ConnectWise’s ScreenConnect app has two flaws that were linked to the cyberattack on UnitedHealth’s Change Healthcare, causing pharmacy slowdowns. This was exploited by a LockBit malware, but it’s unclear if the LockBit gang was responsible. Optum, the parent company of Change Healthcare, inherited the vulnerability upon acquisition, highlighting the importance of cybersecurity audits in M&A. This exploitation exposes tens of millions of patient records to potential threats, with subsequent disruptions still affecting operations nationwide.
The NCSC wants developers to get serious on software security
The NCSC’s new Software Security Code of Practice has been praised by cyber professionals as a significant advancement in enhancing software supply chain security.
