North Korean ransomware once again threatens healthcare

Health and Wellness Informatics News

The joint advisory warns healthcare organizations to deploy effective software to protect health records. CISA, the FBI, and the treasury department.

North Korea is once again becoming a threat to healthcare via ransomware. As a result, the Public Health Care Sector in the United States is on alert from North Korean-sponsored ransomware. As of July 06. Cybersecurity, in association with Infrastructure Security Agency, the FBI, and the Treasury Department, are trying to function together.

The State-sponsored cyber actors make use of Maui Ransomware. As a result, the Healthcare and Public Health sectors are at threat. They even outlined their concern by stating, “Since May 2021, the FBI has observed and responded to multiple Maui ransomware incidents at HPH Sector organizations; north Korean state-sponsored cyber actors used Maui ransomware in these incidents to encrypt servers responsible for healthcare services – including electronic health records services, diagnostics services, imaging services, and intranet services.”

There are also some cases where the incident can disrupt the services. The targeted HPH sector is one of the defining healthcare sectors. It is one access vendor for incidents. Certain healthcare agencies are taking this ransomware very seriously.

Cybersecurity is continuously recommending mitigation. They are going to train an employee in the recognization. It will help in enabling and enforcing a multi-factor. The authentication focused on downloading antivirus and antimalware software.

The cyber hygiene steps will focus on sending the alert message. The limited access to data is possible by setting an infrastructure of the public key. Digital Certificates will focus on the network and the internet of things. Medical devices and health records are going to get safeguarded via data packages. They are not to get manipulated by any kind of man-in-the-middle attacks.

The use of standard user account on various internal system is another way to safeguard the data. However, the administrative accounts are functioning to reach administrative system privilege. Therefore, they should ensure zero or no privilege.

There is also a need to turn off network device management. The interfaces such as Telnet and HTTP for WANs will provide healthcare for a strong firewall. In addition, it will give ransomware a hard time breaking through.


  • No comments yet.
  • Add a comment

    Join our Mailing list!

    Get all latest news, exclusive deals and updates.