Our Tools

Healthcare IT News, November 28, 2022 On 23 November, the All India Institute of Medical Sciences in New Delhi, India reported an IT outage due to a suspected ransomware attack. Read full Healthcare IT News article.

Healthcare Info Security, November 24, 2022 India’s premier healthcare institute reported a massive cyberattack on its servers on Wednesday. All patient care services were affected and were still operating manually on Thursday. Read full Healthcare Info Security...

CPO Magazine, November 22, 2022 Hive ransomware, one of the biggest ransomware-as-a-service (RaaS) strains circulating since 2021, has at this point brought in $100 million in ransom payments according to a new alert released by the Cybersecurity and Infrastructure...

HHS, November 21, 2022 HC3: Analyst Note. Report: 202211211700 Lorenz Ransomware Lorenz is human-operated ransomware that has been in operation for approximately two years. In that time, HC3 is aware of the compromise of healthcare and public sector targets. It is...

SC Media, November 21, 2022 The Department of Health and Human Services Cybersecurity Coordination Center is warning larger, enterprise healthcare organizations of the potential threat posed by the Lorenz ransomware threat group. The human-operated campaign is...

Becker's Health IT, November 21, 2022 From a third-party data breach to phishing schemes that compromised employee email accounts, seven health systems have been affected by a cybersecurity incident since Oct. 27. Read full Becker's Health IT article.

SC Media, November 21, 2022 The Department of Health and Human Services Cybersecurity Coordination Center is warning larger, enterprise healthcare organizations of the potential threat posed by the Lorenz ransomware threat group. Read full SC Media article.

Gov Info Security, November 18, 2022 As of this month, Hive actors - who follow a Ransomware-as-a-Service model - have hit more than 1,300 companies worldwide, collecting about $100 million in ransom payments, says a Thursday joint alert from the Cybersecurity and...

American Hospital Association, November 18, 2022 The FBI, Cybersecurity & Infrastructure Security Agency, and Department of Health and Human Services yesterday recommended actions to reduce the risk of compromise from Hive ransomware, which has victimized over...

Health IT Security, November 18, 2022 HHS, the Federal Bureau of Investigation (FBI), and the Cybersecurity and Infrastructure Security Agency (CISA) issued a joint cybersecurity advisory about Hive ransomware actors. The ransomware actors have been repeatedly...

SC Media, November 18, 2022 The Second International Counter Ransomware Initiative (CRI) Summit held recently at the White House turned the spotlight on the need to counter cybercriminal and other threat actors’ efforts to use the cryptocurrency ecosystem to garner...

SC Media, November 18, 2022 Another 15,000 patients have been added to the breach tally of the Eye Care Leaders ransomware attack from nearly one year ago. Read full SC Media article.

CISA, November 17, 2022 This joint Cybersecurity Advisory (CSA) is part of an ongoing #StopRansomware effort to publish advisories for network defenders that detail various ransomware variants and ransomware threat actors. These #StopRansomware advisories include...

Health IT Security, November 17, 2022 Although security professionals may take holidays and weekends off, threat actors do not. New research from Cybereason found that holiday and weekend ransomware attacks resulted in greater revenue losses and lengthier recovery...

SC Media, November 17, 2022 A new joint alert details the spate of cyberattacks and data extortion efforts of the Hive ransomware group to support entities with identifying known IOCs and attack methods, with a particular focus on the health and public health sectors....

U.S. Government Accountability Office, November 16, 2022 Ransomware is software that makes data and systems unusable unless ransom payments are made. State, local, tribal, and territorial government organizations—including schools—have been targeted by ransomware....

Info Security Magazine, November 16, 2022 The infamous LockBit ransomware variant remained the most widespread in the third quarter of 2022, accounting for over a fifth (22%) of detections, according to a new report from Trellix. Read full Info Security Magazine...

Gov Info Security, November 15, 2022 The new Food and Drug Administration's Medical Device Cybersecurity Regional Incident Preparedness and Response Playbook is a refresh of guidance released in 2018. Read full Gov Info Security article.

Bank Info Security, November 15, 2022 Federal officials released updated guidance for preparing and responding to medical device cybersecurity incidents, including ransomware, as cyberattacks against the healthcare sector continue to surge. Read full Bank Info...

ZD Net, November 15, 2022 It's well known that ransomware attacks are one of the most significant cybersecurity challenges facing the world today, and often the financial impact on victims is the most obvious and most discussed consequence. But that's far from the...

Health IT Security, November 15, 2022 Numerous cloud attacks are successfully exploiting the healthcare sector for financial gain, according to a newly released 2022 Cloud Security Report by cybersecurity vendor Netwrix. Read full Health IT Security article.

Health IT Security, November 15, 2022 Dual Russian and Canadian national Mikhail Vasiliev was charged for his alleged involvement in the global LockBit ransomware campaign, the Department of Justice (DOJ) announced. LockBit has been known to target healthcare in the...

SC Media, November 15, 2022 The future of the Cybersecurity and Infrastructure Security Agency, requests for a speedier implementation of new cyber incident reporting regulations, and a potential congressional authorization for the newly established Cyber Safety...

SC Media, November 14, 2022 The federal government has set its sights on improving healthcare’s cybersecurity posture through collaborative partnerships. However, stakeholders are frustrated, some even angry, that their proposals appear to recycle past work rather...

Healthcare Dive, November 14, 2022 The HHS’ Health Sector Cybersecurity Coordination Center is cautioning the healthcare industry that Venus ransomware operators are targeting remote desktop services to encrypt Windows devices. At least one health organization in the...

