New Cybersecurity Resources
Updated: Aug 14, 2020
Please consider the following information on the TAIDOOR malware and new cybersecurity resources that you may find useful.
TAIDOOR Malware Analysis Report (MAR): The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Defense identified malicious malware variants called TAIDOOR, which are being used by Chinese government cyber actors. The malware variants are believed to be used in conjunction with proxy servers to penetrate and exploit networks. The MAR includes response actions and mitigation techniques. Organizations are encouraged to consider any TAIDOOR malware activity as having the highest priority for enhanced mitigation efforts and should report the activity to CISA or the FBI Cyber Watch.
FBI Flash on Netwalker Ransomware: The FBI provided updated indicators of compromise and mitigation strategies for Netwalker ransomware attacks. This spring and summer, the FBI received notifications of Netwalker ransomware attacks on various entities, including a US public health organization. The attackers leveraged diverted resources and staffing during the COVID-19 pandemic to deploy Netwalker ransomware on organizations.
CISA’s Cyber Essential Toolkit: CISA has released the first two of six “Cyber Essential Toolkits.” This package will help small organizations and local government agencies to understand and address cybersecurity risks. Each toolkit will detail an “essential element” of cyber readiness. The first installment addresses the role of leadership, and the second provides actions for staff as users.
405(d) Post Newsletter: The 405(d) task group, a private-public partnership within the US Department of Health and Human Services (HHS), created a newsletter to further the 405(d) mission to align health care industry security approaches. The most recent newsletter features an article on how to protect organizations while teleworking during COVID-19 and highlights 405(d)’s available resources.
Health Sector Cybersecurity Coordination Center (HC3) Website: HC3, which sits within HHS, recently launched a website to further boost coordination and information sharing within the health care sector. The website will host sector resources, including briefings that highlight relevant cybersecurity topics and awareness of threats, high-level background information intended for both technical and executive audiences, and white papers with in-depth information on specific topics.
We would like to thank our colleagues from the Greater New York Hospital Association (GNYHA) for the information in this post.