On October 28, 2020, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services (HHS) issued a joint cybersecurity advisory (the Joint Cybersecurity Alert) to warn the healthcare sector that there is “credible information of an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers.”
The complete Joint Cybersecurity Alert provides specific details regarding this threat and can be found here.
Healthcare companies should be aware of the heightened risk of potential ransomware attacks targeting the sector. Below are some practical steps you can take right now to decrease the risk of attack and to be better prepared should your organization fall victim:
- Review your cyber insurance coverage. Is it up to date and does it cover ransom?
- Do you have a good incident response plan? If your company is still in WFH mode, be sure that all who may be activated in the event of an incident have a paper copy of the plan at home.
- Do you have a way for senior management to communicate if your network systems are all down? We recommend setting up a secure texting…