Cybersecurity Government Intelligence Reports
The American Hospital Association (AHA) Cybersecurity and Risk Advisory Service share cybersecurity government intelligence reports that are vital to the security of hospitals and health systems.
INTRODUCTION
Ransomware is a form of malware designed to encrypt files on a device, rendering them and the systems that rely on them unusable. Malicious actors then demand ransom in exchange for decryption. Over time, malicious actors have adjusted their ransomware tactics to be more…
The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and Australian Cyber Security Centre (ACSC) are releasing this joint Cybersecurity Advisory to disseminate known BianLian ransomware and data extortion group IOCs and TTPs identified through FBI and…
Cyber attacks launched by threat actors against Veeam Backup & Replication are on the rise. Veeam Backup & Replication (VBR) is a software product created by Veeam Software that is used to back up, replicate,
The UK National Cyber Security Centre (NCSC), the US National Security Agency (NSA), US Cybersecurity and Infrastructure Security Agency (CISA) and US Federal Bureau of Investigation (FBI) are releasing this joint advisory to provide details of tactics, techniques and procedures (TTPs) associated…
Executive Summary
The Landscape Analysis’ charge was to highlight findings and issues affecting the cybersecurity resiliency of U.S. hospitals. National Institute of Standards and Technology (NIST) defines cyber resiliency as, the ability to anticipate, withstand, recover from, and adapt to…
Cybersecurity threats to healthcare organizations and patient safety are real. Health IT provides critical lifesaving functions.
HC3 TLP Clear: Electronic Medical Records Still a Top Target for Cyber Threat Actors April 6, 2023.
In Q1 of 2023, HC3 observed a continuation of many ongoing trends with regards to cyber threats to the Healthcare and Public Health community.
Mobile devices are prevalent in the health sector, and due to their storage and processing of private health information (PHI) as well as other sensitive data,
Black Basta was initially spotted in early 2022, known for its double extortion attack, the Russian-speaking group not only executes ransomware, but also exfiltrates sensitive data, operating a cybercrime marketplace to publicly release it, should a victim fail to pay a ransom.