The Cybersecurity Infrastructure Security Agency, Federal Bureau of Investigation, and Department of Health and Human Services have jointly posted an advisory to warn hospitals and other health care providers about the threat of malicious attacks on their information systems. At least six hospitals across the United States were recently victimized by attacks using Trickbot malware within a 24-hour period. These attacks have led to requests for ransom to release data, data theft, and the disruption of services.
The advisory describes how the malware works, identifies indicators that a system may have been infected with the malware, and sets forth measures that health care providers may take to prevent and minimize damage from an attack and to respond to an attack if one occurs. With the surge in coronavirus hospitalizations, the disruptions that such threats may cause raise more and more serious concerns, and health care providers should be on heightened alert.