Campus IT Professionals React to Nationwide Ransomware Threat

By: Nichole Gladky
Last Updated: November 02, 2020

On October 28, the FBI and the US Department of Homeland Security announced that they had credible intelligence suggesting an “increased and imminent cybercrime threat to US hospitals and healthcare providers.” Some healthcare providers are believed to have IT systems that are already compromised, with the malicious software remaining dormant until it receives a wake up call from it’s owner. 

The attack resurrects an older piece of malware known as Ryuk, which will commandeer and encrypt local files on a device, and hold them for a Bitcoin ransom. When dealing with cybercriminals, as can be expected, there is no guarantee that paying the ransom will recover any files. 

IT Professionals at both Stony Brook University and Stony Brook Medicine have been placed on high alert, reviewing systems, data, and access to assess and improve the safety of campus infrastructure. 

As we face the threats ahead of us, remember: we rely heavily on all faculty, staff, and students to remain vigilant and engaged. If you observe anything suspicious or anomalous, please reach out to the appropriate party to inform them. This may be University Police, Information Security, or Customer Engagement, and numbers are provided below. 

Stony Brook Information Security

Learn more at https://cybersecurity.stonybrook.edu 

Report an incident at https://service.stonybrook.edu 

(631) 632-9800

 

Stony Brook University Police

(631) 632-3333

 

Threat Intelligence Brief

Joint Cybersecurity Advisory, FBI/DHS/DHH

https://us-cert.cisa.gov/sites/default/files/publications/AA20-302A_Ransomware%20_Activity_Targeting_the_Healthcare_and_Public_Health_Sector.pdf 

 

For More Information Contact