Black Basta Ransomware Group Hits Healthcare, CISA-FBI Issue Alert

Healthcare organizations must beware of the Black Basta ransomware group, which has hit more than 500 businesses and critical infrastructure organizations globally and abused Windows' Quick Assist tool for voice phishing (vishing) attacks. The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI have issued a joint alert detailing Black Basta's tactics, techniques, and procedures and indicators of compromise, along with mitigation recommendations.

A new study from Tenable has found that 95% of organizations surveyed suffered a cloud-related breach over an 18-month period, with 92% of respondents reporting exposure of sensitive data. The study also found that most respondents acknowledged being harmed by the data exposure.

A Cloud Security Alliance (CSA) report has warned that AI systems can create risky gaps in cloud environments and urged organizations to be careful not to inadvertently offer attackers ways to access applications, networks, and data.

CISA extends deadline for commenting on proposed rules for cyber incident reporting for critical infrastructure organizations.

The Center for Internet Security (CIS) has updated its CIS Benchmarks, which include secure-configuration recommendations for Apple iOS 17, Microsoft Azure Kubernetes Service, Cisco ASA 9, and Microsoft 365.

Finally, a new report from Tenable has found that 95% of organizations surveyed suffered a cloud-related breach over an 18-month period, with 92% of respondents reporting exposure of sensitive data. Would you like me to provide you with any other information?