Digital Podcast

Stanford Chief Digital Officer Resigns over Breach Coverup, House Energy and Commerce Commission Seeks to Improve Medical Device Security, and SambaCry Attack Encrypts NAS


Join Now to Share


InfoSec ICU show

Summary: If you discover an internal data breach do you, a. Report it to the affected Individuals, or b. Fix it quickly and say nothing? One official at Stanford University chose poorly. The U.S. House Energy and Commerce Commission asked some great questions of Health and Human Services (HHS), including requiring medical device managers to report a Bill of Materials (BoM) for all software components in their medical devices. Also, following on the heels of WannaCry was a Linux version called SambaCry, which has now been weaponized as a ransomware delivery mechanism. So get your Linux and NAS devices patched and amp up the monitoring. Gerry and Steve talk about all these topics plus their One Cool Things in this week’s episode.<br> <a href="https://podcast.musc.edu/podcast/infosec/e02-infosecicu/" target="_blank" rel="noopener">Show Notes</a><br> <br> Resources:<br> Stanford CDO Resigns for Data Breach handling:<br> <a href="https://www.sfgate.com/education/article/Stanford-University-executive-leaves-job-after-12407976.php" target="_blank" rel="noopener">https://www.sfgate.com/education/article/Stanford-University-executive-leaves-job-after-12407976.php</a><br> House Energy and Commerce Committee wants Bill of Materials for medical device manufacturers:<br> <a href="https://www.scmagazine.com/house-committee-asks-hhs-to-boost-cybersecurity-by-requiring-component-list-for-medical-devices/article/708139/" target="_blank" rel="noopener">https://www.scmagazine.com/house-committee-asks-hhs-to-boost-cybersecurity-by-requiring-component-list-for-medical-devices/article/708139/</a><br> SambaCry and the new StorageCrypt ransomware attack:<br> <a href="https://www.bleepingcomputer.com/news/security/storagecrypt-ransomware-infecting-nas-devices-using-sambacry/" target="_blank" rel="noopener">https://www.bleepingcomputer.com/news/security/storagecrypt-ransomware-infecting-nas-devices-using-sambacry/</a><br> <a href="https://f5.com/labs/articles/threat-intelligence/cyber-security/sambacry-the-linux-sequel-to-wannacry" target="_blank" rel="noopener">https://f5.com/labs/articles/threat-intelligence/cyber-security/sambacry-the-linux-sequel-to-wannacry</a><br> Emotion Analytics:<br> <a href="http://searchhrsoftware.techtarget.com/feature/Emotion-analytics-may-expose-your-true-feelings-to-HR" target="_blank" rel="noopener">http://searchhrsoftware.techtarget.com/feature/Emotion-analytics-may-expose-your-true-feelings-to-HR</a><br> What Every Body is Saying by Joe Navarro:<br> <a href="https://www.goodreads.com/book/show/1173576.What_Every_Body_is_Saying" target="_blank" rel="noopener">https://www.goodreads.com/book/show/1173576.What_Every_Body_is_Saying</a><br> MoviePass<br> <a href="https://www.moviepass.com/" target="_blank" rel="noopener">https://www.moviepass.com/</a><br>  <br> Disclaimer: Please note the views and opinions of the hosts are their own and not necessarily those of the Medical University of South Carolina.<br>