May 6, 2020 APT Groups Target Healthcare and Essential Services National Cyber Awareness System: AA20-126A: APT Groups Target Healthcare and Essential Services Original release date: May 5, 2020 Summary This is a joint alert from the United States Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber…
Search Results for: HCA
MO: BJC HealthCare warns patients of possible data breach
Kelsi Anderson reports: BJC HealthCare is warning patients that their information may have been exposed after it discovered someone gained unauthorized access to three employee email accounts. The suspicious activity was noticed on March 6 and a leading computer forensic firm was hired to investigate. It determined the email accounts had been accessed for a…
So much for their moratorium on attacking healthcare entities: Maze Team attacks a plastic surgeon
We also stop all activity versus all kinds of medical organizations until the stabilization of the situation with virus — Maze Team, March 18, 2020 Despite having proclaimed that they would not be attacking medical entities during the pandemic, Maze Team has attacked another medical entity: a Bellevue, Washington-based plastic surgeon who specializes in surgery…
Microsoft works with healthcare organizations to protect from popular ransomware during COVID-19 crisis: Here’s what to do
Microsoft is doing its bit to help hospitals and care facilities to protect themselves from human-operated ransomware attacks. In a blog post published today, they write, in part: While a wide range of adversaries have been known to exploit vulnerabilities in network devices, more and more human-operated ransomware campaigns are seeing the opportunity and are jumping on…
Kwampirs Malware Employed in Ongoing Cyber Supply Chain Campaign Targeting Global Industries, including Healthcare Sector
The summary from Private Industry Notification #20200330 by the FBI, issued March 30: Since at least 2016, the FBI has observed an Advanced Persistent Threat (APT) actor conduct a global network exploitation campaign using the Kwampirs Remote Access Trojan (RAT) and is providing additional, non-technical information in an effort to highlight key objectives of the…
(UPDATED) Healthcare Workers Targeted By Dangerous New Windows Ransomware Campaign Using Coronavirus As Bait
Update: I just caught up with Lawrence Abram’s excellent reporting on this topic. Abrams’ report gives a somewhat different impression than Forbes’ headline and report. Abrams reports that Netwalker ransomware is using COVID-19 in phishing emails that install the Netwalker ransomware, but from his reporting, it does not appear that Netwalker is specifically targeting the…