Agencies alert private sector to ransomware threat

Jun 30, 2022 - 03:45 PM
cybersecurity-hand-lock-graphic_900x400

The FBI, Cybersecurity and Infrastructure Security Agency, Department of the Treasury, and Financial Crimes Enforcement Network today urged organizations to take certain actions to protect their networks from MedusaLocker ransomware, which uses vulnerabilities in the Remote Desktop Protocol to access victims’ networks and encrypt their data.

John Riggi, AHA’s National Advisor for Cybersecurity and Risk, said, “This joint agency advisory contains very detailed and actionable indictors of compromise. The advisory also highlights the danger of unsecured remote desktop protocol and phishing emails as the initial attack vector. The ‘ransomware as a service’ business model used by the MedusaLocker gang facilitates the continuing global proliferation of ransomware — even by relatively unsophisticated cyber actors. It is strongly recommended that organizations continue to emphasize phishing email education for staff, exercise cyber incident response plans, and ensure the segregation and security of network and data backups, among the many helpful risk mitigation recommendations contained in the advisory.” 

For more information on this or other cybersecurity and risk topics, contact Riggi at jriggi@aha.org.

Related News Articles

Headline
Resources available to help detect malicious AI schemes
The FBI has public resources available to help prevent exploitation by cybercriminals, who use artificial intelligence for deception. An infographic by the FBI…
Headline
NIST says critical vulnerability found in 7-Zip archiving software
A critical vulnerability has been identified in 7-Zip, a free software program used for archiving data, according to the National Institute of Standards and…
Headline
Agencies release guide to protect against bulletproof hosting provider cybercrimes 
U.S. and international agencies Nov. 19 released a guide on mitigating potential cybercrimes from bulletproof hosting providers. A BPH provider is an internet…
Headline
Agencies release updated guidance to combat Akira ransomware following recent attacks
A joint advisory issued yesterday by U.S. and international agencies provides updated guidance to defend against the Akira ransomware group, which…
Headline
Agencies release guidance on Microsoft Exchange server best practices
The National Security Agency, Cybersecurity and Infrastructure Security Agency and international partners released joint guidance Oct. 30 on best practices for…
Headline
Microsoft issues security update addressing critical vulnerability impacting Windows server services 
Microsoft has released a security update to address a critical remote code execution vulnerability impacting multiple versions of Windows Server Update…