HHS Issues Update on SamSam Ransomware Campaigns

The Department of Health and Human Services’ Healthcare Cybersecurity Integration and Communications Center recently released an update on ongoing cyberattacks on health care and government organizations using a form of ransomware known as SamSam. According to the report, at least eight separate attacks using the SamSam ransomware have occurred this year, including two involving Indiana-based hospitals, one involving a cloud-based electronic health record provider and another involving the city of Atlanta. The report includes recommendations for preventing and handling incidents and ensuring business and health care continuity in the face of potential disruptions. The SamSam malware has been active since at least 2016, largely in hospitals and the health care and public health sector.