The Cybersecurity and Infrastructure Security Agency and the FBI released a joint cybersecurity advisory Dec. 1 to warn about a Cuba ransomware threat targeting the healthcare sector.
Five things to know about the Cuba ransomware threat:
- As of August, Cuba ransomware hackers have victimized more than 100 companies globally.
- This group has raked in more than $60 million in ransom payments.
- The Cuba ransomware actors are continually modifying their tactics and tools in order to remain undetected.
- Cuba ransomware actors are using RomCom malware to gain command and control to exploit CVE-2022-24521 in the Windows Common Log File System.
- The FBI and CISA recommend that organizations employ numerous mitigations to defend their networks and reduce the risk of compromise by this group.