The Consolidated Appropriations Act of 2023 (Omnibus) amended the Federal Food, Drug, and Cosmetic Act to require medical device manufacturers to address cybersecurity. As of March 29, 2023, they must provide cybersecurity details in premarket submissions. The Omnibus mandates plans for postmarket cybersecurity vulnerabilities, device cybersecurity demonstrations, and software bill of materials (SBOM) disclosures. Starting October 1, 2023, the FDA will reject submissions not meeting cybersecurity criteria, emphasizing proactive cybersecurity measures.
DCRat Targets Latin American Users to Steal Banking Credentials
IBM X-Force has detected a series of targeted email attacks by South American threat group Hive0131, often deploying banking trojan DCRat, to steal sensitive banking
