HC3 Alert TLP Clear: Cuba Ransomeware Alert - December 2, 2022

Executive Summary

The FBI and CISA have released a joint security advisory to disseminate known Indicators of Compromise (IOC) and Tactics, Techniques, and Procedures (TTPs) that have been associated with the Cuba Ransomware actor. The new advisory is an update to the December 2021 FBI Flash: Indicators of Compromise Associated with Cuba Ransomware. Over the past year, the group has doubled the number of American victims, infecting at least 65 organizations in critical infrastructures. Due to the nature of the threat actors targets, they pose a threat to the Healthcare and Public Healthcare (HPH) sectors.

View the detailed report below. 

For help with Cybersecurity and Risk Advisory Services exclusively for AHA members, contact:

John Riggi

National Advisor for Cybersecurity and Risk, AHA


(O) +1 202 626 2272