10 matches found
Friday Squid Blogging: Protecting Cephalopods in Medical Research
From Nature: Cephalopods such as octopuses and squid could soon receive the same legal protection as mice and monkeys do when they are used in research. On 7 September, the US National Institutes of Health NIH asked for feedback on proposed guidelines that, for the first time in the United States...
openSUSE Security Update : perl-Image-ExifTool (openSUSE-2021-707)
This update for perl-Image-ExifTool fixes the following issues : Update to version 12.25 fixes boo1185547 CVE-2021-22204 - JPEG XL support is now official - Added read support for Medical Research Council MRC image files - Added ability to write a number of 3gp tags in video files - Added a new...
APT Charming Kitten Pounces on Medical Researchers
Security researchers have linked a late-2020 phishing campaign aimed at stealing credentials from 25 senior professionals at medical research organizations in the United States and Israel to an advanced persistent threat group with links to Iran called Charming Kitten. The campaign—dubbed BadBloo...
Healthcare 2021: Cyberattacks to Center on COVID-19 Spying, Patient Data
Sophisticated cybercriminals have been trying to steal COVID-19 vaccine research – and researchers say there’s more of that to come going into 2021. Intellectual property theft will join ransomware, cloud-stored patient data theft and advanced phishing efforts as the main hallmarks of...
Hackers Targeting Critical Healthcare Facilities With Ransomware During Coronavirus Pandemic
As hospitals around the world are struggling to respond to the coronavirus crisis, cybercriminals—with no conscience and empathy—are continuously targeting healthcare organizations, research facilities, and other governmental organizations with ransomware and malicious information stealers. The n...
Cybersecurity of connected healthcare 2020: Overview and predictions
Kaspersky Security Bulletin 2019. Advanced threat predictions for 2020 5G technology predictions 2020 Corporate security prediction 2020 Cyberthreats to financial institutions 2020: Overview and predictions More than two years after the infamous Wannacry ransomware crippled medical facilities and...
A week in security (August 19 – 25)
Last week on Malwarebytes Labs, we reported on the presence of Magecart on a type of poker software; outlined how the Key Negotiation of Bluetooth KNOB attack works; followed the money on a Bitcoin sextortion campaign; looked back at DEF CON 27; and reported on continuing ransomware attacks on...
Healthcare: Research Data and PII Continuously Targeted by Multiple Threat Actors
The healthcare industry faces a range of threat groups and malicious activity. Given the critical role that healthcare plays within society and its relationship with our most sensitive information, the risk to this sector is especially consequential. It may also be one of the major reasons why we...
LabKey Vulnerabilities Threaten Medical Research Data
A trio of vulnerabilities in a popular open source medical data collaboration tool leaves important healthcare research data and potentially subject information open to multiple cross site scripting XSS attacks. The flaws are serious as they allow an attacker to retrieve user credentials once a...
Orthanc DICOM Server 1.1.0 Unquoted Service Path Privilege Escalation
Orthanc DICOM Server 1.1.0 Unquoted Service Path Privilege Escalation Vendor: SAcbastien Jodogne Product web page: http://www.orthanc-server.com Affected version: 1.1.0 Summary: Orthanc is a Belgian, open-source, lightweight RESTful DICOM server for healthcare and medical research with an...