Our Tools

Lawsuit: Health System Failed to Heed Ransomware Warnings

Gov Info Security, September 15, 2021 A proposed class action lawsuit filed this week against St. Joseph's/Candler Health System in the wake of a recent ransomware breach affecting 1.4 million individuals alleges that the Georgia-based healthcare entity was "reckless"...

U.S. healthcare hit by yet another cyberattack

Digital Journal, September 11, 2021 The U.S. medical body, California health center LifeLong Medical Care, has been struck by a ransomware attack. The attack was sufficiently wide to leak personally identifiable information of around 115,000 patients across numerous...

Cyber Vulnerability is Healthcare’s Modern Malaise

ET Healthworld, September 8, 2021 The healthcare industry makes for an easy target for malicious actors, given its relative nascency to cyber threats and the resultant lax cybersecurity practices. Read full ET Healthworld article.

Listen: How ransomware put the health sector on notice

SC Media, September 8, 2021 Ransomware is not new in a sense that malware can encrypt files and do bad things, said Eric Decker, a chief information security officer in the health care industry. But around 2015 or 2016, he said organized crime began to leverage it as...

Healthcare Ransomware Attack in CA Involves PHI of 57K

Health IT Security, September 7, 2021 San Andreas Regional Center in California experienced a healthcare ransomware attack that may have exposed the PHI of over 57,000 individuals. Read full Health IT Security article.

The Ideal Ransomware Victim: What Attackers Are Looking For

KELA, September 6, 2021 In July 2021, KELA observed threat actors creating multiple threads where they claimed they are ready to buy accesses and described their conditions. Some of them appear to use access for deploying info-stealing malware and carrying out other...

Beaumont Health Latest Victim of Accellion Data Breach

Health IT Security, September 3, 2021 Nearly nine months after the Accellion data breach, Beaumont Health in Michigan joined a list of over 11 healthcare organizations impacted by the cyberattack. Read full Health IT Security article.

How ransomware runs the underground economy

CSO, August 31, 2021 Ransomware gangs are adopting all the core elements of legitimate businesses—including defined staff roles, marketing plans, partner ecosystems, and even venture capital investments—and some hallmarks of more traditional criminal enterprises. Read...

Healthcare Ransomware Attack Leads to EHR Downtime in IN

Health IT Security, August 26, 2021 A healthcare ransomware attack in Indiana resulted in EHR downtime and potential exposure of patient and employee PII after bad actors released data online. Read full Health IT Security article.

The rise of ransomware within healthcare

Open Access Government, August 23, 2021 David Higgins, EMEA Technical Director, CyberArk, explores three reasons why healthcare organisations are extra vulnerable to ransomware. Read full Open Access Governmet article.


The Verge, August 19, 2021 In late October 2020, the University of Vermont Health Network was hit by a ransomware attack. The system couldn’t access electronic health records for nearly a month. Every computer at UVM Medical Center was infected with malware. Hospitals...

Data Breach at Georgia Health System

INFO SECURITY MAGAZINE, August 11, 2021 A health system in Georgia has begun notifying patients of a six-month-long data breach that culminated in a ransomware attack. Read full Info Security Magazine article.

Top 5 ransomware operators by income

MSN, August 11, 2021 Jack Cable, a security architect at Krebs Stamos group, and a former U.S. Cybersecurity and Infrastructure Security Agency worker, has started a ransomware payments tracking site called Ransomewhere. Read full SC Media article.

Intelligence Driven Exercises and Solutions (IDEAS): An uncomplicated approach for solving complicated problems

As part of our continued focus on solving problems for a safer world, MITRE recognizes that one of our nation’s greatest challenges is that threats and adversaries are constantly evolving. Technology advances by leaps and bounds. To stay ahead of the game, we must continuously be checking and refining our assumptions, methods, and strategies. Tabletop exercises are a form of serious games that have long been used by government agencies to sharpen their focus on a problem set and their understanding of the people, processes, and technologies associated with them. Based on our previous experience, MITRE experts have developed a methodology for implementing and scaling table top exercises we call Intelligence Driven Exercises and Solutions or IDEAS.

Read Intelligence Driven Exercises and Solutions (IDEAS): An uncomplicated approach for solving complicated problems

Ransomware Attack Forces Indiana Hospital to Turn Ambulances Away

Yahoo! News, August 5, 2021 Hackers are going after U.S. hospitals with a fresh wave of cyberattacks this week just as coronavirus cases surge around the country. Eskenazi Health, a health-care service provider that operates a 315-bed hospital, inpatient facilities,...

Pin It on Pinterest

Share This