Medical Practices are the number #1 type of business targeted by Ransomware

Many Healthcare organizations are paying the ransom when they are breached, making this industry even more of a target!


We are experts in Ransomware prevention and recovery strategies. We emphasize prevention but make sure you are covered for a possible post-infection recovery.

Ransomware: this is Cyber Warfare!

Make no mistake about it, WannaCry and NotPeyta Ransomware were Cyber Attacks by the North Korean and Russian Military that affected American Businesses.

What is Ransomware? An infection that locks down your computer denying you access to your desktop and will maliciously encrypted files.

Ransomware attacks are especially damaging to healthcare organizations. Even if you get your files back, HIPAA Law requies that every file be inspected for it's integrity and accuracy.

Prevention: Secure Back-ups regularly tested!

Preventing ransomware tips include:

  1. Identify critical data, ePHI and which protection controls of your data are currently in place
  2. Create and aggressively implement a secure a back-up strategy that is then stored offline
  3. Develope or improve your Disaster Recovery/Business Continuity Plan to include this threat
  4. Educate users about Phishing emails and Social Engineering
  5. Restrict privileged accounts, Remote Access, then lock down open ports and services
  6. GEO Fencing: block traffic from dangerous countries and Domains
  7. Issue timely alerts to users about any new threats and attack types, talk with them directly so this isn't another security event that becomes ignored

Recovery: if a breach occurs

If the unthinkable actually happens, you've been successfully hacked, here are parts of your Recovery Plan to immediately implement.

  1. Implement recovery procedures specified in your Incident Response Plan and start a claim with your cyber-insurance
  2. Identify the source of the breach, if possible, so the attack isn't repeated
  3. Restore your data in secure back-ups using your offline storage and meeting your Recovery Point Objective (RPO)
  4. Breach Notification: HIPAA requires public notice if over 500 records, GDPR regulations are even more strict
  5. Check the Ransomware Decryptor webpage for tools to decrypt your files
  6. Enforce Sanction Policies on your staff and business associates who are responsible for the breach