����������

The Department of Health and Human Services’ Health Sector Cybersecurity Coordination Center (HC3) yesterday alerted the sector to a monkeypox-themed phishing campaign targeting health care providers.

Cyber criminals are increasingly targeting health care payment processors to redirect payments intended for health care providers to accounts they control, costing victims millions of dollars, the FBI reported this week.

The FBI yesterday charged three Iranian nationals with allegedly orchestrating a scheme to hack into the computer networks of multiple U.S. victims, including an attempted but thwarted attack last year against Boston Children’s Hospital.

The FBI today released recommendations to help protect medical devices from cyberattacks that can threaten health care operations, patient safety, and data privacy and integrity, citing a growing number of unpatched medical device vulnerabilities.

Former co-chairs of the Cyberspace Solarium Commission request briefing on HHS efforts to protect health care sector through public-private collaboration. 

The ransomware uses remote desktop protocol and firewall vulnerabilities and phishing campaigns to access victim networks.

A new advisory from the Cybersecurity and Infrastructure Security Agency and Australian Cyber Security Centre details the top malware strains observed last year and immediate actions organizations should take to protect themselves from these remote access Trojans, information stealers and ransomware threats.

A new brief from the Department of Health and Human Services’ Health Sector Cybersecurity Coordination Center (HC3) offers tips to protect health care organizations from basic web application attacks.

The Justice Department has recovered about $500,000 in ransom that a Kansas hospital and Colorado medical provider paid to state-sponsored North Korean hackers, the agency announced.

The FBI issued a “white” joint cybersecurity advisory warning of ransomware threats against the U.S. health care and public sectors.

The FBI, Cybersecurity and Infrastructure Security Agency, Department of the Treasury, and Financial Crimes Enforcement Network today urged organizations to take certain actions to protect their networks from MedusaLocker ransomware, which uses vulnerabilities in the Remote Desktop Protocol to access victims’ networks and encrypt their data.

 AHA Friday voiced support for the Protecting and Transforming Cyber Health Care Act, legislation that would require medical device manufacturers to meet certain cybersecurity requirements when seeking approval for devices that are internet connected or include software

The National Security Agency, Cybersecurity and Infrastructure Security Agency and FBI this week

A Senate committee last week held a hearing on how to strengthen cybersecurity in the health care and education sectors.

CISA yesterday directed federal agencies to take emergency action to patch critical vulnerabilities in VMware products.

Cybersecurity authorities in the United Kingdom, Australia, Canada, New Zealand and the United States today urged companies that deliver, operate or manage information and communications technology services and their customers to implement certain best practices to secure sensitive data.

CISA and the FBI yesterday encouraged U.S. organizations to take certain actions to monitor and protect their networks.

Cyber authorities in five nations today advised organizations to apply timely patches to reduce their risk from common vulnerabilities.

Learn why hospitals and health systems look to senior leaders to take a coordinated, enterprisewide approach.

The FBI this week released a report detailing indicators of compromise associated with ransomware variants that have compromised at least 60 entities worldwide.