Security news aggregator

Latest coverage for Critical Infrastructure

Critical infrastructure depends on interconnected operational systems, where cyber incidents can disrupt essential services, safety, and availability.

10 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Critical infrastructure includes systems and assets vital for public health, safety, and economic stability, such as power grids, water treatment, transportation networks, and healthcare facilities. These systems often combine physical components with industrial control systems (ICS) and operational technology (OT) that manage essential services in real time.

From an information-security perspective, critical infrastructure faces risks like unauthorized access to control systems, disruption of service availability, and manipulation of sensor data. Defending these assets requires specialized security measures tailored to ICS environments, including network segmentation, strict access controls, and continuous monitoring for anomalies. Ensuring resilience also involves coordinated efforts between operators and government agencies to address vulnerabilities unique to legacy systems and proprietary protocols.

Showing 10 most recent headlines Filtered view
Bank Info Security 2 years, 2 months ago

Microsoft Releases New-Open Source Tool for OT Security

ICSpector Is Now on GitHub, Scans PLCs, Extracts Info and Detects Malicious CodeMicrosoft has released a new open-source security tool to close gaps in threat analysis for industrial control systems and help address increased nation-state attacks on critical infrastructure. ICSpector, available on GitHub, can scan PLCs, extract information and detect malicious code.

Bank Info Security 2 years, 2 months ago

Tech Titans, AI Leaders Join New Federal AI Security Board

Heads of OpenAI, Microsoft, Alphabet Join Inaugural AI Safety and Security BoardThe heads of technology giants Alphabet and Microsoft and leading artificial intelligence firm OpenAI are joining a federal AI safety and security board aimed at securing U.S. critical infrastructure against emerging AI risks, the Department of Homeland Security announced Friday.

Bank Info Security 2 years, 2 months ago

State AGs, Industry Groups Urge Action in Change Health Saga

Calls for More Aid to Providers Come as Parent Company UHG Grapples With BreachTwenty-two state attorneys general and some industry groups are urging Change Healthcare's parent company and regulators to be transparent and give more financial aid to providers as the firm recovers from a highly disruptive cyberattack and the industry braces for massive breach notifications.

Bank Info Security 2 years, 2 months ago

Kaiser Permanente Notifying 13.4 Million of Tracker Breach

Incident Involves Health Plans' Prior Use of Online Tech in Websites, Mobile AppsKaiser Foundation Health Plan has reported to regulators a health data breach affecting 13.4 million people stemming from the previous use of web trackers. Aside from reports expected from the Change Healthcare mega hack, the incident is the largest health data breach reported so far in 2024.

Bank Info Security 2 years, 2 months ago

Change Health Attack: Details Emerge; Breach Will Top Record

Experts Advise Health Sector to Take Steps as UnitedHealth Group Cleans Up MessUnitedHealth Group's admission that information for "a substantial portion" of the American population was compromised in its Change Healthcare cyberattack sets into motion the likelihood the incident will become the largest health data breach ever reported in U.S. What other details are emerging?

Bank Info Security 2 years, 2 months ago

Russian Hackers Exploiting Windows Print Spooler Vuln

Microsoft Warns APT28's GooseEgg Tool Enables Credential TheftRussian military intelligence hackers are using an 18 month-old vulnerability in the Windows print spooler utility to deploy a custom tool that elevates privileges and steals credentials. Microsoft says it's seen post-compromise activities against Ukrainian, European and North American governments.

Bank Info Security 2 years, 2 months ago

UnitedHealth Group Previews Massive Change Healthcare Breach

Breach 'Could Cover a Substantial Proportion of People in America,' Company WarnsHackers who hit Change Healthcare stole sensitive personal and medical details that "could cover a substantial proportion of people in America," parent company UnitedHealth Group warned. The company faces mounting regulatory scrutiny and lawsuits due widespread disruptions caused by the attack.

Bank Info Security 2 years, 2 months ago

Feds Issue Guide for Change Health Breach Reporting Duties

HHS OCR Says the Company Has Not Yet Filed HIPAA Breach Reports to the AgencyThe Department of Health and Human Services has not yet received HIPAA breach reports from Change Healthcare or parent company UnitedHealth Group about their massive cyberattack. HHS is telling HIPAA-covered firms and their vendors to do their duty if a breach affects protected health information.

Bank Info Security 2 years, 2 months ago

HHS Beefs Up Privacy Protection for Reproductive Health Info

Finalizes HIPAA Privacy Rule Changes Involving PHI Related to Reproductive CareHealthcare providers are prohibited from disclosing protected health information related to lawful reproductive healthcare, according to a final rule released Monday by federal regulators. The new HIPAA rule is designed to protect women who cross state lines seeking an abortion, and their providers.

Bank Info Security 2 years, 2 months ago

7 Tips for Complying With Healthcare Fraud Regulations

Attorney Rachel Rose on Navigating the Intensifying Scrutiny of Federal RegulatorsThe federal government is cracking down on healthcare fraud in all forms including kickbacks, lapses in cybersecurity and privacy, lack of fairness in Medicare Advantage policies, and inflated pharmacy claims. Regulatory attorney Rachel Rose outlines seven key tips for meeting compliance mandates.