ºÚÁÏÕýÄÜÁ¿

Executive Summary

In 2021, cybersecurity authorities in the United States, Australia, and the United Kingdom observed an increase in sophisticated, high-impact ransomware incidents against critical infrastructure organizations globally. Ransomware tactics and techniques continued to evolve in 2021, which demonstrates ransomware threat actors’ growing technological sophistication and an increased ransomware threat to organizations globally. This joint Cybersecurity Advisory provides observed behaviors and trends as well as mitigation recommendations to help network defenders reduce their risk of compromise by ransomware.

Report

Alert (AA22-040A) - 2021 Trends Show Increased Globalized Threat of Ransomware

Impact to HPH Sector

As ransomware continues to act as a major cyber threat against the U.S. Healthcare and Public Health (HPH) Sector, it is extremely important to both know AND apply the information included in this Alert.

Reducing your organization’s attack surface to the greatest extent possible is the primary goal, and this Alert provides many ways to do that. Notably:

• Digest the Technical Details to understand how cybercriminals’ actions are trending to adjust your own threat modeling.
• Keep all operating systems and software up to date.
• If you use RDP or other potentially risky services, secure and monitor them closely.
• Use multi-factor authentication and strong, unique passwords.
• Establish a robust data backup program and ensure all backup data is encrypted.
• Consider signing up for CISA’s .

U.S. organizations should report incidents immediately to the FBI at a l, CISA at , or the U.S. Secret Service at a .

References

Links to numerous additional references and resources can be found in the above referenced report.

Contact Information

If you have any additional questions, please contact us at .