As reported in mid-July by the Associated Press, the federal government – the FBI and Justice Department specifically – recently upended the activities of a North Korean government sponsored hacking group that has targeted U.S. hospitals. Following a cyberattack last year, a Kansas hospital contacted the FBI after paying a ransom to cybercriminals that attacked its system with ransomware. The FBI subsequently traced the payment and was able to recover the entire ransom payment. This serves as a reminder that U.S. hospitals should promptly report to the FBI and their local Cybersecurity and Infrastructure Security Agency (CISA) office immediately (i.e. within 24 hours) any ransomware attacks or payments made in response to those attacks.
Recent FBI and DOJ Action Against Foreign Hackers Highlights Risk and Response Protocols for U.S. Hospitals
