During late afternoon Wednesday, October 28th several federal agencies, including HHS and the FBI, issued a joint cybersecurity advisory that cited "credible information of an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers." The advisory warned of Russian criminal groups targeting American hospitals with Ryuk ransomware. The threat advisory is consistent with attack activity observed by CyberMaxx over the past weeks. All indicators point to an uptick in ransomware attacks targeting healthcare providers. The attacks also coincide with a nation-wide surge in COVID-19 cases.
Microsoft is warning that an exploit with the magnitude of the WannaCry attack that crippled computers worldwide two years ago could be imminent if people fail to patch a high-severity vulnerability.
Across the globe cybersecurity teams work around the clock to keep up with scanning and patching vulnerabilities, and identifying threats. This form of Vulnerability Risk Management is becoming a top priority within IT security teams.
As such, more and more risk personnel are reaching out to vendors of VRM to help with vulnerability management and the struggle to reduce security cyber risk. But do you really need a vulnerability risk management solution?
Today there are more devices connected to the internet than there have ever been before – an inconceivable number of connections. An ever-growing rate of connections provides more and more opportunities for hackers to exploit digital vulnerabilities. In this blog post, we'll discuss why VRM has never been more of a priority in the realm of cybersecurity.
A Life of Crime
Have you ever considered a life of crime? If so, cyber crime might be a good field for you to take a look at. Many organizations aren’t very good at responding to network intrusion... so you might actually get away with it. Plus, prosecuting cyber criminals is tough to do; evidence against your dastardly deed seldom stands up in court.
When your victim has a cybersecurity policy in place for responding to network intrusion, clues will be hard for them to come by, and even harder to trace back to you.
With cybersecurity attacks and costly data breaches on the rise, and a wide range of industries being targeted, companies of all sizes should be preparing for the worst. Just as we prepare for a natural disaster, companies should prepare for a cybersecurity disaster, and in both instances, proper planning, preparation and practicing potential scenarios is key.