FBI: Phishing campaigns targeting U.S. providers

Apr 21, 2020 - 03:54 PM
cybersecurity

The FBI warned today of specific COVID-19-themed email phishing campaigns targeting U.S.-based medical providers.

The campaigns leverage email subject lines and content related to COVID-19 to distribute malicious attachments, which exploit Microsoft Word document files, 7-Zip compressed files, Microsoft Visual Basic Script, Java, and Microsoft Executables. The FBI alert contains specific indicators of compromise and malware hash signatures, which providers can use to identify and mitigate these threats.

The FBI requests, and AHA strongly encourages, organizations targeted by a phishing campaign to contact their local FBI Cyber Task Force with a copy of the email, the full email header and any attachments. Organizations should not open the attachment unless they are able to examine it in a controlled and safe manner. If an organization is a victim of a cyber-intrusion, they should retain any logs, images of infected devices, and memory capture of all affected equipment, if possible, to assist in the response by the FBI.

For assistance in contacting the FBI or questions on this or other cyber and risk issues, contact John Riggi, AHA senior advisor for cybersecurity and risk, at jriggi@aha.org.

Related News Articles

Headline
FBI Co-deputy Director Andrew Bailey discusses current cyber and physical threats, rise of AI
FBI Co-deputy Director Andrew Bailey discussed a rise in cyber and physical threats impacting health care. He discussed health care as the top critical…
Headline
CMS Administrator Oz and Deputy Administrator Brillman discuss agency’s focus on innovation, reducing waste
Centers for Medicare & Medicaid Services Administrator Mehmet Oz, M.D., and CMS Deputy Administrator and Director of Medicaid and CHIP Dan Brillman sat…
Headline
FBI: Health care was top target for ransomware, other cyberthreats in 2025 
Health care and public health was the top sector targeted for cyberthreats in 2025, according to the FBI’s latest annual report on internet crimes. There were…
Headline
CDC releases report on flu, COVID-19 vaccination coverage for health care workers for 2024-25 respiratory season 
Flu and COVID-19 vaccination rates among all health care workers for the 2024-25 respiratory virus season was 76.3% and 40.2%, respectively, according to a…
Headline
Alerts warn F5 BIG-IP vulnerability being exploited for malicious activity 
The Cybersecurity and Infrastructure Security Agency released an alert March 27 on a vulnerability in F5 BIG-IP Access Policy Manager software that is being…
Headline
Alert warns of cyber actors using Telegram messaging app to push malware 
The FBI released an alert March 20 warning of a technique used by cyber actors working on behalf of the Iranian government to conduct malicious cyber activity…