The UK’s Information Commissioner’s Office (ICO) has fined healthcare technology solutions provider, Advanced, due to security lapses leading to a ransomware breach, affecting sensitive patient data. The lapse, which included failure to conduct thorough risk assessments, inadequate staff training, poor access controls and outdated software, resulted in a £1.4 million penalty and loss of trust in the NHS’s data privacy capabilities. The ICO underlines the need for cybersecurity, especially in sectors dealing with personal data.
Cyber agencies reveal top 15 routinely exploited vulnerabilities
Five countries’ cybersecurity agencies collaborated on a advisory for Common Vulnerabilities and Exposures (CVEs) frequently exploited in 2023.
