Ransomware DataBreachToday.com

Preauthentication Deserialization Flaw Could Result in Remote Code Execution
Software vendors and national security agencies are urging immediate patching of a critical SonicWall flaw days after the security device manufacturer disclosed that hackers are actively exploiting a zero-day. The flaw doesn't require user authentication.

RansomHub Theft Hit Patients of 2 Dozen HCF Facilities and Home Healthcare Unit
A chain of more than two dozen skilled nursing and rehabilitation facilities is notifying tens of thousands of patients whose information was compromised in a hacking incident last fall. Russian-speaking cybercriminal gang RansomHub claims to have published 250GB of data stolen in the heist.

Undersea Cable Damage in Baltic Sparks Concerns of Russian 'Shadow Fleet' Activity
Swedish authorities seized a vessel in the Baltic Sea as part of a criminal investigation into sabotage of an undersea cable between Sweden and Latvia after a series of regional cable disruptions, including one involving suspected Russian shadow fleet activity, raising security concerns.

Also: Leadership Choices That Could Reshape Cybersecurity Priorities, Budgets
The Trump administration has inherited a strong cybersecurity framework but faces potential roadblocks from budget cuts and a shifting threat landscape. Jeremy Grant, managing director at Venable LLP joined ISMG editors to discuss the critical issues facing security leaders during the transition.

Focus on Pre-Breach Resilience and Post-Breach Recovery Via Mapping Dependencies
By acquiring vArmour’s intellectual property, Phoenix 24 will enhance its recovery services with advanced application visualization and dependency mapping. CEO Mark Grazman said the move will streamline recovery processes during ransomware attacks and improve organizational readiness.

Cost of Attack Has Reached $3.1 Billion for Parent Company UnitedHealth Group
One of the biggest data breaches of 2024 is even worse than previously reported, as the tally of Change Healthcare breach victims has now reached 190 million individuals, and costs tied to the attack $3.1 billion, according to its owner, U.S. health insurance giant UnitedHealth Group.

With the pace of global change so often creating a sense of accelerating chaos, it's easy to view cyber defenders as firefighters constantly on call. But Black Hat conference founder and creator Jeff Moss warned that "things have been on fire for as long as I can remember."

While artificial intelligence platforms and tools promise to offer encouraging potential in healthcare, many are unprepared to deal with the risks these emerging technologies pose - similar to the early days of social media, said Keith Fricke, partner and principal of tw-Security.

Chinese Hackers Hitting Unpatched Products From Microsoft, Sophos, Fortinet, Ivanti
Chinese nation-state hackers who surreptitiously gained "broad and full" access to telecommunications networks in the U.S. and dozens of other countries have regularly exploited known flaws in their networking gear that the victims failed to patch, security experts have warned.

Operator Cannot Yet Reliably Perform Complex, Customized Tasks
OpenAI introduced an AI agent capable of independent action with the launch of Operator, an general-purpose AI tool that interacts with websites to perform tasks. The agent can navigate menus and complete forms to do tasks such as travel booking, ordering takeout, buying stuff or scheduling tasks.

Fraud Expert Ken Westbrook on Successful Ways to Stop Fake Investment Sites
According to the FBI, losses from investment scams surged 38% between 2022 and 2023. Fraudsters are using highly effective tactics, including sending text messages to lure victims to fake cryptocurrency platforms, said Ken Westbrook, founder and CEO of Stop Scams Alliance.

The EU-US Data Privacy Framework Requires a Functional PCLOB
A Trump administration move to gut a key oversight body meant to guarantee European data rights in the United States could endanger the legal basis underpinning commercial data flows across the Atlantic. The board is charged with overseeing U.S. surveillance practices.

Why MFA and Data Minimization Remain Key for Preventing Massive Data Breaches
While PowerSchool's investigation into the massive theft of its customers' data is continuing, clear lessons have already emerged. Count among them the importance of using multifactor authentication, which could have safeguarded access to PowerSchool's exploited customer support systems.

Enterprises Prepare for Quantum-Resilient Infrastructures to Combat Future Threats
Many enterprises understand the potential risks of quantum computing. But few have begun actively planning or implementing post-quantum cryptography. The NIST PQC standardization process provides enterprises with guidance on adopting quantum-resistant algorithms, said David Close of Futurex.

Executive Order Scraps Biden-Era Policies
U.S. President Donald Trump signed an executive order directing the development of a plan within 180 days to ensure America's dominance in artificial intelligence. The order seeks to ensure AI systems are "free from ideological bias or engineered social agendas."

Also: US Prosecutors Charge Suspected North Korean IT Worker Collaborators
This week, researchers spied Palo Alto firewall flaws, a North Korean IT worker conspiracy, ChatGPT as DDoS vector. Chinese hackers targeted a VPN maker, a fake PyPi package and a Russian threat actor shifted tactics. BreachForums admin faces prison and scammers used the release of Ross Ulbricht.

Hackers Unlikely to Exploit Flaws in the Wild
Security researchers found an unpatchable flaw in the system that prevents commercial aircraft from crashing into each other, the U.S. federal government said in a Tuesday advisory that called the likelihood of its exploitation "unlikely" outside of a laboratory setting.

California User's Class Action Suit Says LinkedIn Violated Contract, Privacy Regs
A LinkedIn user has sued the company for flouting privacy requirements by allowing third-party companies to access user data - including Premium users' private messages - to train their artificial intelligence models. A LinkedIn spokesperson called the lawsuit "false claims with no merit."

Under the Trump administration, the proposed update to the HIPAA Security Rule - issued in the final weeks of the Biden administration - is likely to get trimmed but not totally cut, predicts regulatory attorney Sharon Klein of the law firm Blank Rome. What else should the health sector expect?

The pace of change including the rise of artificial intelligence and a sense of accelerating chaos can make cybersecurity professionals feel like "things are kind of everything, everywhere, all at once," said Black Hat conference founder Jeff Moss. How should they respond?