FBI releases ransomware alert, annual report on internet crime

Mar 26, 2021 - 02:30 PM
FDAcybersecurity

The FBI this week released an alert on Mamba ransomware, which uses an open source encryptions software to encrypt and restrict access to a victim’s entire drive, including the operating system. Once encrypted, the system displays a ransom note instructing victims to contact the actor’s email address to pay the ransom in exchange for the decryption key. The alert includes recommended actions to protect systems from the ransomware threat. 

“The good news is that the Mamba ransomware has a flaw allowing victims to retrieve the decryption key without paying the ransom for about two hours until the ransom note is displayed, an opportunity for organizations to recover and restore their systems,” said John Riggi, AHA senior advisor for cybersecurity and risk.

Also this week, the FBI Internet Crime Complaint Center (IC3) reported a record 791,790 internet crime complaints from the American public in 2020, a 69% increase from 2019. Ransomware incidents continued to rise, with 2,474 incidents reported in 2020. 

“The IC3 annual report continues to document a steady increase in voluntarily reported cyber crimes of all types and across all sectors,” Riggi said. “Notably, phishing email and social engineering-based attacks nearly doubled in 2020 to 241,342. The FBI and I agree that the report may undercount the number of ransomware attacks and their impact. For example, it does not account for the fact that one ransomware attack on a single health system could disrupt health care services for multiple hospitals across multiple states, impacting thousands of patients.” 

FBI Deputy Director Paul Abbate, who oversees all FBI domestic and international investigative and intelligence activities, will discuss issues affecting the health care field, including threats to vaccine distribution and ransomware attacks that could disrupt patient care and jeopardize patient safety, during an AHA all-member call April 1. To register for the call, from 3-4:15 p.m. ET, click here. (Please note the registration page is not compatible with Internet Explorer, so please use another browser to register for the event.)

For more information on this topic or other cyber and risk issues, contact Riggi at jriggi@aha.org.
 

Related News Articles

Headline
Agencies release guidance on hardening network devices in response to cyber espionage campaign by hackers linked to Chinese government
New guidance released yesterday by the Cybersecurity and Infrastructure Security Agency, National Security Agency and FBI informs health care and other…
Headline
Advisory warns of activity by BianLian ransomware group 
A joint advisory released Nov. 20 by the Federal Bureau of Investigation, Cybersecurity and Infrastructure Security Agency and international partners warns of…
Headline
DOJ: Russian national charged with cybercrimes for ransomware attacks on hospitals, other entities 
The Department of Justice Nov. 18 announced criminal charges against Evgenii Ptitsyn, a Russian national, for allegedly administering the sale, distribution…
Headline
UN Security Council meeting discusses impact of ransomware attacks on hospitals 
A United Nations Security Council meeting the week of Nov. 4 discussed ransomware and the severe impacts that cyberattacks can have on hospitals and health…
Headline
AHA's Pollack breaks down role of hospitals in the future of health care on Pinkston podcast 
AHA President and CEO Rick Pollack was recently a guest on Pinkston's "To the Point" podcast to discuss the future of U.S. health care, touching on a range of…
Headline
Agencies provide cyberthreat updates and resources leading up to election 
The Cybersecurity and Infrastructure Security Agency, FBI and other federal agencies have created a webpage with the latest cyberthreat updates and information…