CyberGuide

AI technology has evolved a lot in the different applications and uses that we can offer. One of these cases is the company based Document Classification Firm Concentric Emerges From Stealth, they have developed an AI-based system which manages the semantic language to protect documents. Most critics of the company showing such detail as, for example, the number of documents that each employee has, the number of times that the employee has shared both high and low risk documents. With this technology, companies can obtain greater control of their information creating safer environments.

This directly affects the reduction in costs for this type of process, since it would take a long time to organize a team of people to do it and would be exposed to many errors. Another application of AI technology is the alliance between Novartis and Microsoft for the discovery of new drugs, alliances like these will help us prevent and treat existing diseases and new diseases to lengthen people’s lives, but there are several challenges in the processes. For example, there are typographical errors that when analyzing the information we will eventually find errors in the results of the AI. There is still a lot to work on in this field, but this is a huge step.

Another major alliance The University of Maryland, Baltimore and UM Baltimore County for Medical Data recently signed an agreement to leverage UMBC’s AI, machine learning, and cybersecurity experience to protect medical devices and data from cyberattacks. Security leaders have long stressed that the healthcare sector should read on outside resources and collaborate to fill cybersecurity gaps.

This article is very interesting, Nimbus-Key system could be the solution for their problem (Jose Bolanos MD). The Defense Department has been trying to kill the Common Access Card for a long time. Before it does so, it wants to make it more like a commonly used authentication measure: the Personal Identity Verification (PIV) card. Former DOD CIO Terry Halvorsen announced a two-year plan in June 2016 to move away from the CAC. The CAC is a “smart” card about the size of a credit card, and is the standard identification issued to active duty uniformed service personnel, selected reserve, DOD civilian employees and eligible contractors. It is also the principal card used to grant physical access to buildings and controlled spaces, and it gives users access to DOD computer networks and systems.

Last year, the DOD tested alternatives to the CAC. DOD is exploring other ways to improve the CAC, including something known as the opacity, which, Federal News Radio reports, “is protocol to protect contactless communication between the card and the system, and adding encrypted certificates that will let users do tap-and-go authentication.” This is crucial for first responders and others who need quick access to systems or facilities, and the impact on authentication goes beyond government in the private sphere. An increasingly diverse, dynamic workforce is driving dramatic change in how users authenticate.

There are not only more users, but also more kinds of users working in more places, all needing to authenticate in a way that keeps resources secure without making access unduly difficult or time-consuming. What about contractors or gig workers who aren’t traditional employees? How do you provide them with the access they require, absent direct control of the devices they’re using to access your organization’s resources?

We all need to remember the critical nature of information that exists on people’s devices, including laptops, and the need to protect that information. Cyber security experts have recommended augmenting usernames and passwords with multi-factor authentication (MFA) to add an additional layer of security for access control. Smart Cards can also be used for authentication and provide a level of assurance once validated and verified.

Cybersecurity is a constant risk in different systems. Hackers Scanning for Apache Tomcat Servers Vulnerable to Ghostcat Attacks. Hackers have started scanning the web in search of Apache Tomcat servers affected by a recently disclosed vulnerability tracked as CVE-2020-1938 and dubbed Ghostcat. Ghostcat affects Tomcat’s default settings, and many servers are vulnerable to attacks directly from the Internet. ONYPHE reported in late February that a scan had identified more than 170,000 potentially vulnerable devices.

This leads us to think if we are really safe in the network, hackers invent new and sophisticated ways to violate our systems every day, such as the case of T-Mobile Notifying Customers of Data Breach. The company notified its users that the accounts of their employees’ emails were violated and with them the massive theft of hundreds of customer accounts including names, addresses, telephone numbers, rate plans and features, and billing information.

Likewise Mobile Payment Fraud is on the Rise and is growing faster in the mobile ecosystem than anywhere else. While Windows remains the most popular operating system used by fraudsters at 38%, the combined figures for iOS and Android are now 51% of all online fraudulent activity. The growth is probably even greater since little more than half of merchants track fraud on mobile channels.

Just as the targets have evolved with the emergence of mobile as the fraud platform of choice, so too have the payment types evolved. The more apparently obvious types – gift cards and credit cards – occupy only positions six and seven in the most popular methods. And hackers show us more of their crime skills: ‘Surfing attacks’ could let hackers read your texts and it’s not a game. Recently investigators found that ultrasonic waves can activate Siri on your cellphone and have it make calls, take images, or read the contents of a text to a stranger.

The researchers suggested some defense mechanisms that could protect against such an attack. One idea would be the development of phone software that analyzes the received signal to discriminate between ultrasonic waves and genuine human voices. Changing the layout of mobile phones, such as the placement of the microphone, to dampen or suppress ultrasound waves could also stop a surfing attack.

