HHS warns hospitals to safeguard against LockBit 2.0 ransomware

Anthony Vecchione | | Health Exec | Policy & Regulations

The ransomware application Lockbit 2.0 poses a significant cyberthreat to hospitals and other healthcare organizations, according to an alert issued by the HHS Office of Information Security.

In a Feb. 7 report, HHS revealed that there are “indicators of compromise associated" with LockBit 2.0 ransomware.”

“Although the LockBit 2.0 cybercrime gang claims to not attack healthcare organizations, all ransomware continues to act as a major cyberthreat against the U.S. Healthcare and Public Health (HPH) Sector. It is extremely important to both know and apply the information included in this Flash (alert),” HHS said in the notification.

The alert comes in the wake of a similar warning by the FBI published Feb. 4.

“LockBit 2.0 ransomware compromises victim networks through a variety of techniques, including, but not limited to, purchased access, unpatched vulnerabilities, insider access, and zero-day exploits,” according to the FBI alert.

HHS recommends that organizations reduce their attack surface as much as possible by taking the following steps:

  • Utilize the included indicators of compromise in your threat hunting and detection programs.
  • Use multi-factor authentication and strong passwords.
  • Establish a robust data backup program.
  • Consider signing up for CISA’s cyber hygiene services.

Anthony Vecchione

Related Content

Q&A: Proposed changes to Social Security Act would recognize pharmacists as healthcare providers
10 signs AI is ‘eating the world (of venture capital)’
Mangione now faces federal charges, death penalty in murder of UHC CEO
FDA issues Class I recall on counterfeit infusion pump batteries
FDA issues alert on PCNL sheath safety after patient death
DOJ sues CVS over unlawful opioid prescriptions and reimbursement

Around the web

Cardiovascular Business
FDA says years-long tirzepatide shortage is resolved, will give limited leeway to compounders

The tirzepatide shortage that first began in 2022 has been resolved. Drug companies distributing compounded versions of the popular drug now have two to three more months to distribute their remaining supply.

AI in Healthcare
From Capitol Hill to a hospital near you? 5 federal recommendations for healthcare AI policy

The 24 members of the House Task Force on AI—12 reps from each party—have posted a 253-page report detailing their bipartisan vision for encouraging innovation while minimizing risks. 

Cardiovascular Business
Merck spends up to $2B to license new weight loss drug with potential heart benefits

Merck sent Hansoh Pharma, a Chinese biopharmaceutical company, an upfront payment of $112 million to license a new investigational GLP-1 receptor agonist. There could be many more payments to come if certain milestones are met.