HHS Cybersecurity Program has released a new threat brief on lessons learned from the HSE cyberattack. DataBreaches.net covered the incident and aftermath in a number of articles because of the significance of the breach impacting patient care — including for cancer patients — and the unusual twist the case took when the Conti threat actors turned around and gave HSE the decryption key but still demanded ransom to delete and presumably destroy data the threat actors had exfiltrated.
The HSE’s own report on the incident — a whopping 157 pages — can be found here.