Ransomware
Ransomware is a type of malicious software (malware) that systematically encrypts files accessible to the user. The malware then demands a ransom, frequently payable in Bitcoin, in exchange for the encryption key to decrypt the files. While ransomware is not new, during 2016, there was a dramatic increase in the number of attacks against healthcare organizations. In the spring of 2016, the FBI issued an alert and requested that organizations do not pay ransomware demands. Eagle Consulting Partners recommends multiple security controls to prevent these attacks including employee security awareness training, web filtering technology, a robust patching program and others. Critical controls to mitigate this exploit should it occur are robust incident response capability, isolated and redundant data backup and data recovery capability.
by Gary Pritts | Apr 21, 2016 | General News, Health Information Technology
Ransomware is a type of malware that quickly encrypts the files of the host computer system, rendering them unusable, and then displays a message demanding a ransom within a short period of time. If the ransom is paid, the victim may receive a decryption key to... Read More
by Gary Pritts | Aug 19, 2014 | HIPAA
We’ve blogged previously about a nasty piece of ransomware called CryptoLocker, which gives its victims a difficult choice: Either pay the “ransom” ($400, although other variants may have different fees) to re-gain access to your files or lose your valuable data... Read More
by Gary Pritts | Jun 13, 2014 | HIPAA
Health care organizations are constantly challenged to invest adequate resources in IT technology and services. This inside account of a ransomware attack (CryptoWall) and one organization’s response to it sheds some light on the importance of implementing... Read More
by Gary Pritts | Feb 13, 2014 | HIPAA
[Editor’s Note: During 2016 Healthcare experienced a dramatic increase of virulent ransomware attacks. Please also see a more a more comprehensive list of security contols in the post Preventing and Mitigating Ransomware Attacks, posted 10/4/2016.] A nasty... Read More
