Skip to main content
close search
site logo
Dive Brief

HHS suffers cyberattack as US deals with coronavirus response

Published March 16, 2020
Samantha Schwartz's headshot
Samantha Schwartz Reporter
A picture of the exterior of the US Department of Health and Human Services. In front of the building is a black sign designating the building's name.
Alex Wong via Getty Images

UPDATE: March 16, 2020: HHS confirmed a "significant increase in activity on HHS cyber infrastructure" Sunday night, Caitlin Oakley, HHS spokesperson, told CIO Dive in an email.

"Early on while preparing and responding to COVID-19, HHS put extra protections in place," said Oakley. The agency is coordinating with federal law enforcement in response to the incident.

Dive Brief:

  • The U.S. Health and Human Services Department was the victim of a cyberattack Sunday night, reports Bloomberg
  • The intent of the attack was to slow systems, though it was unsuccessful "in a meaningful way," according to the report. No data was compromised. 
  • The agency's cyberattack was the result of "multiple incidents of hacking," according to a tweet from journalist Jennifer Jacobs and co-author of the Bloomberg report. ​While the perpetrator hasn't been identified, officials believe it was orchestrated by nation-state actors.

Dive Insight:

Agencies are already taxed dealing with response to the coronavirus. A cyberattack only heightens the complications.

Healthcare organizations' cybersecurity has been in "critical condition" for a long time. Outdated systems and infrastructure inhibit threat prediction and analysis. Though HHS took steps to mitigate the impact of cyber events, such as breaches, some of its guidelines were only voluntary. The guidelines were outlined for organizations across the healthcare industry, from local clinics to large hospitals. 

Malicious actors often respond to crises with misinformation campaigns or phishing schemes, according to research from Recorded Future. 

Hackers are also leveraging public-facing resources as a tool to spread malware. Attackers exploited Johns Hopkins' coronavirus data map, which showcases real-time infection rates, reports cybersecurity journalist Brian Krebs

Russian cybercrime forums were found selling a "digital coronavirus infestation kit that uses the Hopkins interactive map as part of a Java-based malware deployment scheme," according to Krebs. If the buyer already has a Java code signing certificate, the kit costs $200. 

Legislation regarding cyberattacks and international law are insufficient, leaving nation-state cyberattacks left unattended to. Without consequences, hostile foreign actors will continue to target U.S. systems. 

Last week the Cyberspace Solarium Commission released its 200-page report offering recommendations for shoring up U.S. cybersecurity, including retaliation. "The existing declaratory policy does not sufficiently communicate resolve or articulate a compelling logic of consequences," according to the report. 

The commission wants the U.S. to "publicly convey" its ability to respond to cyberattacks and "impose costs against adversary cyber campaigns below a use-of-force threshold."

Recommended Reading

Filed Under: Security

Editors' picks

Company Announcements

View all | Post a press release
NeuBird Named a Cool Vendor in the 2024 Gartner® Cool Vendors™ in IT Operations Leveraging Gen…
From NeuBird
November 11, 2024
Newgen Recognized in Gartner® Magic Quadrant™ for Enterprise Low-code Application Platforms Fi…
From Newgen Software
October 30, 2024
Newgen and Fadata Join Forces to Optimize Insurance Content Management
From Newgen Software
November 13, 2024
Viz.ai Wins Prestigious Prix Galien USA Award for Best Digital Health Solution
From Viz.ai
November 12, 2024
Editors' picks
Latest in Security
image/svg+xml
Industry Dive is an Informa business
© 2024 Industry Dive. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell