Agencies advise organizations to protect against BlackCat/ALPHV ransomware

Apr 22, 2022 - 05:13 PM
FDAcybersecurity

The FBI this week released a report detailing indicators of compromise associated with ransomware variants that have compromised at least 60 entities worldwide, and recommendations for organizations to reduce their risk of attack. The Cybersecurity & Infrastructure Agency today encouraged organizations to review and apply the recommendations. 

John Riggi, AHA’s national advisor for cybersecurity and risk, said, “In addition to containing actionable indicators of compromise, this FBI FLASH points out that the BlackCat gang is using advanced programming language (known as RUST) that increases the reliability of their attacks, and offering their capability to other hackers as ‘ransomware as a service.’ It also notes that members of the BlackCat ransomware gang have been linked to the Russian-speaking Darkside/Blackmatter gang responsible for the Colonial Pipeline ransomware attack in 2021 – thereby indicating this group may possess the capability to attack U.S. critical infrastructure. Whether they have the current intent remains to be seen. Given the possible Russian connection and the flurry of recent government warnings of Russian-state sponsored and criminal cyber threats to U.S. critical infrastructure, the BlackCat ransomware group is of significant concern.”   

For more information on this and other cyber risks, contact Riggi at jriggi@aha.org.

Related News Articles

Headline
CISA extends comment period for proposed rule on cyber incident reporting
The Cybersecurity and Infrastructure Security Agency May 3 extended the comment period to July 3 for the April 4 proposed rule that would implement cyber…
Headline
White House releases critical infrastructure memo empowering CISA to strengthen health care security 
The Biden Administration April 30 released a memo announcing updated critical infrastructure protection requirements, which include the Cybersecurity &…
Headline
Agencies issue cyber advisory on North Korean spear phishing efforts 
The FBI, State Department and National Security Agency issued a warning about attempts by North Korean state-sponsored cyberthreat actors to exploit improperly…
Headline
Lawmakers grill UHG CEO at hearings following Change Healthcare cyberattack
Senate and House lawmakers May 1 grilled UnitedHealth Group CEO Andrew Witty about the continued fallout from the Feb. 22 cyberattack on Change Healthcare —…
Headline
AHA advertorial: Is UnitedHealth Group ‘Too Big To Fail’? 
“If you are asking yourself how a cyberattack on a single company could cause such massive damage, you are asking the right question,” an AHA advertorial in…
Headline
AHA provides update to Senate, House committee leaders ahead of hearings on fallout from Change Healthcare cyberattack 
The AHA April 29 provided the Senate Committee on Finance and House Energy and Commerce Subcommittee on Oversight and Investigations an update regarding…