Client Data Exfiltrated In Advanced NHS cyber Attack

Following the news that: 

Client data exfiltrated in Advanced NHS cyber attack

Client data exfiltrated in Advanced NHS cyber attack (digitalhealth.net)

Subscribe
Notify of
guest
1 Expert Comment
Newest
Oldest Most Voted
Inline Feedbacks
View all comments
Grant.wyatt
Grant.wyatt , Chief Operating Officer
InfoSec Expert
October 19, 2022 1:59 pm

Personal medical data has a high value in the cybercriminal world, so ensuring all data is protected as strongly as possible in this sector is even more paramount. In this case the attackers accessed a Citrix server using RDP (remote desktop, a remote connection protocol) and then used that to ‘bounce’ internally. A Zero Trust security framework to prevent this sort of threat can be limiting as it is so cumbersome to use. However, security is always king, and if a single-step MFA – with frictionless Zero Trust – been used to access the Citrix server, in this case the attack would have been preventable, whilst providing day-to-day security that is hassle-free. We hope Advanced manage to resolve the issue as quickly as possible.

Last edited 1 month ago by grant.wyatt
1
0
Would love your thoughts, please comment.x
()
x