“Accenture: Healthcare Cyber-attacks to Hit $305B Over 5 Years”

healthcare-data-secAccording to a recent survey from Accenture, (an investment holding company with interest in providing management consulting serving clients in major industries around the world, including Health and Public Service), the monetary cost from healthcare cyber-attacks will increase significantly over the next several years. Over the next five years, healthcare cyber-attacks will costs $305 billion in cumulative lifetime revenue, specifies an Accenture analysis. Not only will business and providers be affected, a high number of patients too. Approximately one in 13 patients will have their medical and personal information stolen from their healthcare provider’s digitized records between 2015 and 2019, based on the analysis by Accenture. Accenture explains in the analysis report, “To prevent revenue loss on this scale, healthcare providers must prioritize improvements of their cyber security in order to thwart attacks that aim to steal patient data from clinical and financial systems.”  For the full article, click here

“Apple’s Gatekeeper vulnerability still needs to be fixed”

applesgatekeeper

Apple gatekeeper a part of Apple’s OS that validates the source of applications which can be installed on the device was meant as a security feature allowing the user an opportunity to select whether to install applications depending on weather they come from approved developers, or the Mac store has been found to be exploitable or bypassed by Synack researcher Patrick Wardle. Apple gatekeeper was first launched in 2012, now Wardle is concerned about this security update that doesn’t actually fix problems or keeps users safe when downloading apps. Wardle has been in contact with the security team at Apple regarding his concerns, and the security team is working on a more “comprehensive fix”.  For the full article, click here 

“LastPass Phishing Attack”

lastpass_notification

LastPass the popular single-sign-on and password management service could allow attackers to fully compromise user accounts. The flaw was discovered by researcher, Sean Cassidy. Cassidy calls this attack “LostPass.” In Cassidy’s blog post he explains that the vulnerability he discovered allows attackers to trick LastPass users into thinking that while online, they were automatically logged out of the platform and then direct them to what appears to be LastPass login page. That’s where the attack begins, users will essentially log back in without realizing they just handed over their log in credentials to the hackers. Cassidy updated his blog saying, “LastPass now requires email confirmation for all logins from new IPs”.  For the full article, click here 

“IRS Statement on E-filing Pin”

On February 9, 2016, The Internal Revenue Service released a statement describing an attack they discovered upon its Electronic Filing PIN application on IRS.gov. In the statement released the IRS said, “Using personal data stolen elsewhere outside the IRS, identity thieves used malware in an attempt to generate E-file PINs for stolen social security numbers.” Taxpayers may apply for an E-file PIN to electronically file a tax return. Although the attack was discovered, the IRS did mention in their statement that no personal taxpayer data was compromised or disclosed by the IRS systems and the IRS cybersecurity experts are currently assessing the situation. For the full statement, click here