Ransomware is a type of malicious software (malware) that systematically encrypts files accessible to the user. The malware then demands a ransom, frequently payable in Bitcoin, in exchange for the encryption key to decrypt the files. While ransomware is not new, during 2016, there was a dramatic increase in the number of attacks against healthcare organizations.  In the spring of 2016, the FBI issued an alert and requested that organizations do not pay ransomware demands.  Eagle Consulting Partners recommends multiple security controls to prevent these attacks including employee security awareness training, web filtering technology, a robust patching program and others.  Critical controls to mitigate this exploit should it occur are robust incident response capability, isolated and redundant data backup and data recovery capability.

Pin It on Pinterest