The US Department of Health and Human Services (HHS) Health Sector Cybersecurity Coordination Center (HC3) has released a brief detailing the tactics and techniques used by the Royal and Black Cat ransomware. HC3 says that both strains of ransomware have been used to “aggressively target” the US health sector.
Note
- Read the analysis even if you’re not in the healthcare sector. Not only to understand these adversaries and how their malware works, but also for IOCs and mitigations you can leverage. Even if they all look familiar, it’s a good idea to check for tricks you and your team may have missed.
- Cybercriminal gangs target every infrastructure sector. All information sharing and analysis centers benefit from analysis of Royal and Black Cat ransomware tactics and techniques. Cyber defenders use the brief to revisit your cyber defense plan and its implementation.
Read more in
