After the Clop ransomware group claimed responsibility for the massive targeted cyberattacks that exploited a zero-day vulnerability in the Fortra GoAnywhere MFT, the Department of Health and Human Services is again urging entities to bolster its defenses against Clop’s newest tactics.More than 130 organizations were reportedly targeted by the Russian-backed group, including Community Health Systems in Tennessee. As previously reported, over 1 million patients saw their personal and health information compromised by the exploit of GoAnywhere.It didn’t take long for Clop to claim responsibility for the attacks and alleged data exfiltration launched over the course of 10 days. The group also claimed it could “encrypt affected healthcare systems by deploying ransomware payloads.” The group has refused to validate these claims.Fortra warned clients of the remote code execution vulnerability in early February and provided a workaround while it works on a patch. While initially it appeared as if an actor would need access to the admin console from within a private company network, a virtual private network (VPN), or allow-listed IPs, an active exploit was released soon after the disclosure.Notably, prior to an emergency patch, users were required to create an account to access the vulnerability report, which was heavily criticized by cybersecurity experts. As noted earlier, Ben Krebs was the first to find details on the zero-day vulnerability and post the full alert text.Cybersecurity & Infrastructure Security Agency recently added the GoAnywhere vulnerability, CVE-2023-0669, to its public catalog of Known Exploited Vulnerabilities. On Feb. 15, CISA ordered all federal civilian executive branch agencies to apply the patch before March 3.
Ransomware, Vulnerability Management, Threat Management
After GoAnywhere MFT hack, HHS again warns of Clop ransomware threat

The Department of Health and Human Services is again urging entities to bolster its defenses against Clop’s newest tactics. (iStock via Getty Images)
An In-Depth Guide to Ransomware
Get essential knowledge and practical strategies to protect your organization from ransomware attacks.
Related Events
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
You can skip this ad in 5 seconds



