Ransomware Targeting the Healthcare and Public Health Sector

The Department of Health and Human Services (HHS), the Cybersecurity and Infrastructure Security Agency (CISA), and the Federal Bureau of Investigation (FBI) held a call on October 28 to discuss information related to an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers. CISA has posted “Alert (AA20-302A) Ransomware Activity Targeting the Healthcare and Public Health Sector,” a joint cybersecurity advisory on the threat which was referenced on the call. This advisory describes the tactics, techniques, and procedures used by cybercriminals against targets in the Healthcare and Public Health Sector to infect systems with Ryuk ransomware for financial gain.

​CISA, FBI, and HHS have credible information of an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers. CISA, FBI, and HHS are sharing this information to provide warning to healthcare providers to ensure that they take timely and reasonable precautions to protect their networks from these threats.

​To receive alerts regarding threats of this nature, you can subscribe to the Office of the Assistant Secretary for Preparedness and Response (ASPR) Critical Infrastructure Protection Mailing List here.

Read the Special Bulletin from the American Hospital Association regarding the imminent ransomware threat against U.S. hospitals.