A new phishing campaign targeting US healthcare and cryptocurrency sectors is exploiting vulnerabilities in remote support tool, ConnectWise ScreenConnect. Researchers found fraudulent websites that mimic cryptocurrency platforms and healthcare organizations, which, when interacted with, initiate the download of ScreenConnect client files, creating a potential entry point for hackers. Despite no detected active communication between servers and clients, the potential for data extraction or malware deployment remains high.

Dispersed responsibility, lack of asset inventory is causing gaps in medical device cybersecurity
Witnesses at a House hearing on medical device cybersecurity highlighted the need for better tracking of devices and their vulnerability to cyber threats. They noted