The HHS Office for Civil Rights (OCR) is sharing the following information to ensure that HIPAA regulated entities are aware of the resources available to assist in preventing, detecting, and mitigating breaches of unsecured protected health information caused by hacking and ransomware.
HHS Health Sector Cybersecurity Coordination Center Threat Briefs:
-
- January 28, 2021 – ATTACK for Emotet
- March 12, 2021 – New Ryuk Variant Analyst Note
- April 8, 2021 – Ryuk Variants
- May 25, 2021 – Conti Ransomware Analyst Note
- June 3, 2021 – Ransomware Trends 2021
- July 8, 2021 – Conti Ransomware
- July 8, 2021 – Phobos Ransomware Analyst Note
- August 5, 2021 – Qbot/QakBot Ransomware
- August 6, 2021 – Lazio Ransomware Attack Analyst Note
- August 19, 2021 – REvil Update
- August 24, 2021 – OnePercent Group Ransomware Alert
- August 25, 2021 – IOCs Associated with Hive Ransomware Alert
- September 2, 2021 – Demystifying BlackMatter
HHS Resources on Section 405(d) of the Cybersecurity Act of 2015:
- Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients https://www.phe.gov/Preparedness/planning/405d/Pages/hic-practices.aspx
- Cybersecurity Reports and Tools https://www.phe.gov/Preparedness/planning/405d/Pages/reportandtools.aspx
OCR Guidance:
- Ransomware https://www.hhs.gov/sites/default/files/RansomwareFactSheet.pdf
- Cybersecurity
https://www.hhs.gov/hipaa/for-professionals/security/guidance/cybersecurity/index.html
- Risk Analysis
HHS Security Risk Assessment Tool:
CISA Protecting Sensitive and Personal Information from Ransomware-Caused Data Breaches:
- https://www.cisa.gov/stopransomware
- https://www.cisa.gov/sites/default/files/publications/CISA_Fact_Sheet-Protecting_Sensitive_and_Personal_Information_from_Ransomware-Caused_Data_Breaches-508C.pdf
CISA Ransomware Guide:
FBI Ransomware Resources:
- https://www.fbi.gov/scams-and-safety/common-scams-and-crimes/ransomware
- https://www.ic3.gov/Media/Y2019/PSA191002
OCR Cybersecurity Newsletters:
- Making a List and Checking it Twice: HIPAA and IT Asset Inventories (Summer 2020 Cybersecurity newsletter): https://www.hhs.gov/hipaa/for-professionals/security/guidance/cybersecurity-newsletter-summer-2020/index.html
- What Happened to My Data?: Update on Preventing, Mitigating and Responding to Ransomware (Fall 2019 Cybersecurity Newsletter):https://www.hhs.gov/hipaa/for-professionals/security/guidance/cybersecurity-newsletter-fall-2019/index.html
- Phishing (February 2018 Cybersecurity Newsletter): https://www.hhs.gov/sites/default/files/cybersecurity-newsletter-february-2018.pdf
- Plan A… B… Contingency Plan! (March 2018 Cybersecurity Newsletter): https://www.hhs.gov/sites/default/files/march-2018-ocr-cyber-newsletter-contingency-planning.pdf
- Cybersecurity Incidents will happen… Remember to Plan, Respond, and Report! (May 2017 Cybersecurity newsletter): https://www.hhs.gov/sites/default/files/may-2017-ocr-cyber-newsletter.pdf
REMINDER: A ransomware attack may result in a breach of unsecured protected health information that triggers reporting requirements under the HIPAA Breach Notification Rule. HIPAA covered entities and business associates should review OCR’s ransomware guidance at https://www.hhs.gov/sites/default/files/RansomwareFactSheet.pdf for information regarding potential breach notification obligations following a ransomware attack.
Source: HHS