As we defend our health system against cyberattacks and other scamming methods, here’s something new to be aware of – especially for our providers. It’s a type of cyberattack using “Clop” ransomware that specifically targets healthcare providers in a new way.
The ransomware group has reportedly been infecting files that look like medical documents and subsequently requesting medical appointments in hopes of getting victims to open the malicious files.
Key info
Here are some key facts about how this type of ransomware works:
- Clop typically targets organizations with an annual revenue of $5 million or higher.
- These have included dentist and doctor offices and other smaller providers that operate as part of bigger healthcare systems.
- The ransomware group has been infecting files that are disguised to look like medical documents, submitting them to facilities and requesting a medical appointment in hopes of the documents being opened and reviewed.
- Practitioners may not think about cybersecurity when looking at patient data, particularly if it appears to be an email from another provider.
- CD-ROMs and image files are among the file types that have been infected with Clop malware.
How to protect against Clop ransomware
It is important to pay attention when browsing the internet and downloading, installing and updating software. Here are some safety tips:
- Think twice before you open email attachments or click on links. Check the email before clicking on anything, and do not open a file if the sending email address looks suspicious or if the file is not relevant to you.
- Download applications only from official sources (Apple or Google), utilizing direct download links. Third-party downloaders frequently spawn malicious apps, thus you should avoid three-party downloads.
- Keep systems updated. When it comes to software updates, it is essential to keep installed apps and systems updated; however, this should be achieved only through implemented functions or tools provided by the official developer.
- Ensure that all mobile devices have some anti-malware software installed and that this software is operational. Invest in a reliable anti-malware software for your personal mobile devices, because these tools can detect and eliminate malware before any harm is done.
If you have questions or concerns about Clop ransomware or other cybersecurity threats, please call the IT Service Desk at 423-431-6290.
NOTE: Content for this article was provided by SC Media, a leading online cybersecurity publication; Becker’s Hospital Review; and the Office of Information Security, a part of HHS.
