Max Severity OwnCloud Flaw Actively Exploited in the Wild

Nov28

0

Max Severity OwnCloud Flaw Actively Exploited in the Wild

Posted by NetSec Editor on Nov 28, 2023

Max Severity OwnCloud Flaw Actively Exploited in the Wild

A critical vulnerability in OwnCloud, a popular open-source self-hosted file synchronization and sharing solution, has started to be exploited by cyber actors. The vulnerability affects the Graphapi app, which relies on a third-party GetPhpinfo.php library that provides a URL. When the URL is accessed, it reveals the configuration of the PHP environment, which includes all of the environment variables of the webserver. In a containerized deployment, the disclosed variables may include highly sensitive data such as the ownCloud admin password, mail server credentials, and the license key. If exploited,...

Read more

Microsoft Patches 5 Zero-Days on November 2023 Patch Tuesday

Nov15

0

Microsoft Patches 5 Zero-Days on November 2023 Patch Tuesday

Posted by NetSec Editor on Nov 15, 2023

Microsoft Patches 5 Zero-Days on November 2023 Patch Tuesday

On November 2023 Patch Tuesday, Microsoft released patches to fix 63 vulnerabilities across its product suite, including 5 zero-day flaws, 3 of which are known to be actively exploited in the wild. Only 3 of the vulnerabilities have been rated...

Read more

Feds Warn of Potential Rebrand of Royal Ransomware Group

Nov14

0

Feds Warn of Potential Rebrand of Royal Ransomware Group

Posted by NetSec Editor on Nov 14, 2023

Feds Warn of Potential Rebrand of Royal Ransomware Group

A joint Cybersecurity Advisory> has been issued by the Federal Bureau...

Read more

Critical Atlassian Confluence Data Center and Server Vulnerability Exploited by Ransomware Gangs

Nov07

0

Critical Atlassian Confluence Data Center and Server Vulnerability Exploited by Ransomware Gangs

Posted by NetSec Editor on Nov 7, 2023

Critical Atlassian Confluence Data Center and Server Vulnerability Exploited by Ransomware Gangs

On October 31, 2023, Atlassian issued a security advisory about a...

Read more

Recent News

Ardent Health System Ransomware Attack Affects Hospitals in Multiple States

Ardent Health System Ransomware Attack Affects Hospitals in Multiple States

Nov 29Posted by NetSec Editor in Healthcare Data Breaches

A U.S. healthcare provider that operates hospitals in 6 states suffered a...

Max Severity OwnCloud Flaw Actively Exploited in the Wild

Max Severity OwnCloud Flaw Actively Exploited in the Wild

Nov 28Posted by NetSec Editor in Cybersecurity Alerts

A critical vulnerability in OwnCloud, a popular open-source self-hosted file...

COO of Cybersecurity Company Pleads Guilty to Attack on Georgia Hospitals to Drum up Business

COO of Cybersecurity Company Pleads Guilty to Attack on Georgia Hospitals to Drum up Business

Nov 21Posted by NetSec Editor in Data Security, Healthcare Data Breaches, Legal News

The former chief operating officer (COO) of a cybersecurity firm who hacked...

CISA Publishes Healthcare Cybersecurity Mitigation Guide

CISA Publishes Healthcare Cybersecurity Mitigation Guide

Nov 20Posted by NetSec Editor in Data Security, Healthcare Data Breaches

In New York state, the healthcare industry was the most targeted critical...

What is Considered PHI?

What is Considered PHI?

Nov 17Posted by NetSec Editor in HIPAA Compliance

PHI is considered to be health, treatment, or payment information – or any...

Display More News

Popular News All Time

Previous Next

Ardent Health System Ransomware Attack Affects Hospitals in Multiple States
Nov 29, 2023
Top 5 Healthcare Data Breaches in 2011
Sep 29, 2011
Navigating Privacy Laws for Patient Data Sharing
Sep 30, 2011
Preparation for HIPAA Audits Essential
Dec 6, 2011
2012 Ponemon Institute Data Security Study Released
Dec 14, 2012

Ardent Health System Ransomware Attack Affects Hospitals in Multiple States

Nov29

Ardent Health System Ransomware Attack Affects Hospitals in Multiple States

Posted by NetSec Editor on 11-29-23 in Healthcare Data Breaches

A U.S. healthcare provider that operates hospitals in 6 states suffered a ransomware attack that has caused outages at several of its hospitals. Ardent Health Services said it first identified an...

Top 5 Healthcare Data Breaches in 2011

Sep29

Top 5 Healthcare Data Breaches in 2011

Posted by NetSec Editor on 9-29-11 in Healthcare Data Breaches

This month there is a new name on top of the list of the biggest healthcare data breaches in 2011, the incident is also the second largest healthcare data breach reported to date. The TRICARE...

