Skip to main content
Sister Publication Links
  • ESG: THE NEW IMPERATIVE
Subscribe
  • My Account
  • Login
  • Subscribe
  • News
    • Current News
    • COVID-19
    • Providers
    • Insurance
    • Government
    • Finance
    • Technology
    • Safety & Quality
    • Transformation
    • People
    • Regional News
    • Digital Edition (Web Version)
    • Patients
    • Operations
    • Care Delivery
    • Payment
    • Midwest
    • Northeast
    • South
    • West
  • Digital Health
  • Insights
    • ACA 10 Years After
    • Best Practices
    • Special Reports
    • Innovations
  • Data/Lists
    • Rankings/Lists
    • Interactive Databases
    • Data Points
  • Opinion
    • Bold Moves
    • Breaking Bias
    • Commentaries
    • Letters
    • Vital Signs Blog
    • From the Editor
  • Events & Awards
    • Awards
    • Conferences
    • Galas
    • Virtual Briefings
    • Custom Media Event: ESG Summit
    • Webinars
    • Nominate/Eligibility
    • 100 Most Influential People
    • 50 Most Influential Clinical Executives
    • Best Places to Work in Healthcare
    • Excellence in Governance
    • Health Care Hall of Fame
    • Healthcare Marketing Impact Awards
    • Top 25 Emerging Leaders
    • Top 25 Innovators
    • Diversity in Healthcare
      • - Luminaries
      • - Top 25 Diversity Leaders
      • - Leaders to Watch
    • Women in Healthcare
      • - Luminaries
      • - Top 25 Women Leaders
      • - Women to Watch
    • Leadership Symposium
    • Social Determinants of Health Symposium
    • Transformation Summit
    • Women Leaders in Healthcare Conference
    • Best Places to Work Awards Gala
    • Health Care Hall of Fame Gala
    • Top 25 Diversity Leaders Gala
    • Top 25 Women Leaders Gala
    • - Hospital of the Future
    • - Value Based Care
    • - Supply Chain Revenue Cycle
    • - Hospital at Home
    • - Workplace of the Future
    • - Virtual Health
    • - Future of Healthcare Staffing
  • Multimedia
    • Podcast - Beyond the Byline
    • Sponsored Podcast - Healthcare Insider
    • Video Series - The Check Up
    • Sponsored Video Series - One on One
  • MORE +
    • Advertise
    • Media Kit
    • Newsletters
    • Jobs
    • People on the Move
    • Reprints & Licensing
MENU
Breadcrumb
  1. Home
  2. Cybersecurity
April 20, 2022 01:41 PM

HHS warns of 'exceptionally aggressive' ransomware threat

Jessica Kim Cohen
  • Tweet
  • Share
  • Share
  • Email
  • More
    Reprints Print
    Copy of data_i.png
    MH Illustration

    A cybersecurity center at the Health and Human Services Department is warning healthcare and public health organizations to guard against an "exceptionally aggressive" ransomware group that encrypts and steals data from its victims.

    "Hive is an exceptionally aggressive, financially-motivated ransomware group known to maintain sophisticated capabilities who have historically targeted healthcare organizations frequently," according to an analyst note published this week by the Health Sector Cybersecurity Coordination Center, a center in HHS' Office of Information Security.

    The Hive ransomware group, like a growing number of ransomware operators, conducts "double extortion."

    While ransomware operators have traditionally encrypted files and demanded organizations pay to regain access to that data, groups like Hive also download files and threaten to leak them on the dark web if the victim organization doesn't purchase their decryption software. Hive also searches systems it infiltrates to disrupt and delete backup files, which organizations have historically relied upon to avoid paying ransoms.

    Ransomware attacks on hospitals are not only expensive to address, but can also impact patient care—increasing length of stay and delaying care by cutting off access to medical records and forcing hospitals to divert patients to other facilities.

    Hive ransomware is most often deployed through common methods like compromising virtual private networks, or VPNs, and through phishing emails.

    The group uses a "ransomware-as-a-service" model, in which the group develops and operates the ransomware, while other hackers infiltrate organizations and deploy the malware.

    Hive has been operating since at least June 2021, and has been "very aggressive in targeting the U.S. health sector," said the report by the Health Sector Cybersecurity Coordination Center, also known as HC3. In 2021's third quarter, it was the fourth most active ransomware operator across industries, according to a report from company Intel 471 and cited by HC3.

    Hive accounted for 6% of ransomware attacks from July to September 2021, after LockBit 2.0, 33%; Conti, 15.2%; and BlackMatter, 6.9%, Intel 471 wrote.

