by Kim Singletary | Apr 29, 2026 | Blog
Published April 29, 2026 Anthropic’s Project Glasswing signals a structural shift in vulnerability discovery. AI models are finding and enabling the exploitation of software flaws faster than human teams can respond. Anthropic’s Project Glasswing signals an...
by Kim Singletary | Apr 24, 2026 | Blog
Published April 24, 2026 Microsoft has recently warned of an increase in real‑world cyberattacks abusing Microsoft Teams external chat to impersonate IT helpdesk personnel. In these incidents, attackers pose as trusted internal support staff and persuade users to...
by Lisa Munro | Apr 23, 2026 | Blog
For healthcare leaders trying to read the regulatory tea leaves, the honest answer in spring 2026 is this: the rules are not final, but the expectations haven’t gone away. There’s a particular kind of frustration that healthcare IT and compliance officers...
by Kim Singletary | Apr 15, 2026 | Blog
This post documents a blind time-based SQL injection in the PostCalendar module discoveredin OpenEMR 8.0.0. The SQL Injection is exploitable by an authenticated admin user and illustrates how a single determined attacker with a valid session can move from nuisance to...
by Lisa Munro | Apr 2, 2026 | Blog
For years, healthcare cyber risk was framed around the perimeter. Firewalls. Endpoints. Network defenses. The digital equivalent of locked doors and reinforced windows. That model no longer reflects how healthcare operates. Care now runs across cloud platforms, EHRs,...
by Lisa Munro | Mar 2, 2026 | Blog
A True Story on Implementation Healthcare did not wake up one morning and decide to adopt a new cybersecurity framework. Healthcare got here the way it gets to most operational change, through pressure and accumulation. Ransomware that shuts down clinics, third-party...
