Amazon has reported a data leak involving nearly 3 million employee records, including personal contact details, due to a security breach at a third-party property management vendor related to the MOVEit Transfer hack. While Amazon's own systems were not breached, the incident also affected other major companies like HSBC, UBS, and McDonald’s. The consolidated nature of the leaked data increases the risk of social engineering and phishing attacks, prompting concerns about further vulnerabilities among affected organizations. The group claiming responsibility, Nam3L3ss, argues for greater data privacy awareness, yet cybersecurity experts suggest their methods may not be the most effective way to promote compliance and secure data practices.

Amazon Faces Major Data Leak of Nearly 3 Million Employee Records CyberNews

The Healthcare and Public Health Sector Coordinating Council (HSCC) has introduced a Cyber Incident Response Playbook targeted at medical product manufacturers, including medical device and pharmaceutical companies. This resource offers practical guidance for identifying and managing cyber incidents affecting manufacturing operations and operational technology, with adaptable step-by-step recommendations suitable for different organizational sizes. The playbook, shared on LinkedIn by Erik Decker (CISO, Intermountain Health) covers the entire incident response process, from preparation to remediation, and builds on past initiatives, reflecting a collaborative effort to strengthen cybersecurity within the healthcare sector. The HSCC's Joint Cybersecurity Working Group, comprising over 470 members from various fields, focuses on addressing cyber threats to health data and systems.

New Playbook Empowers Medical Manufacturers to Combat Cyber Threats LinkedIn

A recent Cybersecurity Advisory (CSA) co-authored by CISA and NSA reveals that cybercriminals are increasingly leveraging zero-day vulnerabilities to breach enterprise networks. The report titled "2023 Top Routinely Exploited Vulnerabilities" identifies 15 Common Vulnerabilities and Exposures (CVEs) that have been exploited over the past year, with a notable rise in the initial exploitation of zero-day vulnerabilities—from two last year to eleven this year. NSA's cybersecurity technical director, Jeffrey Dickerson, calls for heightened vigilance and prompt mitigation efforts among network defenders. The report also highlights that many listed vulnerabilities are appearing for the first time, signaling an evolving cyber threat landscape and underscoring the necessity for proactive cybersecurity strategies as exploitation is expected to persist into 2024 and 2025.

Cybersecurity Alert: Zero-Day Vulnerabilities Surge in 2023 Exploitation Report NSA

William Walders has been appointed as the new vice president and chief digital and information officer for The Joint Commission enterprise, effective December 2, 2024. He will oversee the IT and digital strategy, focusing on enhancing digital product offerings and data analytics capabilities. Dr. James Merlino, from The Joint Commission, highlighted Walders' experience in IT growth strategies as beneficial for improving patient safety and care quality in accredited healthcare organizations. Previously, Walders was CIO at BayCare Health System and held senior roles at Health First and VMware, contributing to a solid healthcare IT background. He is also a U.S. Navy veteran.

William Walders Named New CDIO of The Joint Commission, Aiming for Digital Transformation GlobeNewswire

Amazon has reported a data leak involving nearly 3 million employee records, including personal contact details, due to a security breach at a third-party property management vendor related to the MOVEit Transfer hack. While Amazon's own systems were not breached, the incident also affected other major companies like HSBC, UBS, and McDonald’s. The consolidated nature of the leaked data increases the risk of social engineering and phishing attacks, prompting concerns about further vulnerabilities among affected organizations. The group claiming responsibility, Nam3L3ss, argues for greater data privacy awareness, yet cybersecurity experts suggest their methods may not be the most effective way to promote compliance and secure data practices.

Amazon Faces Major Data Leak of Nearly 3 Million Employee Records CyberNews

The Healthcare and Public Health Sector Coordinating Council (HSCC) has introduced a Cyber Incident Response Playbook targeted at medical product manufacturers, including medical device and pharmaceutical companies. This resource offers practical guidance for identifying and managing cyber incidents affecting manufacturing operations and operational technology, with adaptable step-by-step recommendations suitable for different organizational sizes. The playbook, shared on LinkedIn by Erik Decker (CISO, Intermountain Health) covers the entire incident response process, from preparation to remediation, and builds on past initiatives, reflecting a collaborative effort to strengthen cybersecurity within the healthcare sector. The HSCC's Joint Cybersecurity Working Group, comprising over 470 members from various fields, focuses on addressing cyber threats to health data and systems.

New Playbook Empowers Medical Manufacturers to Combat Cyber Threats LinkedIn

A recent Cybersecurity Advisory (CSA) co-authored by CISA and NSA reveals that cybercriminals are increasingly leveraging zero-day vulnerabilities to breach enterprise networks. The report titled "2023 Top Routinely Exploited Vulnerabilities" identifies 15 Common Vulnerabilities and Exposures (CVEs) that have been exploited over the past year, with a notable rise in the initial exploitation of zero-day vulnerabilities—from two last year to eleven this year. NSA's cybersecurity technical director, Jeffrey Dickerson, calls for heightened vigilance and prompt mitigation efforts among network defenders. The report also highlights that many listed vulnerabilities are appearing for the first time, signaling an evolving cyber threat landscape and underscoring the necessity for proactive cybersecurity strategies as exploitation is expected to persist into 2024 and 2025.

Cybersecurity Alert: Zero-Day Vulnerabilities Surge in 2023 Exploitation Report NSA

William Walders has been appointed as the new vice president and chief digital and information officer for The Joint Commission enterprise, effective December 2, 2024. He will oversee the IT and digital strategy, focusing on enhancing digital product offerings and data analytics capabilities. Dr. James Merlino, from The Joint Commission, highlighted Walders' experience in IT growth strategies as beneficial for improving patient safety and care quality in accredited healthcare organizations. Previously, Walders was CIO at BayCare Health System and held senior roles at Health First and VMware, contributing to a solid healthcare IT background. He is also a U.S. Navy veteran.

William Walders Named New CDIO of The Joint Commission, Aiming for Digital Transformation GlobeNewswire