Keep Calm and Secure Citrix: A UK Guide to Outsmarting CVE-2022-27518

Blimey, There’s a Hole in the Citrix Net! Alright, mates? Gather round. We need to natter about something rather serious that’s popped up in the cyber world – it’s this pesky little bugger called CVE-2022-27518, or ‘Citrix Bleed’ as the boffins are calling it. Quite the sticky wicket, this one. How Big’s the Kerfuffle? Picture […]

Key Ways to Prepare For Revamped Medical Device Security Requirements

The Consolidated Appropriations Act of 2023 (Omnibus) amended the Federal Food, Drug, and Cosmetic Act to require medical device manufacturers to address cybersecurity. As of March 29, 2023, they must provide cybersecurity details in premarket submissions. The Omnibus mandates plans for postmarket cybersecurity vulnerabilities, device cybersecurity demonstrations, and software bill of materials (SBOM) disclosures. Starting […]

Computer failure at FAA halts all flight operations

Air traffic control offline nationwide – UPDATE 6:49 a.m. — The FAA has claimed the NOTAM system which gives pilots critical information like conditions at airports & runway info could be back up in the next 30 minutes. According to the Air Traffic Control System Command Center (ATCSCC), air traffic services will be “unavailable” between […]

Why we need global rules to crack down on cybercrime

Cybercrime is high on the agenda of nation states, corporations and international organizations everywhere. As the forthcoming 2023 Global Risk Report will show, deepening geopolitical tensions have increased the prevalence of so-called advanced persistent threats (APTs), which are becoming as sophisticated as they are pervasive… Source: weforum.org – Read more

FDA bill passes without cybersecurity requirements for medical devices

The much-anticipated cybersecurity requirements for medical devices were dropped from the FDA user-fee package, serving as a reminder that healthcare providers should not wait to act on medical device security. (Photo credit: “US Capitol” by Navin75 is licensed under CC BY-SA 2.0.)The FDA… Source: www.scmagazine.com – Read more

OneTouchPoint Discloses Data Breach Impacting Over 30 Healthcare Firms

Mailing and printing services vendor OneTouchPoint has disclosed a data breach impacting more than 30 healthcare providers and health insurance carriers. Headquartered in Hartland, Wisconsin, OneTouchPoint offers print, marketing execution and supply chain management services to organizations in the healthcare sector. The company revealed this week that it recently fell victim to a ransomware attack […]

Federal Legislation Requires Critical Infrastructure Groups to Report Cyberattacks

Newly passed legislation will require owners and operators of U.S. critical infrastructure to report when they get hacked or make a ransomware payment. Hailed as “historic” and a “game-changer,” the legal provision aims to support the federal government’s ongoing efforts to crack down on cyberattacks. Source: totalsecurityadvisor.blr.com – Read more