Agencies update technical signatures of destructive malware, recommend additional defensive actions

Apr 29, 2022 - 04:18 PM
cybersecurity

The Cybersecurity and Infrastructure Security Agency and FBI yesterday updated their February advisory on destructive malware targeting organizations in Ukraine to include additional indicators of compromise (IOCs), and encouraged U.S. organizations to take certain actions to monitor and protect their networks.

John Riggi, AHA’s national advisor for cybersecurity and risk, said, “This advisory provides additional IOCs for the WhisperGate malware, first discovered on Ukrainian networks in January 2022. Although the malware poses as ransomware, it actually destroys the data making it unrecoverable. Our ongoing concern is that U.S. hospitals and health systems, or one of our mission-critical service providers, become collateral damage in a destructive malware attack targeted against Ukraine. It is strongly recommended that all heightened defensive measures remain in place and cross-function cyber incident response plans, downtime procedures and backups be tested.”  

For more information on this or other cyber and risk issues, contact Riggi at jriggi@aha.org.

Related News Articles

Headline
AHA Podcast: Start with Defense — Building a Cyber-ready Team 
Health care is under constant cyberattack threat, but how prepared is the industry to fight back? The lack of resources is especially acute in rural areas. In…
Headline
AHA names new deputy national advisor for cybersecurity risk
AHA Aug. 23 named James “Scott” Gee deputy national advisor for cybersecurity and risk. Gee will work with John Riggi, AHA’s national advisor for cybersecurity…
Headline
HHS alerts health sector to cyberthreat from Everest ransomware group
The Department of Health and Human Services Health Sector Cybersecurity Coordination Center (HC3) this week released an advisory about Everest, a ransomware-as…
Headline
AHA blog: How to prepare for third-party cyber risk 
In his latest AHA Cyber Intel blog, John Riggi, AHA national advisor for cybersecurity and risk, explains why cybercriminals are shifting from directly…
Headline
CISA guidance informs users on software products which should be secure by design and demand 
The Cybersecurity and Infrastructure Security Agency and FBI Aug. 8 released guidance on secure by design software products which includes resources to assess…
Perspective
Keeping Up Our Guard and Fighting Back Against Cybercrime
It seems like barely a week goes by without a new cyberattack that affects health care providers. Often, it’s a ransomware attack conducted by foreign criminal…