Agencies issue cyber advisory on best practices for network defense

Apr 28, 2021 - 01:19 PM
FDAcybersecurity

The FBI and Department of Homeland Security today released recommendations to help organizations secure their networks from ongoing cyber threats from the Russian Foreign Intelligence Service, which recently exploited software updates to the widely used SolarWinds information technology performance-monitoring platform.

“This joint advisory provides analysis of the tactics, techniques and procedures of the adversary and details specific steps to help identify corrupted software updates,” said John Riggi, AHA senior advisor for cybersecurity and risk. “Corrupted updates from ‘trusted’ sources are extremely difficult to defend against, but implementing some of the advisory’s recommendations, such as auditing log files to identify attempts to access privileged certificates and creation of fake identities, will help mitigate the threat.” 

For more on the SolarWinds breach, see the recent AHA and Health Information Sharing and Analysis Center (Health-ISAC) white paper or contact Riggi at jriggi@aha.org.
 

Related News Articles

AHA Cyber Intel
3 Must-Know Cyber and Risk Realities: What’s Ahead for Health Care in 2025
While the rate of cyberattacks on hospitals has risen dramatically, the severity of the impacts has also grown exponentially. Let’s look at the state of cyber…
Headline
House subcommittee holds hearing on cybersecurity vulnerabilities in legacy medical devices
The House Energy and Commerce Oversight and Investigations Subcommittee April 1 discussed cybersecurity threats in legacy medical devices during a hearing. The…
Headline
Administration extends national emergency for cyber threats
The Trump Administration March 28 announced that it renewed for one year the public emergency for ongoing malicious cyber-enabled activities against the U.S.…
Headline
FBI says no specific, credible threat targeting U.S. hospitals
The FBI March 26 advised that, after extensive investigation and intelligence review, they have not identified any specific credible threat targeted against…
Headline
Cyberthreat actors using ChatGPT exploit to attack health care, other industries
A ChatGPT vulnerability identified last year is being used by cyberthreat actors to attack security flaws in artificial intelligence systems, according to a…
Headline
U.S. Attorney’s Office announces charges for LockBit ransomware developer
The U.S. Attorney’s Office for the District of New Jersey March 13 announced charges for Rostislav Panev, a dual Russian and Israeli national, for his alleged…