Ransomware remains a threat to governments all across the country, and recovery is a tremendous financial burden, as seen in the recent attack on Atlanta.Read More
Ransomware is a type of malicious software (malware) that systematically encrypts files accessible to the user. The malware then demands a ransom, frequently payable in Bitcoin, in exchange for the encryption key to decrypt the files. While ransomware is not new, during 2016 a dramatic increase in the number of attacks against healthcare organizations. In the spring of 2016, the FBI issued an alert and requested that organizations do not pay ransomware demands. Eagle Consulting Partners recommends multiple security controls to prevent these attacks including employee security awareness training, web filtering technology, a robust patching program and others. Critical controls to mitigate this exploit should it occur are robust incident response capability, isolated and redundant data backup and data recovery capability.
Cyber-attacks on healthcare providers increased from 2016 to 2017, and are still trending upwards. Extensive private data plus inadequate security makes healthcare organizations attractive targets for attackers and, all too often, victims of their own errors.Read More
SamSam ransomware is making a name for itself by attacking healthcare-related organizations. Prior to its famous attack on Allscripts, SamSam infected three hospitals. Ransomware remains a significant risk for organizations in 2018.Read More
Allscripts’ EHR taken down by ransomware for extended period of time. All clients were affected. Case study emphasizes the importance of backups and emergency plans.Read More
Hermes ransomware attacks small physician practice. Ransomware encrypted database files prior to routine backup. Entire EHR database lost and backup unusable. Attack illustrates the importance of multiple generations of backup and separating backup from computer network.Read More