The FBI and Department of Homeland Security today released recommendations to help organizations secure their networks from ongoing cyber threats from the Russian Foreign Intelligence Service, which recently exploited software updates to the widely used SolarWinds information technology performance-monitoring platform.

“This joint advisory provides analysis of the tactics, techniques and procedures of the adversary and details specific steps to help identify corrupted software updates,” said John Riggi, AHA senior advisor for cybersecurity and risk. “Corrupted updates from ‘trusted’ sources are extremely difficult to defend against, but implementing some of the advisory’s recommendations, such as auditing log files to identify attempts to access privileged certificates and creation of fake identities, will help mitigate the threat.” 

For more on the SolarWinds breach, see the recent AHA and Health Information Sharing and Analysis Center (Health-ISAC) white paper or contact Riggi at jriggi@aha.org.
 

Related News Articles

Headline
The Healthcare and Public Health Sector Coordinating Council, whose members include the AHA, yesterday urged President Biden to include support for health care…
Headline
The White House today released a memo from Anne Neuberger, Deputy Assistant to President Biden, and Deputy National Security Advisor for Cyber and…
Headline
The FBI and Cybersecurity and Infrastructure Security Agency May 28 issued a joint cyber advisory in response to a sophisticated spearphishing campaign…
Headline
The Microsoft Threat Intelligence Center has uncovered a wide-scale malicious email campaign by a group it associates with the 2020 compromise of the…
Perspective
The threat to public health from the pandemic is thankfully subsiding. Unfortunately, a very different threat is on the rise: Cyber criminals have been ramping…
Headline
Cyber actors continue to exploit vulnerabilities in the operating system for the Fortinet network security system, the FBI warned today, noting that a…