Cybersecurity Government Intelligence Reports
The American Hospital Association (AHA) Cybersecurity and Risk Advisory Service share cybersecurity government intelligence reports that are vital to the security of hospitals and health systems.
HC3 is closely tracking hacktivist groups which have previously affected a wide range of countries and industries, including the United States Healthcare and Public Health (HPH) sector.
APT5 has demonstrated capabilities against Citrix® Application Delivery Controller™ (ADC™) deployments (“Citrix ADCs”).
LockBit 3.0 is the newest version of the LockBit ransomware that was first discovered in September 2019.
BlackCat is a relatively new ransomware variant, known to be in operation since November 2021.
Automation and hacking potential impacts on healthcare.
Royal is a human-operated ransomware that was first observed in 2022 and has increased in appearance. It has demanded ransoms up to millions of dollars. Since its appearance, HC3 is aware of attacks against
the Healthcare and Public Healthcare (HPH) sector.
The FBI and CISA have released a joint security advisory to disseminate known Indicators of Compromise (IOC) and Tactics, Techniques, and Procedures (TTPs) that have been associated with the Cuba Ransomware actor.
Alerts published on December 2, 2022.
Executive Summary
Lorenz is human-operated ransomware that has been in operation for approximately two years. In that time, HC3 is aware of the compromise of healthcare and public sector targets. It is used to target larger organizations in what is called “big-game hunting”, and publishes data…
SUMMARY
Note: This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors.