HHS is warning the healthcare sector of a cybersecurity vulnerability that could affect a "massive" number of servers.
The vulnerability exists in Hypertext Preprocessor, or PHP, an open-source scripting language on Windows and Linux systems, according to HHS' Office of Information Security and Health Sector Cybersecurity Coordination Center.
"Despite only being discovered a few days ago, cybersecurity researchers have already confirmed detected exploitation attempts involving the flaw against its honeypot servers within 24 hours of public disclosure of the vulnerability," the June 12 sector alert said. "As with any critical vulnerability impacting many devices, once disclosed, both threat actors and researchers immediately began attempting to find vulnerable systems."
The alert suggests updating PHP or moving to a different solution.