Ransomware Impacts

Gov Info Security, November 18, 2022

As of this month, Hive actors – who follow a Ransomware-as-a-Service model – have hit more than 1,300 companies worldwide, collecting about $100 million in ransom payments, says a Thursday joint alert from the Cybersecurity and Infrastructure Security Agency, the FBI and the Department of Health and Human Services.

Read full Gov Info Security article.

American Hospital Association, November 18, 2022

The FBI, Cybersecurity & Infrastructure Security Agency, and Department of Health and Human Services yesterday recommended actions to reduce the risk of compromise from Hive ransomware, which has victimized over 1,300 health care and other organizations since last June.

Read full AMA article.

Health IT Security, November 18, 2022

HHS, the Federal Bureau of Investigation (FBI), and the Cybersecurity and Infrastructure Security Agency (CISA) issued a joint cybersecurity advisory about Hive ransomware actors. The ransomware actors have been repeatedly targeting critical infrastructure, especially the healthcare sector since they were first observed in June 2021.

Read full Health IT Security article.

SC Media, November 18, 2022

The Second International Counter Ransomware Initiative (CRI) Summit held recently at the White House turned the spotlight on the need to counter cybercriminal and other threat actors’ efforts to use the cryptocurrency ecosystem to garner payments and mask illicit activity.

Read full SC Media article.

SC Media, November 18, 2022

Another 15,000 patients have been added to the breach tally of the Eye Care Leaders ransomware attack from nearly one year ago.

Read full SC Media article.

CISA, November 17, 2022

This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include recently and historically observed tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to help organizations protect against ransomware.

Read full CISA alert.

Health IT Security, November 17, 2022

Although security professionals may take holidays and weekends off, threat actors do not. New research from Cybereason found that holiday and weekend ransomware attacks resulted in greater revenue losses and lengthier recovery times for victim organizations.

Read full Health IT Security article.

SC Media, November 17, 2022

A new joint alert details the spate of cyberattacks and data extortion efforts of the Hive ransomware group to support entities with identifying known IOCs and attack methods, with a particular focus on the health and public health sectors.

Read full SC Media article.

U.S. Government Accountability Office, November 16, 2022

Ransomware is software that makes data and systems unusable unless ransom payments are made.

State, local, tribal, and territorial government organizations—including schools—have been targeted by ransomware. This can affect vital government operations and services. Ransomware attacks on schools can cause learning loss as well as monetary loss.

Reed full GAO article.

Info Security Magazine, November 16, 2022

The infamous LockBit ransomware variant remained the most widespread in the third quarter of 2022, accounting for over a fifth (22%) of detections, according to a new report from Trellix.

Read full Info Security Magazine article.

Gov Info Security, November 15, 2022

The new Food and Drug Administration’s Medical Device Cybersecurity Regional Incident Preparedness and Response Playbook is a refresh of guidance released in 2018.

Read full Gov Info Security article.

Bank Info Security, November 15, 2022

Federal officials released updated guidance for preparing and responding to medical device cybersecurity incidents, including ransomware, as cyberattacks against the healthcare sector continue to surge.

Read full Bank Info Security article.