve seen, with U.K. authorities announcing the seizure of LockBit’s infrastructure on the group’s own leak site, now home to a host of details about the gang’s inner workings — with the promise of more to come. Here’s what we’ve learned so far. LockBit didn’t delete victims’ data — even if they paid It’s long been suspected that paying a hacker’s ransom demand is a gamble and not a guarantee that stolen data will be deleted. Some corporate victims have even said as such, saying they “cannot guarantee” that their data would be erased. The LockBit …

Cybersecurity for satellites is a growing challenge, as threats to space-based infrastructure grow

Cybersecurity for satellites is a growing challenge, as threats to space-based infrastructure grow

In today’s interconnected world, space technology forms the backbone of our global communication, navigation and security systems. Satellites orbiting Earth are pivotal for everything from GPS navigation to international banking transactions, making them indispensable assets in our daily lives and in global infrastructure. However, as our dependency on these celestial guardians escalates, so too does their allure to adversaries who may seek to compromise their functionality through cyber means. A satellite’s service could be interrupted, or at worst the spacecraft could be disabled. The expansion of the digital realm into space has opened new frontiers for cyber threats, posing unprecedented challenges. This emerging battleground highlights the urgent need for robust cybersecurity measures to protect our space assets from sophisticated attacks that threaten global stability and security. Recent cyber incidents, such as the 2022 attack on the KA-SAT network, highlight the immediate vulnerability of satellites. The network, owned by global communications giant Viasat, faced a sophisticated cyber assault that disrupted its services across Europe. While the perpetrators have not been officially confirmed, many suspect Russia’s involvement. …

Increase in cybersecurity budgets expected for 2024

Increase in cybersecurity budgets expected for 2024

Infosecurity Europe has revealed that cybersecurity budgets of organisations have seen or are expected to see an increase between 10-100% in 2024. Infosecurity Europe, the most influential security event running at ExCeL London from 4-6 June 2024, has announced findings from research into the cybersecurity budgets of organisations. The research revealed that 69% of surveyed IT decision-makers have seen, or will see, their cybersecurity budgets increase.1 Almost one in five of those surveyed are seeing or expect to see budgets increase between 30-49% over the coming year. “We continue to see pragmatic budgetary spend on cybersecurity under mounting macroeconomic pressures. The fast-changing threat landscape and tightening regulatory pressures have in the main seen security budgets benefiting from much-needed increases which is positively received”, said Mun Valiji, CISO, Trainline, Infosecurity Europe’s Advisory Council member. Cloud security and incident response to receive the most investment For IT leaders who plan to increase cybersecurity budgets in 2024, cloud security and incident and response will see the biggest increase. Of those surveyed, 47% noted that between 1-20% of the …

Unseen cyber dangers of the Remember Me checkbox

Unseen cyber dangers of the Remember Me checkbox

Research by ZenShield has delved into the security implications of the seemingly harmless Remember Me checkbox that we frequently encounter online, with alarming results. Anyone who’s logged into an online account will be familiar with the all-too-common Remember Me checkbox, promising a convenient, one-time login. However, there are various security implications of using this feature. ZenShield’s research delved further into this and the 2,200 cyber-attacks that happen daily. The Remember Me checkbox: Convenient yet risky Often sitting right beside the password prompt, the Remember Me checkbox lures us with the convenience of one-click access to online accounts. The Remember Me checkbox saves usernames and sometimes even passwords, doing away with the need to remember complex credentials. However, beneath this veneer of convenience lies hidden security risks. According to Steffan Black of ZenShield: “The ability to access personal, financial, or sensitive information faster isn’t necessarily better. “Security must be a top priority regarding online accounts – remember, cyber attackers love convenience, too.” About 2,200 cyber-attacks happen daily, with a cyber-attack taking place every 39 seconds on …

Why are ransomware gangs making so much money?

Why are ransomware gangs making so much money?

For many organizations and startups, 2023 was a rough year financially, with companies struggling to raise money and others making cuts to survive. Ransomware and extortion gangs, on the other hand, had a record-breaking year in earnings, if recent reports are anything to go by. It’s hardly surprising when you look at the state of the ransomware landscape. Last year saw hackers continue to evolve their tactics to become scrappier and more extreme in efforts to pressure victims into paying their increasingly exorbitant ransom demands. This escalation in tactics, along with the fact that governments have stopped short of banning ransom payments, led to 2023 becoming the most lucrative year yet for ransomware gangs. The billion-dollar cybercrime business According to new data from crypto forensics startup Chainalysis, known ransomware payments almost doubled in 2023 to surpass the $1 billion mark, calling the year a “major comeback for ransomware.” That’s the highest figure ever observed, and almost double the amount of known ransom payments tracked in 2022. But Chainalysis said the actual figure is likely far …

It’s time to security proof Europe’s tech policies – POLITICO

It’s time to security proof Europe’s tech policies – POLITICO

We can no longer afford to diddle around like this! And rarely has anything hammered home just how much we remain stuck in the harsh reality of centuries past as Russia’s invasion of Ukraine. It is, however, far from the only recent wake-up call as to just how far opponents of our liberal democratic order are willing to go, and how ready they are to exploit every weakness we show and every vulnerability we leave unpatched. We simply need to embrace the fact that our autocratic challengers, as well as criminal elements around the world, weaponize absolutely anything they can — be it our smart phones or smart homes, critical infrastructure or resource dependencies. And if we want to win, or at least persist, we need to get better at accepting the fight where they take it — and that may be just about anywhere. At its core, this means our political leaders must ensure all new policies and regulations add to our security rather than subtract from it, that they don’t weaken cohesion or …

Confronting the alarming rise of supply chain attacks

Confronting the alarming rise of supply chain attacks

Kamil Fedorko, Global Cybersecurity Practice Leader at Intellias, discusses the escalating threat of supply chain attacks and emphasises the need for comprehensive defense strategies to mitigate risks. Supply chain attacks remain one of the most serious threats to cyber security that exist today. With the number of attacks increasing by nearly 750% per year between 2019-2022, it’s clear that threat actors have identified increasingly integrated digital supply chains as an extremely effective and lucrative way to gain access to networks and data. The main challenge lies in securing what can be extremely complex supply chains, not least because vulnerabilities can be introduced or exploited by threat actors at any stage. Typically, these attacks succeed when cyber criminals manage to infiltrate technology infrastructure indirectly by exploiting weaknesses in less secure suppliers, vendors, or partners of the actual target organisation. Although the concept of attacking digital supply chains has been around for many years, incidents only started gathering significant attention following the massive SolarWinds breach in 2020, which impacted thousands of public and private sector organisations globally. …