The Protiviti View  | Insights From Our Experts on Trends, Risks and Opportunities

The Protiviti View

Insights From Our Experts on Trends, Risks and Opportunities
Search

POST

< 1 mins to read

FBI Warns of Ransomware Assault on Healthcare and Public Health Sector

Views
Understand the GDPR legitimate interest vs. consent dilemma
Larger Font
< 1 minute to read

On October 28, 2020, the Federal Bureau of Investigation (FBI), the Department of Health and Human Services (HHS), and the Cybersecurity and Infrastructure Security Agency (CISA) issued a Joint Cybersecurity Advisory regarding credible information of imminent cyber attacks to infect systems in the Healthcare and Public Health (HPH) sector with Ryuk ransomware.

Ransomware campaigns using the combination of tools described in the advisory include “dwell time” for the attacker ranging from four to six weeks. Dwell time is the amount of time an attacker spends undetected in a victim’s network environment.

The damage associated with previous campaigns includes:

  • Encryption and ransom of vulnerable systems, including medical equipment that may have a significant impact on patient safety
  • Disruption of care through denial of access to medical systems and records
  • Exfiltration and extortion threats made around releasing electronic protected health information (ePHI) and personally identifiable information (PII)
  • Secondary costs of regulatory reporting, investigation, remediation, notifications and litigation

Protiviti has issued a Flash Report summarizing the key findings in the Joint Advisory and offering guidance for organizations with regard to ransomware threats, long-term improvements to mitigate the threats, and specific advice to react to an attack underway or an early detection of one or more indicators of attack.

Read additional posts on The Protiviti View related to ransomware.

Was this post helpful to you?

Thanks for your feedback!

Subscribe to The Protiviti View Blog

To face the future confidently, you need to be equipped with valuable insights that align with your interests and business goals.

In this Article

Find a similar post by topics

Authors

Curt Dalton

By Curt Dalton

Verified Expert at Protiviti

EXPERTISE

Richard Williams

By Richard Williams

Verified Expert at Protiviti

EXPERTISE

No noise.
Just insights.

Subscribe now

Related posts

Article

What is it about

What you need to know: Aging systems, data silos, regulatory pressures and talent gaps complicate enterprise transformation for public utilities....

Article

What is it about

The top priority for healthcare internal auditors this year is cybersecurity, according to a survey by Protiviti and the Association...

Article

What is it about

The big picture: C-suite leaders in traditional aerospace and defense (A&D) companies are launching and growing their aftermarket services and...

Search