Agencies: Take steps to protect against latest CLOP ransomware tactics

Jun 09, 2023 - 02:57 PM
cybersecurity-hand-lock-graphic_900x400

The FBI and Cybersecurity & Infrastructure Security Agency this week advised all organizations to implement certain recommendations to defend their networks from the latest tactics by the CLOP ransomware gang, which include using a SQL injection vulnerability in Progress Software's managed file transfer solution to steal data.  
  
“The CLOP ransomware group poses an advanced threat that is highly proficient in identifying and exploiting previously unknown vulnerabilities in secure file transfer systems,” said John Riggi, AHA’s national advisor for cybersecurity and risk. “They have penetrated thousands of organizations worldwide, including health care, to steal sensitive data and execute high impact ransomware attacks through their tactics. It is highly recommended that organizations identify such file transfer system applications, apply known patches, limit access for essential use and encrypt sensitive data in transit regardless of which file transfer system you use.” 
  
For more information on this or other cyber and risk issues, contact Riggi at jriggi@aha.org. For the latest cyber and risk resources and threat intelligence, visit aha.org/cybersecurity.

Related News Articles

Headline
Advisory alerts field to phishing emails containing malicious QR codes
The Health Information Sharing and Analysis Center (H-ISAC) Sept. 19 alerted the health sector to an emerging threat that targets senior executives through…
Headline
HHS alerts health sector to critical cyber vulnerability 
The Department of Health and Human Services Sept. 18 alerted the health care sector to a critical vulnerability in ManageEngine products that allows an…
Headline
Agencies alert organizations to ransomware, fake media threats
The Department of Health and Human Services’ Health Sector Cybersecurity Coordination Center (HC3) yesterday alerted the sector to a ransomware group that…
Headline
U.S. sanctions cyber gang targeting hospitals
The U.S. Treasury Department, in coordination with the United Kingdom, Sept. 7 sanctioned 11 individuals who are part of the Russia-based Trickbot cybercrime…
Headline
Government disrupts QakBot cyberthreat; hospitals urged to remain on guard
The Federal Bureau of Investigations, amid one of the largest-ever U.S.-led enforcement actions against a botnet, Aug. 29 announced the successful takedown of…
Headline
New guidance paves the way for organizations’ migration to post-quantum cryptography
A new resource from the Cybersecurity and Infrastructure Security Agency, National Security Agency and the National Institute of Standards and Technology…