Treasury alerts organizations to risk of ransomware payment sanctions

Oct 07, 2020 - 02:33 PM
Cybersecurity Lock on Gold Wall

Financial institutions and other organizations that facilitate ransomware payments may face sanctions for assisting a malicious cyber actor that the Department of the Treasury’s Office of Foreign Assets Control has sanctioned, according to a recent OFAC advisory. The department encourages victims and others involved with addressing ransomware attacks to contact the office immediately if they believe a request for a ransomware payment may involve a sanctioned person or jurisdiction. The advisory also encourages financial institutions and other companies, such as insurance companies, that engage with victims of ransomware attacks to report such attacks to and fully cooperate with law enforcement, as these will be considered significant mitigating factors to possible OFAC sanctions-related violations.

“Unfortunately, as we have seen by recent major events, there has been a significant increase in successful ransomware attacks, necessitating this advisory,” said John Riggi, AHA’s senior advisor for cybersecurity and risk. “The AHA also discourages any ransomware payment if independent restoration of data and systems is at all possible, because it only serves to fund criminal organizations, incentivize further attacks against health care and does not guarantee the restoration of data. Thorough preparation, including having highly secure and frequently-tested multiple offline backups, is critical to building resiliency against ransomware attacks.”  

For more on hospital and health system cybersecurity and risk issues, contact Riggi at jriggi@aha.org.

Related News Articles

Headline
FDA announces software patch available for Contec, Epsimed patient monitors to address vulnerabilities
The Food and Drug Administration yesterday released a safety notice announcing a software patch is available to address cybersecurity vulnerabilities in…
Headline
Agencies release fact sheet on potential of malicious activity by Iranian cyber actors 
The Cybersecurity and Infrastructure Security Agency, FBI, Department of Defense Cyber Crime Center and the National Security Agency June 30 released a fact…
Headline
CMS warns of phishing fax scheme; AHA monitoring other reported social engineering schemes 
The Centers for Medicare & Medicaid Services today announced it has identified a fraud scheme targeting Medicare providers and suppliers. CMS said scammers…
Headline
Agencies issue advisory on updated tactics by Play ransomware group
The FBI, Cybersecurity and Infrastructure Security Agency and Australian Cyber Security Centre June 4 released an advisory on updated actions and tactics used…
Headline
Agencies release guidance on AI data security 
The National Security Agency, Cybersecurity and Infrastructure Security Agency and international partners May 22 released guidance on securing data used for…
Headline
Russian state-sponsored cyber actors targeting tech companies, others 
The FBI, along with the National Security Agency and other international cybersecurity agencies, this week released a joint agency advisory on cyber operations…