New threat brief on ransomware and healthcare

The Healthcare Cybersecurity Coordination Center (HC3) — a part of the HHS Office of the CIO —has released a threat brief, “Ransomware and Healthcare,” that provides an overview of ransomware and how it impacts the healthcare and public health sector; it includes steps to mitigate the risk of ransomware attacks, such as backing up data, educating employees, and segmenting networks.

Threat brief: Ransomware Tightens Grip on Healthcare

For years, ransomware has plagued critical infrastructure, but recently, the healthcare sector has become a prime target for sophisticated, well-funded cybercriminals. These groups often leverage data-leak extortion tactics, adding another layer of pressure and potential damage. The numbers paint a grim picture: in 2023 alone, over 630 ransomware incidents crippled healthcare institutions worldwide. These attacks directly threaten public health and safety, disrupting operations and potentially jeopardizing patient care.

HC3 sounds an urgent alarm, urging HPH organizations to arm themselves with knowledge. The newly released threat brief delves into the tactics and motivations of these cyber adversaries, providing critical insights to help healthcare providers build robust defenses. By understanding the evolving threats and implementing the recommended mitigation strategies, HPH organizations can take a proactive stance against ransomware and protect the health and well-being of their communities.

The full threat brief at HHS/HC3.