Cybercrime Group Targets Healthcare Providers

Cybercrime Group Targets Healthcare Providers

The FBI, CISA, and Department of HHS recently released information on the “Daixin Team.” This cybercrime group is actively targeting the U.S. healthcare and public health sector through ransomware and data extortion. 

The threat actors are gaining access to data through Virtual Private Network (VPN) servers not patched for current vulnerabilities. They are able to gain access through the use of compromised credentials and phishing emails. Once they gained access, the threat actors move laterally via Secure Shell and RDP to reset account passwords, deployed ransomware, and exfiltrated data on the network.

While primarily completed to address compliance with the HIPAA Security rule, conducting a HIPAA risk assessment with Tego will help identify security gaps exploited by Daixin and minimize your risk for these types of attacks. Our advisory team has been conducting HIPAA and other framework-based assessments and vulnerability scans for counties across North Carolina for more than eight years. Throughout that time, we have helped organizations align with regulatory requirements, reduce compliance risk and reduce cybersecurity risk. 

The deliverables from our assessments have been tested in state and OCR audits and have proven to be suitable to the government entities and regulators conducting the audit. Tego takes an IT point-of-view to audit and assessment. Leveraging our background in IT management and our close relationship with the Tego Professional Services team, Tego proves to be an IT ally and never an adversary. 

Supported by requirements set forth in the January 2021 Safe Harbor law, now is the time to schedule one. Additionally, utilizing a phishing tool like KnowBe4 can help prevent malicious emails from entering your environment. PhishRIP as part of the PhishER platform is a new email quarantine feature that integrates with Microsoft 365 and G Suite to help you remove, inoculate, and protect your organization against email threats so you can shut down active phishing attacks fast.

Since user-reported messages require some level of analysis to prioritize, you need a simple and effective way to not only respond to and mitigate these reported messages, but also find and remove those suspicious messages still sitting in your users’ mailboxes. This tool can be a huge time-saver for your Incident Response team.

Contact us today to schedule your HIPAA risk assessment or to learn more about the PhishER platform.

About the author
Jennifer Vosburgh is a seasoned Marketing and Communications professional. With over 15 years of experience, she has a strong background in Marketing, Communications, and Event Management. As Vice President of Tego Data Systems in Raleigh, NC, Jennifer is responsible for delivering full-scale Marketing Campaigns across all platforms including website, email, social media, events, and more.

By using this website you agree to our updated Conditions of Use and consent to the collection and use of your personal information as described in our updated Privacy Notice, which includes the categories of data we collect and information about your preferences and rights.