With more sophisticated tools, scientists hope to launch a new tool that can monitor influenza A virus mutations in real time. The tool could help virologists learn how to stop viruses from replicating. The gold nanoparticle-based probe measures viral RNA in live influenza A cells. It is the first time in virology that experts have used imaging tools with gold nanoparticles to monitor mutations in influenza, with unparalleled sensitivity.

In other news of innovation in health, the researchers report that a flexible device can collect thermal energy from the human body to control health. The device surpasses all other flexible harvesters that use body heat as their sole energy source. Flexible harvesters that conform to the human body are highly desired for use with wearable technologies. Superior skin contact with flexible devices, as well as the ergonomic and comfort considerations to the device wearer are the core reasons behind building flexible thermoelectric generators, or TEGs.

Technology gives us more help every day to control our health. Liquid Metal Biosensors for Healthcare Monitoring now allow researchers at KAIST to use a liquid metal to make highly accurate flexible pressure sensors that can be manufactured relatively inexpensively.

“We expect it to be used in health care applications, such as the prevention and the monitoring of the pressure-driven diseases such as pressure ulcers in the near future. There will be more opportunities for future research including a whole-body pressure monitoring system related to other physical parameters.”

Identity management is a very important tool to manage platforms, access our information, but it is not always used in the most ethical way and the risk that they use it to access our privacy is a risk. Activists believe the FBI is currently collecting biometric data on people’s faces, irises, walking patterns, and voices, and has a database of at least 640 million images of adults in the United States.

They are not taking into account that in the biometric process they may have Massive Errors Found in Facial Recognition Tech, putting at risk the safety of innocent people and judging them unfairly. Senate Bill Maintains Funding Ban on Unique Patient Identifier due to the fear that there is no adequate security of patient information.

But good use of identity management technology not only helps us control but also prevents it. Universal background checks really reduce gun deaths. Controlling who has access to guns has much more impact on reducing gun-related homicides than controlling what guns people have, researchers report.

Overall, we tend to think of cybersecurity as just that: security. It protects us from digital threats and malicious actors. Yet we also tend to think of it as a giant fence; it surrounds our IT environment where all the important business processes occur. How Identity Security Improves Your Business Processes. As enterprises migrate to cloud and hybrid environments, identity security becomes critical to keep communication, collaboration and productivity safe.

A new JavaScript skimmer targets data entered into the payment forms of ecommerce merchant websites, Visa Payment Fraud Disruption (PFD) warns. Dubbed Pipka, the skimmer was discovered on an ecommerce website previously infected with the JavaScript skimmer known as Inter, but it has infected at least sixteen other merchant websites as well.

The skimmer shows a focus on anti-forensics, by calling a function that clears the skimmer’s script tag from the page immediately after the script loads, thus making it difficult for analysts or website administrators to notice the code. Identity fraud hit a new all-time high and cyber-enabled fraud accounted for an even greater proportion of the growing problem, according to the 2019 Fraudscape report.

There are two major phases of combating identity theft: prevention and recovery. The first phase can minimize exposure; the second can help minimize the pain in terms of time and money remediating any problem that results, despite prevention efforts.

Preventing Identity Theft is about safeguarding personal and business information: protecting Social Security numbers, limiting disclosure of personal information, using smart passwords, and for businesses defining prudent company policy regarding access to sensitive information.

Virtual tools have advanced enormously in recent years and one of them is revolutionizing the world: telehealth. An example is Intermountain Healthcare launching a new Kidney Care Center that will provide at-home dialysis with telehealth-enabled video visits to patients. Patients will be able to schedule kidney dialysis treatments that fit their schedule.

Many patients today greatly appreciate telehealth tools. Video visits might one day replace many in-person checkups. Rehabilitation by video telehealth reduced the rates that patients with chronic obstructive pulmonary disease (COPD) had to be readmitted within 30 days after hospitalization, according to a study: “The video telehealth pulmonary rehabilitation program…”.

By reducing COPD readmissions, this intervention has the potential to substantially reduce healthcare costs. Apart from COPD, the intervention approach can also be applied to the rehabilitation of patients with other chronic lung diseases — with telehealth playing a key role in access and continuity of care.

Ransomware is a malicious software program that infects your computer and displays messages that require payment of money to restore system operation. This type of malware is a criminal system for making money that can be installed through deceptive links included in an email message, instant message or website.

This was the case in the U.S. Natural Gas Facilities Disrupted by Ransomware Attack. A ransomware infection at a natural gas compression facility in the United States resulted in a two-day operational shutdown of a full pipeline asset. The attackers used spear phishing to gain initial access, then reached the OT network and encrypted files on Windows machines.

Cybercriminals constantly innovate. One of the new methodologies for instigating ransomware makes use of Windows’ own Encrypting File System (EFS), selectively encrypting files and folders using native features.

Another notable incident: New Jersey’s largest hospital system reported a ransomware attack that disrupted its computer network and forced hospitals to reschedule nonemergency surgeries. Doctors and nurses had to deliver care without access to electronic records, showing how ransomware directly impacts patient safety and operations.