This week, Krebs on Security released an article on a Russian cybercriminal gang that have been known for deploying ransomware has prepared to attack hundreds of hospitals, clinics, and medical care facilities across the United States.
The FBI and U.S. Department of Homeland Security met with healthcare experts to warn about the “imminent cybercrime threat to U.S. hospitals and healthcare providers.” The agencies said they were sharing the information “to provide warning to healthcare providers to ensure that they take timely and reasonable precautions to protect their networks from these threats.”
“They didn’t share any IoCs, so it’s just been ‘patch your systems and report anything suspicious’,” said a healthcare industry veteran who participated in the meeting.
Alex Holden, founder of Hold Security, received a tip 24 hours before the warning was issued. Holden mentioned that he saw online communications between cybercriminals that are associated with the ransomware group known as Ryuk where group members planned to deploy ransomware at more than 400 healthcare facilities in the U.S.
So far, however, nothing like hundreds of facilities have publicly reported ransomware incidents. But there have been a handful of hospitals dealing with ransomware attacks in the past few days.
It's important for your organization to be prepared in the event of a ransomware attack. New-school security awareness training can help your users spot the warning signs and report any suspicious activity.
Krebs on Security has the full story.