|
|
|
|
Healthcare and Public Health Sector Cybersecurity Special Bulletin
December 20, 2023
|
|
|
|
|
This email notification was produced by the Division of Critical Infrastructure Protection (CIP) within the U.S. Department of Health and Human Services' (HHS) Office of the Administration for Strategic Preparedness and Response (ASPR).
|
|
|
|
|
Cyber Alert! ALPHV BlackCat Ransomware Advisory
On Tuesday December 19, the US Justice Department announced that it has seized websites of the second most prolific ransomware-as-a-service (RaaS) operation, BlackCat, also called ALPHV or Noberus. Today, ALPHV/BlackCat announced that its ransomware as a service (RaaS) criminal syndicate affiliates could now target critical infrastructures such as nuclear power plants, hospitals in US in response.
The Federal Bureau of Investigation (FBI) and the Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) have released a Joint CSA to disseminate known indicators of compromise (IOCs) and Tactics, Techniques, and Procedures (TTPs) associated with the ALPHV Blackcat RaaS identified through FBI investigations as recently as December 6, 2023. This advisory provides updates to the FBI FLASH BlackCat/ALPHV Ransomware IOC released April 19, 2022. Since previous reporting, ALPHV Blackcat actors released a new version of the malware, and the FBI identified over 1000 victims worldwide targeted via ransomware and/or data extortion. FBI and CISA encourage critical infrastructure organizations to implement the recommendations in the Mitigations section of the CSA to reduce the likelihood and impact of ALPHV Blackcat ransomware and data extortion incidents.
|
|
Subscribe to HPH Sector Cyber Bulletins
Did a colleague forward you this HPH Sector Cyber Bulletin? Receive these cyber bulletins directly by subscribing to the HPH Sector bulletins. HPH Sector bulletins inform stakeholders about the most significant issues facing the sector including cybersecurity, medical supply chains, COVID-19, and more. If you are interested in receiving HPH Sector bulletins, visit the CIP bulletins subscription webpage.
|
|
Comments and Questions
If you have any additional questions, we encourage you to contact us at CIP@hhs.gov
|
|
Traffic Light Protocol (TLP) Designation: CLEAR
|
|
TLP: CLEAR information may be distributed without restriction.
|
|
|
. Disclaimer: ASPR provides the above sources of information for the convenience of the HPH Sector community and is not responsible for the availability or content of the information or tools provided, nor does ASPR endorse, warrant or guarantee the products, services or information described or offered. It is the responsibility of the user to determine the usefulness and applicability of the information provided.
|
|
|
|
|
|
|
|
|
------------------------------
Robert Bastani
Supervisory Information Technology Specialist
Administration for Strategic Preparedness and Response (ASPR)
Washington DC
(202)691-2080
------------------------------