The Federal Bureau of Investigation and a number of its partners issued a joint advisory last week, highlighting cybercriminal activities by a ransomware group known as BianLian. With a history of attacking the healthcare sector, BianLian has targeted various other industries as well. The group gains system access using legitimate remote desktop protocol credentials then steals system-user credentials. The hackers then extort the target organizations by threatening to publicly release the stolen data. By using a double-extortion strategy, in which it steals sensitive financial and personal information while also encrypting the victims’ tech platforms, the group often demands an additional ransom in exchange for unlocking the inaccessible systems. The investigative agencies believe the cybercriminal group is likely based in Russia and employs tactics to misattribute its location. The advisory includes examples of ransom notes that came from the hacker operation.
Big breeches: Breeches and hacks can happen to any healthcare organization through email, network servers, EHRs, and other means. So far in 2024, more than 385 healthcare cyberattacks have been reported. A list of breeches affecting more than 500 people can be accessed through the Department of Health and Human Services Office for Civil Rights website.