Healthcare workers are often uploading sensitive health data to personal cloud and AI accounts, says a report from Netskope Threat Labs. Out of the data policy violations noted in healthcare organisations last year, 81% involved regulated healthcare data. Generative AI applications are often the source of these data violations. Many are advising using organisation-approved genAI applications, implementing strict data loss prevention policies and using real-time user coaching to reduce the risk.
Google Calendar used as middleman for stealthy NPM malware
Veracode researchers have uncovered a malware campaign that misuses Google Calendar to execute a malicious command-and-control (C2) server connection. The malware is embedded in a
