A new cyberthreat targeting the health care industry has been identified and everyone’s help is needed to defend against it.
According to the Health Sector Cybersecurity Coordination Center (HC3)*, the Clop Ransomware Group is preying on the health care sector by sending infected files that look like medical documents and subsequently requesting medical appointments.
Like most ransomware groups, financial gain appears to be their primary goal. Through a technique known as the double extortion model, they encrypt and steal sensitive information. A ransom, or payment, is then demanded with non-payment resulting in sharing the sensitive information on the dark web.
Defend against this latest threat:
Here’s what you can do to protect yourself and Michigan Medicine:
- Use caution when surfing the web: Never download attachments or click any links from unknown senders.
- If you see a suspicious email, report it. Use the Report Phishing button in Outlook, or immediately contact the Service Desk if you have fallen victim to a phishing email.
- Back up your files regularly: Secure your backup in a safe place and disconnect the device when you aren’t using it. Ransomware can infect connected network and external drives.
- Update software frequently: Unpatched software can contain security holes that leave your system vulnerable. Only download updates from your app store or from a known, bookmarked source.
*HC3 is leading the charge for the U.S.Department of Health and Human Services in aiding the protection, coordination,and sharing of cybersecurity information to the health care and public health (HPH) sector