Priya Patel
TLDR:
- RansomHub threatens Change Healthcare with double-extortion attack
- LockBit reorganizes and potentially rebrands as DarkVault
- Cybersecurity and Infrastructure Security Agency issues emergency directive due to Microsoft breach
It has been a tumultuous week in healthcare cybersecurity as RansomHub threatens Change Healthcare with a double-extortion attack, claiming possession of sensitive data. Cybersecurity leaders emphasize the need for stronger regulations around third-party access and robust security programs to mitigate such risks. On the other hand, LockBit, a ransomware group known for targeting healthcare organizations, is reorganizing and may potentially rebrand as DarkVault. The Cybersecurity and Infrastructure Security Agency has issued an emergency directive to address the impact of a breach on federal agencies by Russian state-sponsored cyber actors. Microsoft has released a substantial number of vulnerabilities that all sectors, including healthcare IT, need to pay attention to.
