Over 100 US automotive dealerships have been targeted in a sophisticated supply chain attack using a shared video service, which exposed many of its visitors to malware infection. The malware, SectopRAT, enables remote access to impacted systems for attackers. LES Automotive, the third-party service platform that was compromised, has fixed the issue, but the overall reach of the attack remains unclear.

‘Systemic gaps’ found private equity-backed healthcare companies’ cybersecurity preparedness
Private equity-backed healthcare companies have “systemic gaps” in their cybersecurity preparedness, according to a report from Clearwater Security. The findings revealed many such firms lack