The Cybersecurity and Infrastructure Security Agency, FBI and Multi-State Information Sharing and Analysis Center this week alerted organizations to a critical vulnerability affecting certain versions of the Atlassian Confluence Data Center and Server that enables malicious actors to obtain access to victim systems and continue active exploitation post-patch. The agencies strongly encourage network administrators to immediately apply the recommended upgrades and recommended responses to indicators of compromise. The FBI and CISA also recently released updated recommendations to protect against AvosLocker ransomware. 
 
In other cyber news, federal agencies this week released guidance to help organizations reduce the risk of ransomware incidents and phishing attacks, and updated guidance to help software manufacturers demonstrate their commitment to secure by design principles and customers ask for products that are secure by design.
 
“In the past two weeks government agencies have not only been very pro-active in warning us of the latest cyber threats, but have also issued very useful resources to help us counter those threats,” said John Riggi, AHA’s national advisor for cybersecurity and risk. “The AvosLocker threat operates as a ransomware-as-a-service and exploits unsecured remote desktop tools on premises. Unrelated but highly advanced and persistent actors are targeting the Confluence Data Center and Sever through an Atlassian Confluence vulnerability, once again demonstrating that cyberthreat actors are aggressively and equally targeting our on-premises and hosted technology. On the positive side, agencies have concurrently issued very useful and detailed guides to help prevent ransomware and phishing attacks and better secure our technology. The premise of ‘secure by design’ is to shift the primary responsibility for cybersecurity from end users to technology developers at the design phase of the technology.”
 
For more information on cyber and risk issues, contact Riggi at jriggi@aha.org. For the latest cyber and risk resources and threat intelligence, visit aha.org/cybersecurity.

Related News Articles

Headline
The U.S. Department of Justice, United Kingdom and other global partners have seized control of servers used by the LockBit ransomware-as-a-service group,…
Headline
Bryan Smith, recently retired chief of the FBI’s Cyber Criminal Operations Section, discusses the challenge of protecting the nation's caregivers and patients…
Headline
The National Institute of Standards and Technology this week released updated guidance to help HIPAA-covered entities and business associates assess and manage…
Headline
The FBI Feb. 15 released an alert to help organizations detect and reduce the risk of network compromise from the Warzone Remote Access Trojan, a malware…
Headline
The health care sector should quickly implement patches or mitigations to address 21 new cyber vulnerabilities identified by the Cybersecurity and…
Headline
The Department of Justice has disrupted a botnet of hundreds of small office and home office routers hijacked by hackers sponsored by the People’s Republic of…