Agencies report cyberattacks on power supply devices, public sector

Mar 31, 2022 - 04:03 PM
cybersecurity

The Cybersecurity and Infrastructure Security Agency and Department of Energy this week recommended organizations take steps to prevent cyber actors from accessing Uninterruptible Power Supply devices through the internet. The agencies said they are aware of threat actors gaining access to a variety of internet-connected UPS devices, often through unchanged default usernames and passwords. 

The FBI also alerted the private sector this week to ransomware attacks on local government agencies that have resulted in disrupted operational services, risks to public safety and financial losses. 

John Riggi, AHA’s national advisor for cybersecurity and risk, said, “It is noted that one of the most effective methods to mitigate the cyber risk to UPS devices and systems is quite simple — disconnect them from the internet. This alert should also be shared with all facilities’ engineers and those involved in the planning, design and construction phases of hospitals. In regard to the FBI alert, attacks on local government agencies have also resulted in disruptions to public health services.  This alert also contains a comprehensive list of strategic and technical ransomware risk mitigation steps, which are applicable to hospitals and health systems.”

Related News Articles

Headline
AHA podcast: Fighting back against cybercriminals who know your vulnerabilities 
There has been a sharp uptick this year in ruthless tactics by cybercriminals, who are now directly threatening patients with the release of sensitive…
Headline
AHA shares new resources and offerings from partners to help bolster cybersecurity efforts
The AHA July 24 shared information and new offerings from some of its private sector partners that can help hospitals and health systems strengthen their…
Headline
Pollack discusses innovation, future of the health care field 
AHA President and CEO Rick Pollack opened the 2024 AHA Leadership Summit in San Diego discussing the similarities of the U.S. Navy Seals to the hospital field…
Headline
CrowdStrike technology outage causing global disruption across industries, including impacts on hospitals and health systems 
A non-malicious global technology outage that began in the early morning of July 19 is continuing to affect many industries and is having varying effects on…
Headline
AHA participates in health care cybersecurity summit 
John Riggi, AHA’s national advisor for cybersecurity and risk, participated July 18 as the opening keynote speaker in the Information Security Media Group’s…
Headline
Agencies issue advisory on threat of China-based cyber group 
A joint advisory issued the week of July 8 by the Cybersecurity and Infrastructure Security Agency, National Security Agency, FBI and several international…