Tag: Ransomware

Actions to reduce your risk:

• Discuss the issue of cybersecurity with your IT/website vendor and have them block known sites that provide known functionality to the malware (reference the IOC list below)
• Have your IT/website vendor monitor endpoint detection on servers and workstations for changes in applications and running services
• Have your IT/website vendor monitor all new account creations. Especially critical are those with administrator access
• Have your IT/website vendor confirm that your data backup systems are in place and working effectively. Remember that offsite data storage is preferable
• Ensure your practice’s business continuity and disaster recovery plans are up-to-date and readily available
• Discuss the heightened threat with your administrative and clinical staff and the increased need to stay highly diligent during this time
• Consider instituting a practice-wide policy prohibiting staff use of personal email accounts as a method to decrease your risk
• Remind staff not to open emails and/or attachments from unknown senders (and even be cautious with attachments from recognized senders)
• Encourage staff to inform you regarding any suspicious email or cyber incident