ADVERTISEMENT

Following Ascension hospitals breach, FBI raises Black Basta alert

Black Basta Ransomware affiliates have impacted over 500 private industry and critical infrastructure entities worldwide, including healthcare. After Ascension Health Systems was breached, the US Cyber authorities issued some recommended actions and mitigations to fight the menace.

Black Basta QakBot

Image by Shutterstock.

Ernestas Naprys
Ernestas Naprys Senior Journalist
May 13, 2024 2 min read

How does Black Basta operate?

ADVERTISEMENT

What should network defenders do?

  • Install updates for operating systems, software, and firmware as soon as they are released, and prioritize patching known exploited vulnerabilities.
  • Require phishing-resistant multi-factor authentication (MFA) for as many services as possible.
  • Train users to recognize and report phishing attempts and implement other recommendations from joint Phishing Guidance: Stopping the Attack Cycle at Phase One.
  • Secure remote access software by applying mitigations from the joint Guide to Securing Remote Access Software.
  • Make backups of critical systems and device configurations to enable devices to be repaired and restored.
  • Apply mitigations from the joint #StopRansomware Guide.
ADVERTISEMENT