Bank Info Security, November 11, 2022 A ransomware attack at a Texas hospital that knocked out phone and email systems for weeks is now even worse following OakBend Medical Center's admission that hackers downloaded data from the medical records of up to 500,000...

Becker's Health IT, November 11, 2022 A dual national of Canada and Russia has been charged with being part of a ransomware gang that has targeted the healthcare industry. Read full Becker's Health IT article.

SC Media, November 11, 2022 Ransomware in state and local governments is a significant threat to all branches and departments. In the very best case scenario: A government office is targeted by a successful ransomware attack. Thanks to an excellent allocation of...

CSO, November 10, 2022 Every quarter, we interview CISOs and ask them what is top of mind and what trends or challenges they are experiencing in the threat landscape. From this, we create the CISO Insider — an actionable report that explores the top three issues that...

Becker's Health IT, November 10, 2022 Chicago-based CommonSpirit Health says the EHRs in most of its markets are back up and running following a ransomware attack that has plagued the health system in recent weeks. Read full Becker's Health IT article.

Becker's Hospital Review, November 9, 2022 HHS, the Cybersecurity and Infrastructure Security Agency, and the FBI have urged healthcare organizations to take certain actions to protect their systems from hacker groups who have been known to create cyberespionage...

SC Media, November 9, 2022 The Department of Health and Human Services breach reporting tool shows at least 10 more anesthesia practices have been added to the “data security incident” at a healthcare management company, first reported in October. Read full SC Media...

HHS, November 9, 2022 HC3: Analyst Note. Report: 202211091400 Venus Ransomware Targets Publicly Exposed Remote Desktop Services HC3 is aware of at least one healthcare entity in the United States falling victim to Venus ransomware recently. The threat actors behind...

MSN, November 9, 2022 Stolen health records for millions of Australians have been publicly released on the dark web following a threat by hackers 24 hours earlier to do precisely that. Last month, the unknown hackers demanded a ransom from Medibank, a private...

SC Media, November 8, 2022 OpenText Security Solutions on Monday reported that some 84% of respondents to a small- and mid-sized business (SMB) survey are concerned about a ransomware attack on their business. Read full SC Media article.

SC Media, November 7, 2022 Medibank, Australia’s largest health insurer, announced Monday that it will not pay a ransom to the hacker behind the recent data theft affecting 9.7 million customers. Read full SC Media article.

SC Media, November 4, 2022 US financial institutions processed roughly $1.2 billion in ransomware-related payments last year, a nearly 200 percent increase compared to 2020, according to the Treasury Department. Read full SC Media article.

ZD Net, November 1, 2022 Ransomware continues to be a significant cyber threat to businesses and the general public – but it's difficult to know the true impact of attacks because many victims aren't coming forward to report them. Read full ZD Net article.

The Asahi Shimbun, November 1, 2022 A major hospital here suspended routine medical services after a ransomware cyberattack shut down the facility’s electronic medical record system, officials said on Oct. 31. Osaka General Medical Center in the city’s Sumiyoshi Ward...

Gov Info Security, October 31, 2022 Why are so many ransomware-wielding attackers collectively shooting themselves in the foot? Ransomware victims who opt to pay a ransom have been seeing a "decline in quality and reliability" when it comes to quickly restoring...

MSN, October 31, 2022 The White House is hosting its second annual summit, involving dozens of countries and tech companies, to thwart the threat of ransomware attacks. Read full MSN article.

SC Media, October 31, 2022 A “security event” deployed against several legacy systems, including an electronic medical record (EMR), at Ascension St. Vincent’s Coastal Cardiology in Georgia has led to the possible compromise of personal and health information tied to...

Health IT Security, October 27, 2022 On August 15, Ascension St. Vincent’s Coastal Cardiology in Brunswick, Georgia, was alerted to a healthcare data breach involving “recently acquired Ascension St. Vincent’s Coastal Cardiology’s legacy systems including the...

SC Media, October 27, 2022 Netwrix on Thursday reported that 61% of respondents in the healthcare industry suffered a cyberattack on their cloud infrastructure within the last 12 months, compared to 53% for other verticals. Read full SC Media article.

Gov Info Security, October 24, 2022 Beware ransomware and data extortion shakedowns that trace to a cybercrime group called Daixin Team, which is especially targeting the healthcare sector. Read full Gov Info Security article.

CPO Magazine, October 24, 2022 Cybersecurity woes for major Australian firms continue as health insurance giant Medibank experienced a data breach that saw 200 GB in medical records stolen by a hacker and held for ransom. Read full CPO Magazine article.

Health IT Security, October 24, 2022 CommonSpirit Health is still in the process of responding to and recovering from a cyberattack that began in early October and impacted multiple facilities within the health system. Read full Health IT Security article.

SC Media, October 24, 2022 The Daixin ransomware group is actively, and successfully, targeting the healthcare sector in force, with multiple provider organizations facing extortion claims after falling victim to the actors’ tactics since June, according to an urgent...

MSN, October 21, 2022 More than two weeks after a ransomware attack crippled its parent company, MercyOne health system is beginning to restore certain systems that were taken offline. Read full MSN article.

CISA, October 21, 2022 Alert (AA22-294A) The FBI, CISA, and Department of HHS are releasing this joint CSA to provide information on the “Daixin Team,” a cybercrime group that is actively targeting U.S. businesses, predominantly in the Healthcare and Public Health...