Category: Technology

Philips ISCV and Xcelera flaws

Post author By Don Kasprzak
Post date February 10, 2019

Philips has yet to patch a flaw that allows cybercriminals to inject ransomware or backdoors which can result in PHI at risk of compromise.

The Philips ISCV version 2.x and earlier and Xcelera 4.x and 3.x the servers contain 20 Windows services of which the executables are being present in a folder where authenticated users have write permissions. The services run as a local admin account or local system account, and if a user were to replace one of the executables with a different program, that program too would be executed with local admin or local system permissions.

Philips confirms these vulnerabilities affect their IntelliSpace Cardiovascular system version 2.3.1, 3.1 and earlier. Also impacted are version 4.x and 3.x Xcelera systems (PDF). In ISCV version 3.x and earlier and Xcelera 4.x and 3.x there are 16 Windows services flaws allow hackers to run the computer with local admin rights.

Tags cybersecurity, medical device, nist, philips, ransomware

Cyberinfrastructure Education Network Ransomware Technology

Harvard Cybersecurity

Post author By Don Kasprzak
Post date December 29, 2018

Harvard’s cybersecurity course is certainly a demanding slice of your life. However, I gained valuable insights from Eric Rosenbach and cybersecurity leaders from National Security Agency, Akamai, and Google. In addition, this offered me an opportunity to connect with cybersecurity leaders across wide ranging business and geographic locations.2018 proved a challenge, looking beyond repeated megabreaches that dominated news headlines. Did you suffer from breach fatigue? It was like the movie Groundhog Day.

At some point (probably sooner than we think) all the data impacting all the users connected to the global internet will all be available on the dark web. All for a price…

Tags culture, cybersecurity, data breach, healthcare, megabreach, risk management, Technology, tipping point, trends

Cyberinfrastructure Education Milwaukee Ransomware Technology

2018 Ransomware attacks on Healthcare

Post author By Don Kasprzak
Post date March 4, 2018

The impact of ransomware, botnets and crypto mining will continue to impact hospitals and clinics in 2018.

ransomware, botnets and crypto mining

More precise, targeted attacks including botnets and crypto mining are projected to overtake global attacks hospitals witnessed with WannaCry and NotPetya.

Healthcare Information Security teams must show risk tolerance and carefully monitor new trends in malware, patch management, and change management.

Ransomware via botnets and crypto mining will continue to drive agile healthcare technology solutions, This will impact business shifts in governance and policy across US healthcare facilities as new attacks continue to focus on financial based malware.

Moving into the new year global attacks may give way to targeted attacks, botnets and crypto mining that have been branded as WannaMine.

Tags badrabbit, botnets, crypto mining, cyber attacks, cyberinsurance, ECRI, fda, healthcare, HITRUST, malware, nist, notpetya, ransomware, wannacry, wannamine

Cyberinfrastructure Education Network Ransomware Technology

Healthcare’s 2018 threat is crypto mining

Post author By Don Kasprzak
Post date February 25, 2018

Crypto mining attacks are more stealth than WannaCry.

Cybercriminals continue to drive crypto mining attacks on hospital computers. Some crypto mining attacks will require hospitals report a breach of PHI. If the crypto installed is the popular WannaMine, this is considered a reportable ransomware attack.
Last year ransomware took the American healthcare industry by storm. Botnets and crypto mining experienced continued growth since 2016. The WannaCry attack on the British health system and NotPetya simply pushed them off the front pages. They did not disappear. Make no mistake, crypto mining is the new attack vector in 2018 after strong growth over the previous two years.

Tennessee hospital EMR server hit with crypto mining

On January 26th, 2018 Decatur County General Hospital in Parsons, Tennessee announced (PDF) that over 20,000 PHI records were compromised by crypto mining software discovered on the hospital’s main electronic medical records server.

Tags crypto mining, cyber insurance, cybersecurity, healthcare, malware, medical device, ransomware

Cyberinfrastructure Education Ransomware Technology

Ransomware Vendor Solutions

Post author By Don Kasprzak
Post date February 20, 2018

There are a number of emerging vendor solutions to address ransomware threats as 2018 begins.

ransomware, botnets and crypto mining The continuing ransomware threats in 2018 may shift from global attacks to botnets and cryptocurrency attacks. The financial attacks like WannaCry and NotPetya will also continue when cybercriminals can exploit known vulnerabilities on a global scale. The lessons learned from 2017 have reached a critical point for healthcare to ensure hospital attacks on IT infrastructure and medical devices are now protected. Vendors are responding with innovative solutions that may stop a ransomware encryption attack. We look forward to partnering with vendors who can provide this new level of cyber defense.

The impact of ransomware, botnets and crypto mining will continue to impact hospitals and clinics in 2018.

Crypto mining attacks are more stealth than WannaCry.

Tennessee hospital EMR server hit with crypto mining

There are a number of emerging vendor solutions to address ransomware threats as 2018 begins.

Vendor White Papers:

Cisco Ransomware Defense Validated Design Guide (PDF)

US Department of Justice How to Protect Your Networks from Ransomware

ECRI 2018 Top 10 Tech hazards: Ransomware

ComputerWeekly WannaCry a signal moment, says NCA

Which? Ransomware: what it is and how to stop it

Cisco
Ransomware Defense Validated Design Guide (PDF)

US Department of Justice
How to Protect Your Networks from Ransomware

ECRI
2018 Top 10 Tech hazards: Ransomware

ComputerWeekly
WannaCry a signal moment, says NCA

Which?
Ransomware: what it is and how to stop it