Independent – Page 89 – PossibleThreat Articles

Healthcare organizations are one of the most targeted verticals when it comes to cyberattacks. While those organizations must work to secure patients' sensitive data, it can also be helpful to analyze that data to improve patient outcomes. Jason James, CIO of Net Health, joins Juliet to discuss why attackers target healthcare organizations, Google's Project Nightingale and what it means for a tech giant to have access to the medical data of millions of people.

Independent Krebs Security

Orcus RAT Author Charged in Malware Scheme

November 13, 2019 0 Comments australian federal police, blackshades rat, john revesz, luminositylink, nanocore rat, Ne'er-Do-Well News, orcus rat, orcus technologies, rcmp, royal canadian mounted police, taylor huddleston

Credit to Author: BrianKrebs| Date: Wed, 13 Nov 2019 15:41:17 +0000

In July 2016, KrebsOnSecurity published a story identifying a Toronto man as the author of the Orcus RAT, a software product that’s been marketed on underground forums and used in countless malware attacks since its creation in 2015. This week, Canadian authorities criminally charged him with orchestrating an international malware scheme.

ComputerWorld Independent

Get 70% off NordVPN Virtual Private Network Service + 3 months free – Deal Alert

November 13, 2019 0 Comments Security, vpn

Credit to Author: DealPost Team| Date: Wed, 13 Nov 2019 08:27:00 -0800

Safeguard yourself against snoops, and access blocked content with this no-log VPN service. NordVPN has discounted their popular VPN software 70%, with 3 extra months on top. Use our link and see the discount applied when you click "buy now".

ComputerWorld Independent

Patch Tuesday arrives with Access error, 1909 in tow, and a promise of no more 'optional' patches this year

November 13, 2019 0 Comments Browsers, Microsoft, Security, Windows

Credit to Author: Woody Leonhard| Date: Wed, 13 Nov 2019 07:59:00 -0800

The patches haven’t yet been out for 24 hours and already we’re seeing a lot of activity. Here’s where we stand with the initial wave of problems.

Malicious Software Removal Tool installation error 800B0109

Many early patchers found that the MSRT, KB 890830, kept installing itself over and over again. Poster IndyPilot80 says:

It sits at “Installing: 0%” for a couple minutes then goes away. When I hit “Check for Updates” it shows up again and does the same thing.
To read this article in full, please click here

Independent Krebs Security

Patch Tuesday, November 2019 Edition

November 12, 2019 0 Comments Adobe, cve-2019-1429, cve-2019-1457, internet explorer zero-day, macros, Microsoft, office for mac, Time to Patch, windows 7 end-of-life

Credit to Author: BrianKrebs| Date: Tue, 12 Nov 2019 22:04:32 +0000

Microsoft today released updates to plug security holes in its software, including patches to fix at least 74 weaknesses in various flavors of Windows and in software that runs on top of it. The November updates include patches for a zero-day flaw in Internet Explorer that is currently being exploited in the wild, as well as a sneaky bug in certain versions of Office for Mac that bypasses security protections and was detailed publicly prior to today’s patches.

ComputerWorld Independent

How to harden web browsers against cyberattacks

November 12, 2019 0 Comments Security, Windows

Use these techniques to limit attackers’ ability to compromise systems and websites.

Independent Krebs Security

Retailer Orvis.com Leaked Hundreds of Internal Passwords on Pastebin

November 11, 2019 0 Comments A Little Sunshine, alex holden, github, Hold Security, orvis password exposure, orvis.com, pastebin, tucker kimball

Credit to Author: BrianKrebs| Date: Mon, 11 Nov 2019 17:33:27 +0000

Orvis, a Vermont-based retailer that specializes in high-end fly fishing equipment and other sporting goods, leaked hundreds of internal passwords on Pastebin.com for several weeks last month, exposing credentials the company used to manage everything from firewalls and routers to administrator accounts and database servers, KrebsOnSecurity has learned. Orvis says the exposure was inadvertent, and that many of the credentials were already expired.

ComputerWorld Independent

Patch Tuesday alert: Make sure Windows Auto Update is temporarily disabled

November 11, 2019 0 Comments Microsoft, Security, Windows

Credit to Author: Woody Leonhard| Date: Mon, 11 Nov 2019 05:03:00 -0800

For those of you who haven’t patched since May, there’s exceedingly bad news on the horizon. Per Catalin Cimpanu at ZDNet, Metasploit’s working-but-just-barely BlueKeep exploit is about to get a significant bug fix. That’ll put BlueKeep infection capabilities in the hands of mere mortals. The script kiddies won’t be far behind.

If you’re using — or you know someone who’s using — Windows XP, Vista, Win7, Server 2003, Server 2008 or Server 2008 R2, get patched now. The fix is easy. Even Aunt Martha can handle it.

To read this article in full, please click here

ComputerWorld Independent

Why you should begin using Sign in with Apple

November 8, 2019 0 Comments Apple, iOS, Macs, Mobile, Security

Credit to Author: Jonny Evans| Date: Fri, 08 Nov 2019 06:17:00 -0800

Apple has published lots of information explaining how its newly introduced Sign in With Apple service solves a problem most of us didn’t know existed and which many of us would very much like to solve.

Who watches the watchmen?

The issue:

Most social sign-in services act a little like people-tracking honey pots: You come to use a website or service and stay because the people providing the authorization use that moment to gather even more information about what you do.

What happens is that the persistent identity used by those services can be combined with other data to identify where you go, what you look for and more.

To read this article in full, please click here

Independent Krebs Security

Study: Ransomware, Data Breaches at Hospitals tied to Uptick in Fatal Heart Attacks

November 7, 2019 0 Comments A Little Sunshine, department of health and human services, hhs, leo scanlon, owen graduate school of management, pbs, The Coming Storm, the new england journal of medicine, vanderbilt university, WannaCry

Credit to Author: BrianKrebs| Date: Thu, 07 Nov 2019 19:48:03 +0000

Hospitals that have been hit by a data breach or ransomware attack can expect to see an increase in the death rate among heart patients in the following months or years because of cybersecurity remediation efforts, a new study posits. Health industry experts say the findings should prompt a larger review of how security — or the lack thereof — may be impacting patient outcomes.