Medical devices and supporting software continue to face significant security vulnerabilities, posing a threat to healthcare, warns the Health Information Sharing and Analysis Center. In a joint report with Finite State and Securin, they revealed a 59% YoY increase in such vulnerabilities, with software applications accounting for 64%. 160 of these vulnerabilities had been weaponized, with some utilized by advanced persistent threat groups. The authors recommended regular penetration testing, prioritizing vulnerability patching, and using binary analysis tools to identify potential vulnerabilities.

New Malware Loaders Use Call Stack Spoofing, GitHub C2, and .NET Reactor for Stealth
An updated version of a malware loader, known as Hijack Loader, has been discovered with new features aimed at evading detection and maintaining persistence. The