The FBI Cyber Division highlights examples of this type of cyberattack, starting with a spree of assaults spanning from June 2018 to January 2019 that focused not less than 65 healthcare cost processors. The attackers accessed these methods and entered data related to financial institution accounts below their management instead of clients’ banking and speak to data. In keeping with the discover, one sufferer of those assaults reported a lack of roughly $1.5 million.
Two unrelated assaults in February of this 12 months changed hospitals’ direct deposit data with that of client checking accounts managed by the attackers. These two assaults price their victims $700,000 in a single case and a whopping $3.1 million within the different. Lastly, the discover particulars an assault this April wherein a risk actor managed to entry a cost processing vendor for a healthcare firm whereas posing as an worker of stated firm. The risk actor used this unauthorized entry to vary the Automated Clearing Home (ACH) directions, directing funds away from their meant recipients and into an account managed by the attacker. This assault diverted two transactions totaling roughly $840,000 {dollars} earlier than it was found.
- Phishing emails, particularly concentrating on monetary departments of healthcare cost processors.
- Suspected social engineering makes an attempt to acquire entry to inner recordsdata and cost portals.
- Unwarranted adjustments in e-mail change server configuration and customized guidelines for particular accounts.
- Requests for workers to reset each passwords and 2FA telephone numbers inside a brief timeframe.
- Workers reporting they’re locked out of cost processor accounts on account of failed password restoration makes an attempt.
Apart from expecting these indicators, the discover recommends that cybersecurity groups implement precautionary measures, together with anti-virus software program, common community safety assessments, worker coaching, multi-factor authentication (MFA), incident response plans, and requiring further verification steps for any adjustments to monetary data.