    HC3 in its analyst note recommended organizations protect against Hive as they do other ransomware variants, taking precautions like setting up two-factor authentication and strong passwords, backing up data to multiple locations, continuously monitoring IT systems for signs of unauthorized access, and installing software updates quickly, for both traditional IT systems and network-connected medical devices.

    HC3 identified a method to decrypt data encrypted by Hive discovered by researchers, but also acknowledged that the Hive group has "likely made adjustments as they continue to aggressively attack." In an example of a ransom note sent to a victim, Hive warned that trying to decrypt data using third-party software could cause "irreversible damage."

    Healthcare providers, insurers and their business associates have reported 140 data breaches to HHS' Office for Civil Rights so far this year, involving data on more than 7.5 million patients. Last year, organizations reported more than 700 breaches—the highest tally since the office began tracking them in 2010—that affected more than 45 million patients.

    Letter
    to the
    Editor

    Send us a letter

    Have an opinion about this story? Click here to submit a Letter to the Editor, and we may publish it in print.

    Recommended for You
    Nearly 4M patients hit in healthcare breaches reported last month
    Nearly 4M patients hit in healthcare breaches reported last month
    mh20171218_ransomware_WEB_i_i_i.jpg
    Cybersecurity attacks cost healthcare systems more than any other sector, new report finds
    Sponsored Content
    Health IT Strategist (HITS) Newsletter: Sign up for the latest IT and medical technology news delivered 3 days a week (M, W, F).
     
    Get Newsletters

    Sign up for enewsletters and alerts to receive breaking news and in-depth coverage of healthcare events and trends, as they happen, right to your inbox.

    Subscribe Today
    MH Magazine Cover

    MH magazine offers content that sheds light on healthcare leaders’ complex choices and touch points—from strategy, governance, leadership development and finance to operations, clinical care, and marketing.

    Subscribe
    Connect with Us
    • LinkedIn
    • Twitter
    • Facebook
    • RSS

    Our Mission

    Modern Healthcare empowers industry leaders to succeed by providing unbiased reporting of the news, insights, analysis and data.

    Contact Us

    (877) 812-1581

    Email us

     

    Resources
    • Contact Us
    • Advertise with Us
    • Ad Choices Ad Choices
    • Sitemap
    Editorial Dept
    • Submission Guidelines
    • Code of Ethics
    • Awards
    • About Us
    Legal
    • Terms and Conditions
    • Privacy Policy
    • Privacy Request
    Modern Healthcare
    Copyright © 1996-2022. Crain Communications, Inc. All Rights Reserved.
    • News
      • Current News
      • COVID-19
      • Providers
      • Insurance
      • Government
      • Finance
      • Technology
      • Safety & Quality
      • Transformation
        • Patients
        • Operations
        • Care Delivery
        • Payment
      • People
      • Regional News
        • Midwest
        • Northeast
        • South
        • West
      • Digital Edition (Web Version)
    • Digital Health
    • Insights
      • ACA 10 Years After
      • Best Practices
      • Special Reports
      • Innovations
    • Data/Lists
      • Rankings/Lists
      • Interactive Databases
      • Data Points
    • Opinion
      • Bold Moves
      • Breaking Bias
      • Commentaries
      • Letters
      • Vital Signs Blog
      • From the Editor
    • Events & Awards
      • Awards
        • Nominate/Eligibility
        • 100 Most Influential People
        • 50 Most Influential Clinical Executives
        • Best Places to Work in Healthcare
        • Excellence in Governance
        • Health Care Hall of Fame
        • Healthcare Marketing Impact Awards
        • Top 25 Emerging Leaders
        • Top 25 Innovators
        • Diversity in Healthcare
          • - Luminaries
          • - Top 25 Diversity Leaders
          • - Leaders to Watch
        • Women in Healthcare
          • - Luminaries
          • - Top 25 Women Leaders
          • - Women to Watch
      • Conferences
        • Leadership Symposium
        • Social Determinants of Health Symposium
        • Transformation Summit
        • Women Leaders in Healthcare Conference
      • Galas
        • Best Places to Work Awards Gala
        • Health Care Hall of Fame Gala
        • Top 25 Diversity Leaders Gala
        • Top 25 Women Leaders Gala
      • Virtual Briefings
        • - Hospital of the Future
        • - Value Based Care
        • - Supply Chain Revenue Cycle
        • - Hospital at Home
        • - Workplace of the Future
        • - Virtual Health
        • - Future of Healthcare Staffing
      • Custom Media Event: ESG Summit
      • Webinars
    • Multimedia
      • Podcast - Beyond the Byline
      • Sponsored Podcast - Healthcare Insider
      • Video Series - The Check Up
      • Sponsored Video Series - One on One
    • MORE +
      • Advertise
      • Media Kit
      • Newsletters
      • Jobs
      • People on the Move
      • Reprints & Licensing