Agencies: Take steps to protect against latest CLOP ransomware tactics

Jun 09, 2023 - 02:57 PM
cybersecurity-hand-lock-graphic_900x400

The FBI and Cybersecurity & Infrastructure Security Agency this week advised all organizations to implement certain recommendations to defend their networks from the latest tactics by the CLOP ransomware gang, which include using a SQL injection vulnerability in Progress Software's managed file transfer solution to steal data.  
  
“The CLOP ransomware group poses an advanced threat that is highly proficient in identifying and exploiting previously unknown vulnerabilities in secure file transfer systems,” said John Riggi, AHA’s national advisor for cybersecurity and risk. “They have penetrated thousands of organizations worldwide, including health care, to steal sensitive data and execute high impact ransomware attacks through their tactics. It is highly recommended that organizations identify such file transfer system applications, apply known patches, limit access for essential use and encrypt sensitive data in transit regardless of which file transfer system you use.” 
  
For more information on this or other cyber and risk issues, contact Riggi at jriggi@aha.org. For the latest cyber and risk resources and threat intelligence, visit aha.org/cybersecurity.

Related News Articles

Headline
Cyberthreat actors using ChatGPT exploit to attack health care, other industries
A ChatGPT vulnerability identified last year is being used by cyberthreat actors to attack security flaws in artificial intelligence systems, according to a…
Headline
U.S. Attorney’s Office announces charges for LockBit ransomware developer
The U.S. Attorney’s Office for the District of New Jersey March 13 announced charges for Rostislav Panev, a dual Russian and Israeli national, for his alleged…
Headline
Advisory warns of Medusa ransomware activity 
A joint advisory released March 12 by the FBI, Cybersecurity and Infrastructure Security Agency, and the Multi-State Information Sharing and Analysis Center…
Headline
AHA podcast: Critical Condition — Cybersecurity in Rural Hospitals with Microsoft, Part 2
John Riggi, AHA national advisor for cybersecurity and risk, and Justin Spelhaug, corporate vice president and global head of Tech for Social Impact at…
Headline
AHA podcast: Critical Condition — Cybersecurity in Rural Hospitals with Microsoft, Part 1
John Riggi, AHA national advisor for cybersecurity and risk, and Justin Spelhaug, corporate vice president and global head of Tech for Social Impact at…
Headline
Silk Typhoon cyberthreat group targets IT supply chain
A Microsoft report published March 5 identified recent tactics by Silk Typhoon, a Chinese state-sponsored cyberthreat group known for extensive espionage…