Navigating Privacy Laws for Patient Data Sharing

Sep30

Navigating Privacy Laws for Patient Data Sharing

Posted by NetSec Editor on 9-30-11 in HIPAA Compliance

Under the Health Insurance Portability and Accountability Act’s Privacy Laws for patient data sharing, the sharing of Protected Health Information with a third party is highly restricted and the...

Preparation for HIPAA Audits Essential

Dec06

Preparation for HIPAA Audits Essential

Posted by NetSec Editor on 12-06-11 in HIPAA Compliance

According to the results of an HCPro survey, healthcare providers and other HIPAA-covered entities are simply not prepared for a compliance inspection; in fact, preparation for HIPAA compliance...

2012 Ponemon Institute Data Security Study Released

Dec14

2012 Ponemon Institute Data Security Study Released

Posted by NetSec Editor on 12-14-12 in Data Security, Healthcare Data Breaches

As the year draws to a close, it is a time to reflect on the lessons learned during 2012 regarding HIPAA compliance and dealing with healthcare data breaches. This year the pilot round of...

Healthcare Data Breaches
HIPAA Compliance
Cybersecurity Alerts
Vendor News

Ardent Health System Ransomware Attack Affects Hospitals in Multiple States

Ardent Health System Ransomware Attack Affects Hospitals in Multiple States

Nov 29Posted by NetSec Editor in Healthcare Data Breaches

A U.S. healthcare provider that operates hospitals in 6 states suffered a...

COO of Cybersecurity Company Pleads Guilty to Attack on Georgia Hospitals to Drum up Business

COO of Cybersecurity Company Pleads Guilty to Attack on Georgia Hospitals to Drum up Business

Nov 21Posted by NetSec Editor in Data Security, Healthcare Data Breaches, Legal News

The former chief operating officer (COO) of a cybersecurity firm who hacked...

CISA Publishes Healthcare Cybersecurity Mitigation Guide

CISA Publishes Healthcare Cybersecurity Mitigation Guide

Nov 20Posted by NetSec Editor in Data Security, Healthcare Data Breaches

In New York state, the healthcare industry was the most targeted critical...

Display More News

What is Considered PHI?

What is Considered PHI?

Nov 17Posted by NetSec Editor in HIPAA Compliance

PHI is considered to be health, treatment, or payment information – or any...

Why Was HIPAA Created?

Why Was HIPAA Created?

Nov 14Posted by NetSec Editor in HIPAA Compliance

HIPAA was created to help individuals with health problems obtain health...

3 HIPAA Violation Consequences That Are Often Overlooked

Nov 9Posted by NetSec Editor in HIPAA Compliance

The three HIPAA violation consequences most often overlooked affect...

Display More News

Max Severity OwnCloud Flaw Actively Exploited in the Wild

Max Severity OwnCloud Flaw Actively Exploited in the Wild

Nov 28Posted by NetSec Editor in Cybersecurity Alerts

A critical vulnerability in OwnCloud, a popular open-source self-hosted file...

Microsoft Patches 5 Zero-Days on November 2023 Patch Tuesday

Microsoft Patches 5 Zero-Days on November 2023 Patch Tuesday

Nov 15Posted by NetSec Editor in Cybersecurity Alerts

On November 2023 Patch Tuesday, Microsoft released patches to fix 63...

Feds Warn of Potential Rebrand of Royal Ransomware Group

Feds Warn of Potential Rebrand of Royal Ransomware Group

Nov 14Posted by NetSec Editor in Cybersecurity Alerts

A joint Cybersecurity Advisory> has been issued by the Federal Bureau of...

Display More News

Microsoft Issues Out-of-Band Update to Fix Patch Tuesday-Related Issue on Arm Devices

Microsoft Issues Out-of-Band Update to Fix Patch Tuesday-Related Issue on Arm Devices

Jun 21Posted by NetSec Editor in Cybersecurity Alerts, Vendor News

Microsoft has issued an out-of-band update to fix an issue with Windows...

TitanHQ Acquires Cyber Risk Aware to Add Security Awareness Training to its Cybersecurity Portfolio

TitanHQ Acquires Cyber Risk Aware to Add Security Awareness Training to its Cybersecurity Portfolio

Feb 17Posted by NetSec Editor in Email Spam News, Phishing News, TitanHQ News, Vendor News

The Irish cybersecurity firm TitanHQ, a leading SaaS business offering a...

Patch These Actively Exploited SonicWall Vulnerabilities Now!

Patch These Actively Exploited SonicWall Vulnerabilities Now!

Apr 20Posted by NetSec Editor in Cybersecurity Alerts, Email Spam News, SonicWall News, Vendor News

SonicWall has released patches to correct three actively exploited...

Display More News