Tag Archive for: business

Xerox Business Solutions targeted by INC Ransom ransomware gang

/in


Xerox Holdings Corp. subsidiary Xerox Business Solutions has suffered from a data breach following a ransomware attack.

The attack first came to light on Dec. 29 when the INC Ransom ransomware gang added Xerox Business Solutions to its dark web leaks site. According to Bleeping Computer, the gang claimed to have stolen sensitive data and confidential documents from XBS systems.

Xerox has confirmed the attack, saying in a statement that it experienced a “security incident” that was detected and contained by company cybersecurity personnel. The attack was limited to XBS U.S. and Xerox is working with outside cybersecurity experts to undertake a thorough investigation and take steps to secure the company’s information technology environment.

According to the compamy, the attack had no impact on its corporate systems, operations or data. However, Xerox does confirm that “limited personal information” may have been affected. Those affected will be informed as required.

INC Ransom first emerged on the scene in July of last year and positioned itself as providing a service to their victims. As detailed by SentinelOne Inc., INC Ransom victims are told to pay the ransom demanded to “save their reputation” as the threat actors indicate their intention to reveal their methods, making the victim’s environment “more secure” as a result.

The gang is known to have targeted multiple industries with little or no discrimination, with attacks across healthcare, education and government entities. Previous INC Ransom victims include BPG Building Partners Group GmbH, DM Civil LLC, Ingo Money Inc., Nicole Miller Inc., Pro Metals LLC, Springfield Area Chamber of Commerce and Trylon Corp.

Although ransomware attacks have been a proverbial dime a dozen, where this story takes a twist is that there is some suggestion that Xerox may be in discussions to pay the ransom being demanded.

“While it remains unclear whether Xerox is in negotiations with INC Ransom, the removal of their leaked documents implies ongoing discussion may be taking place,” Darren Williams, founder and chief executive of ransomware prevention company BlackFog Inc., told SiliconANGLE. “Given that data…

Source…

Business Associate Victim of Ransomware Attack Pays $100,000 to HHS OCR | Brooks Pierce

/in


Is your organization a business associate? You could be subject to enforcement action if you fail to protect health information within your control from ransomware attacks.  

In October, for the first time, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) reached a settlement agreement with a Health Insurance Portability and Accountability Act (HIPAA) business associate that was the victim of a ransomware attack. The business associate paid $100,000 to resolve allegations that it had failed to sufficiently protect the privacy and security of health information within its control.

Doctors’ Management Services (DMS), a medical practice management company that provides services such as medical billing and payor credentialing, acts as a business associate to several covered entities. On April 22, 2019, DMS informed HHS that DMS’s network server had been infected with GandCrab ransomware, affecting the electronic protected health information (e-PHI) of approximately 200,000 individuals. Although the initial intrusion occurred on April 1, 2017, DMS apparently did not detect the intrusion until December of the following year, when the ransomware was used to encrypt DMS’s files.

OCR’s investigation found evidence that DMS had failed to appropriately monitor its health information systems’ activity (for example, through audit logs, access reports and security incident tracking reports) and had failed to implement reasonable and appropriate policies and procedures to comply with the HIPAA Security Rule.

Under the settlement agreement, DMS agreed to pay $100,000 and to submit to a Corrective Action Plan under which DMS must update its Risk Analysis regarding the potential risks to the confidentiality, integrity and availability of e-PHI held by DMS, and provide documentation supporting a review of its current security measures and the level of risk to its e-PHI associated with network segmentation, network infrastructure, vulnerability scanning, logging and alerts and patch management. DMS must also provide workforce HIPAA training (among other things). OCR will monitor DMS for three years to ensure compliance.

In a press release

Source…

Kyndryl Introduces Experience Management as a Service to Help Customers Monitor, Measure and Achieve Business Outcomes IT Voice

/in








Kyndryl Introduces Experience Management as a Service to Help Customers Monitor, Measure and Achieve Business Outcomes IT Voice | IT in Depth

















































Go toTop









Source…

Comcast Business Releases 2023 Small Business Cybersecurity Report

/in


Comcast Business SecurityEdge™ blocked over 1.1 billion malware attacks, countered 1.1 billion bot attacks, and thwarted 395 million phishing attempts during the second quarter of 2023

PHILADELPHIA–(BUSINESS WIRE)–
Comcast Business has released findings from its 2023 Comcast Business l Small Business Cybersecurity Report. The report found that small businesses were under frequent threat from cyber-attacks from July 2022 to June 2023, with daily malware activity roughly doubling year-over-year and peaks in both holiday seasons.

“As small businesses embrace remote and hybrid work policies, relying on off-network and mobile devices for access to applications and data, they become more appealing targets for cybercriminals,” said Shena Seneca Tharnish, Vice President of Secure Networking and Cybersecurity Solutions at Comcast Business. “In the past year, SecurityEdge™ has successfully thwarted billions of threats, helping to protect tens of thousands of small businesses.”

The widespread use of internet-connected devices has given rise to a substantial surge in threat actors targeting small and medium-sized businesses (SMBs), with malware, phishing, and botnets being the most common threats. Additionally, there is a concerning lack of security measures in place for mobile devices, as Comcast Business found that nearly 1 in 10 devices, on average, attempted to connect to domains associated with malware, phishing, or malicious bot activity.

“In our current digital age, the importance of safeguarding devices and data, regardless of their location, cannot be overstated. It’s critical for organizations of all sizes to stay secure in order to maintain trust from employees, customers, and other stakeholders,” said Jonathan Morgan, Vice President of Network Security Product Management at Akamai. “With Comcast Business’s SecurityEdge, customers can rest assured that they have the right tools and support in place to help protect their connected devices. We’re proud to be a key component in that solution with our Secure Internet Access services that protect businesses and families across the globe.”

The second annual Comcast Business Small Business…

Source…