Entries by Dirk Schrader

The „Good“, the „Bad“, and the “Ugly” – the amount of confidential patient data accessible on the internet is still rising

60 days later, the overall status of unprotected PACS system around the globe isn’t getting better. The situation is the US seems to be an unstoppable information security and data privacy desaster. 1.19 billion images That is the number of images associated with all the unprotected medical studies we found in our review of the […]

Confidential patient data accessible on the internet – a massive global data leak waiting to happen

Medical systems and processes in the healthcare sector are becoming increasingly digital. Medical providers and hospitals – like all other industries – are using internet technologies to speed up and improve the quality of the patient care they provide. Our new analysis of medical image archiving systems being used across the globe shows that this […]

Are cyber weapons worth it?

Are cyber weapons worth it? A look at the economics of hacking back On 12 May 2017, WannaCry was released into the wild and an epic story began to unfold. Spawned from a cyber weapon that had been lost by a government agency, WannaCry was a major wake up call for industries around the globe, […]

Dates fixed for new Greenbone OS releases

New OS versions to be released on April 30th and October 31st every year In 2019, we will be switching to a new release scheme for updated versions of the Greenbone OS – the Greenbone Security Manager (GSM) operating system – with fixed release dates every year, giving our customers, partners, and the Greenbone development […]

Serious vulnerability discovered in D-Link routers

Serious vulnerability discovered in D-Link routers UPDATE: patch available for users on D-Link support pages In November 2018, Greenbone discovered a serious security vulnerability in D-Link routers and drew the company’s attention to it. The vulnerability is easy for hackers to exploit and allows unauthorised access to networks. There is now a patch available from […]

EU directive: Cyber-resilience of critical national infrastructure now fundamental to UK security and excellence

The EU directive on the security of Network and Information Systems (NIS) was approved in August 2016, giving member states 21 months to embed the directive into their respective national laws. The directive became UK law in May this year and all organizations deemed ‘Operators of Essential Services’ (OES) must have complied and will do so […]

,

US Cloud Act endangers IT Security

In March of this year, the US Congress passed the so-called Cloud Act. This allows US authorities worldwide access to data from US companies – even if their servers are located in the EU. For this reason, the IT Security of companies who store data with US providers is at stake. The so-called “Cloud Act” […]