Some Researchers Confident ConnectWise ScreenConnect Flaw Was Exploited in Attack
Health-ISAC issued an advisory urging healthcare sector entities to closely monitor potential impact from the recent attack on Change Healthcare. (Image: H-ISAC)
Industry groups, including the Health Information Sharing and Analysis Center and the American Hospital Association, are urging their members to take precautions in the wake of a cyberattack last week on Change Healthcare, a unit of Optum.
“As the incident is still under investigation, it is not possible to confirm the attack details,” Health-ISAC said. “Regardless of what happened at Change Healthcare, RedSense anticipates more organizations will be compromised as the ScreenConnect exploit is apparently fairly trivial to execute.”
Health-ISAC already has received reports of widespread exploitation of the ScreenConnect vulnerabilities, its chief security officer, Errol Weiss, told ISMG on Monday. “We’re urging all organizations, regardless of what sector they are in, that if they are using ScreenConnect, they should immediately follow the ConnectWise advisory.”
Read the full article in Healthcare InfoSecurity here: