Idenhaus Consulting on LinkedIn: Okta launches Okta Verify for Apple Vision Pro (2024)

Attention server administrators: An urgent patch is needed to address a serious remote code execution vulnerability in PHP for Windows. This flaw, known as CVE-2024-4577 and discovered by researchers at DEVCORE, affects all versions since 5.x and presents a significant threat. Attackers can exploit specific character sequences to bypass protections related to CVE-2012-1823. Take action now to secure your systems! #cybersecurity #vulnerabilitypatch #PHPWindows

To all the fathers out there, happy Father's Day from our team! To those who may not have a father figure today, we still wish you a fantastic day filled with joy. In the cybersecurity world, we're like one big family - even the hackers are part of the crew (though they may be the black sheep)! Cheers to all of you on this special day.

How prepared and resistant is your healthcare organization? Cyber resilience involves managing people, processes, and technologies to withstand and adapt to adverse events like cyberattacks, natural disasters, and operational failures. It includes proactive measures to minimize disruptions while maintaining operations and services. To create a robust cyber resilience strategy, healthcare organizations should assess their current recovery and resilience capabilities. IT teams need to identify strengths, weaknesses, and areas for improvement to guide strategic planning. However, organizations shouldn't do this alone. Partnering with trusted experts like Idenhaus Consulting is crucial to validating and supporting cyber resilience initiatives.

1

Chris Van Gorder, CEO of Scripps Health, shared in a recent podcast that healthcare organizations often stay silent about ransomware attacks due to concerns about legal consequences. He emphasized the industry's need for more transparency and cyber protection standards.

2

CISA's influence, reach, and resources in raising awareness of secure by design have made a big difference. It is now much more a part of day-to-day conversations about software and product security, which is an undoubted success.

The SEC recently updated Regulation S-P (the "Data Privacy Amendments"), officially published on June 3, 2024. Covered entities have a deadline to ensure compliance - larger entities have 18 months, and smaller entities have 24 months. Regulation S-P outlines guidelines for handling personal information in the financial industry, requiring broker-dealers, investment companies, and registered investment advisers to implement specific policies to protect client data, securely dispose of consumer reports, and adhere to privacy policy regulations and opt-out rules. Are you ready to meet these new requirements?

1

The Foundation for Defense of Democracies provided critical suggestions for the executive branch, Congress, and the healthcare industry to combat the rising cybersecurity threats targeting the healthcare sector. The latest report emphasizes the importance of implementing third-party managed IT services, especially for provider organizations with limited resources, and improving employee cyber hygiene training. The FDD authors said the federal government should utilize extensive public-private collaboration through HSS to strengthen health providers’ cyber resiliency and protect the health and safety of the people they serve.

In Veeam's recent survey on ransomware trends, 81% of respondents who paid a ransom were only able to recover their data two-thirds of the time. Surprisingly, 15% of participants who didn't pay the ransom retrieved their data using reliable backup solutions. The key lesson here is that investing in better backup solutions and implementing siloing tactics can greatly benefit your company's resilience in a security breach. #cybersecurity #backup #ransomware #datarecovery

Take that, Lockbit! The FBI is offering free decryption keys to victims of the LockBit ransomware group. Bryan Vorndran, FBI Cyber Division assistant director, announced that they have over 7,000 decryption keys from the hackers. Visit http://ic3(dot)gov if you suspect you were a victim. #LockBit #FBI #CyberSecurity