Darkworldhacker Cybersecurity Roundup, March 04, 2022
Updated: Mar 7, 2022
It is often cheaper to prevent and avoid breaches than to respond to them. A West Virginia-based healthcare system collapsed in a second cyber incident in a quarter. In a different update, hackers shared proof of compromise for one of the websites associated with Russia’s space institute. Furthermore, financial institutions appear to have become the top choice for hackers with phishing motives. Let’s now brush through the key highlights that shaped the cybersecurity landscape in the last 24 hours.
Monongalia Health System disclosed it was targeted by a cyberattack that disrupted some of its IT systems and also resulted in the theft of personal and medical data.
A hacker group, going by the moniker v0g3lsec, allegedly compromised a website connected to Russia’s Space Research Institute and posted the screenshot for the same.
The New York State Joint Commission on Public Ethics has been forced to shut down its systems following a cyberattack involving suspicious activity on its network.
Crossroads Health, Ohio, suffered a cyberattack wherein an unauthorized individual gained access to its systems and removed some files containing sensitive records of patients.
The CISA added more than 60 flaws affecting Cisco and Microsoft products. All the Cisco vulnerabilities are rated critical as they can be abused by cybercriminals to run arbitrary code and for privilege escalation.
Palo Alto Networks found that 75% of the infusion pumps have security vulnerabilities that could expose the device to potential exploitation. As of 2020, nearly 80% of hospitals in the U.S. were using smart infusion pumps.
MITRE released the first official version of Engage, its cyber adversary deception framework, after eight months of operating as a public beta.
Vade released the list for the top 20 most impersonated brands in phishing, with financial services being the most impersonated industry of 2021 at 35% of all attempts.
San Francisco-based cybersecurity startup VISO Trust raised $11 million in funding led by Bain Capital Ventures, with Work-Bench, Sierra Ventures, and Lytical Ventures also participating in the round.
Managed IT, cybersecurity, and cloud services provider Magna5 acquired Boston-based TCG Network Services, also a managed IT and cybersecurity services provider.