Only 57% of healthcare organizations have leveraged dark web intelligence in their security strategies, which is far behind the 85% of financial entities adopting such intelligence to strengthen their cybersecurity posture, according to HealthITSecurity.
Aside from exhibiting lower confidence levels in their understanding of potential adversaries' profiles, healthcare chief information security officers were also less likely to believe in the impact of dark web criminal activity on their companies, as well as the importance of threat intelligence in bolstering their cyber defenses, compared with other industries, a Searchlight Cyber Report revealed.
"It is likely that health and energy organizations may not have historically considered themselves the primary target for financially motivated cyberattacks emanating from the dark web. However, the cybersecurity landscape has changed dramatically over the past few years, and threat actors are no longer just focusing on asset-rich organizations like banks and insurance companies.As recent incidents have shown us, they are increasingly targeting enterprises in industries such as healthcare, oil and gas, and manufacturing to leverage the critical nature of these companies and extort ransoms," said Searchlight Cyber co-founder and CEO Ben Jones.
Ukrainian hacktivist operation IT Army has taken responsibility for a significant distributed denial-of-service attack against Russian local airline booking system Leonardo, which is used by over 50 Russian carriers, according to The Record, a news site by cybersecurity firm Recorded Future.
New attacks with the updated SysUpdate toolkit have been deployed by Chinese advanced persistent threat operation Budworm, also known as APT27, Emissary Panda, Bronze Union, Lucky Mouse, Iron Tiger, and Red Phoenix, against an Asian government and a Middle East-based telecommunications provider, reports The Hacker News.
Forty-five malicious NPM and PyPI packages have been deployed by threat actors to facilitate extensive data theft operations as part of a campaign that commenced on Sept. 12, according to BleepingComputer.