China-linked APT group Salt Typhoon has been using a custom malware named JumbledPath to spy on US telecom providers. Insikt Group highlighted that several US telecom providers were breached by exploiting unpatched Cisco network devices. Salt Typhoon reportedly breached major US telecom firms for over three years using mostly stolen credentials. Despite known vulnerabilities and fixes, researchers are still unsure how the group obtained the login credentials used in the attacks.
New Guidelines: Cybersecurity Resilience in the Healthcare Industry
In response to growing cyber threats, healthcare cybersecurity requirements are set to tighten, shifting towards resilience rather than prevention. The proposed changes include an emphasis
