Zero-day exploit completely defeats default Windows 11 BitLocker protections
It's not entirely clear how the exploit works. Microsoft says it's investigating.
It's not entirely clear how the exploit works. Microsoft says it's investigating.
Cisco has released updates to address a maximum-severity authentication bypass flaw in Catalyst SD-WAN Controller that it said has been exploited in limited attacks. The vulnerability, tracked as CVE-2026-20182, carries a CVSS score of 10.0. "A vulnerability in the peering authen…
Hackers are using Fake interview apps to spread JobStealer malware on macOS and Windows to steal crypto wallets, browser data, and passwords.
Cybersecurity researchers are sounding the alarm about what has been described as "malicious activity" in newly published versions of node-ipc. According to Socket and StepSecurity, three different versions of the npm package have been confirmed as malicious - node-ipc@9.1.6 nod…
By Kerry Barker RN - During National Nurses Month 2026, it is important to acknowledge a persistent reality in our industry: health information technology (health IT) is often viewed as a hurdle for nursing staff to overcome. Communication disconnects between nurses and IT profes…
Everything is still on fire. This week feels dumb in the worst way — bad links, weak checks, fake help desks, shady forum posts, and people turning supply chain attacks into some cursed little game for clout and cash. Half of it feels new. Half of it feels like crap we should hav…
An 18-year-old flaw in the NGINX open-source web server, discovered using an autonomous scanning system, can be exploited for denial of service and, under certain conditions, remote code execution. [...]
Cargo theft now starts with phishing emails and stolen credentials, not hijackings, to reroute and steal freight from supply chains. NMFTA outlines how cyber-enabled cargo crime is changing transportation security. [...]
Business cash flow is often harder to manage than revenue. A company can have strong sales and still…
Business and financial news from Clinical Architecture, NextGen Healthcare, Luma Health, The Phia Group, KeepWOL, Spring Health, Talkdesk, CareQuest Innovation Partners, VisualDx, IKS Health, Twentyeight Health, Alluvium, MedeAnalytics, Seqster, IMO Health, CliniComp, ChiroTouch,…
When a Vendor Gets Breached, What Happens to Your Patient Data? Healthcare IT Today
The Belarus-aligned threat group known as Ghostwriter has been attributed to a fresh set of attacks targeting governmental organizations in Ukraine. Active since at least 2016, Ghostwriter has been linked to both cyber espionage and influence operations targeting neighboring coun…
The Labcorp agreement continues the expansion of Aura, which gives healthcare providers access to tests from companies including Quest Diagnostics.
In a role reversal, investment dollars in AI security startups exceeded the value of AI acquisitions in 1Q26 by more than $1 billion, a rare occurrence.
Verber Dental Group Notifies Patients About January Hacking Incident The HIPAA Journal
Data breaches have recently been announced by Verber Dental Group in Pennsylvania, Northwoods Surgery Center in Minnesota, Cunningham Prosthetic Care […] The post Verber Dental Group Notifies Patients About January Hacking Incident appeared first on The HIPAA Journal.
Bitdefender Labs reveals how the China-linked FamousSparrow hacking group targeted an Azerbaijani energy firm using ProxyNotShell, Deed RAT,…
Initial access broker KongTuke has moved to Microsoft Teams for social engineering attacks, taking as little as five minutes to gain persistent access to corporate networks. [...]
By Rachel Blum - Health tech companies are investing aggressively in three directions right now: connected care experiences, cross-platform growth, and AI. Each represents a significant commitment of capital and engineering resources, and each is reshaping how these organizations…
A Nitrogen ransomware attack on Foxconn's North American facilities is one of 600 hits on manufacturers this year, as gangs increasingly target the sector for its low tolerance for downtime.