Hospital Cyber Attacks | MITRE ATT&CK ver 12
CyberInsights #72
Hospitals face the brunt of ransomware
Hospitals cannot run without technology, but tech does not have a seat at the high table.
A hospital in France was forced to shut down due to a ransomware attack. They had to shut operations. One of the largest hospitals in India faced a cyber attack. Services were affected for more than a week.
Technology just crept up on hospitals. Systems that eased operations were set up and soon became indispensable. While hospitals hired tech professionals, it was mostly in support roles, not strategic. Suddenly, hospitals feel the need of a CTO / CIO who can visualise the direction of technology. It’s time to do that.
Take Action:
Cyberattacks have a deeper cause. If you are in retail medical services, look at your technology and infosec team to check where they stand in the ‘pecking order’. You will know what to do.
Version 12 of MITRE’s ATT&CK framework is out
It includes Industrial Control System (ICS) attacks
The updated framework has focused on ICS and introduction of ‘Campaigns’.
Campaigns are “any grouping of intrusion activity conducted over a specific period of time with common targets and objectives.”
Take Action:
This one is for the red teams and the pen testers. Review the new version and identify the new attacks and campaigns.
Enjoyed reading? Receive this in your email every week.