Following the news that:
Client data exfiltrated in Advanced NHS cyber attack
Client data exfiltrated in Advanced NHS cyber attack (digitalhealth.net)
Following the news that:
Client data exfiltrated in Advanced NHS cyber attack
Client data exfiltrated in Advanced NHS cyber attack (digitalhealth.net)
Information Security Buzz (aka ISBuzz News) is an independent resource that provides the experts comments, analysis and opinion on the latest Information Security news and topics
Personal medical data has a high value in the cybercriminal world, so ensuring all data is protected as strongly as possible in this sector is even more paramount. In this case the attackers accessed a Citrix server using RDP (remote desktop, a remote connection protocol) and then used that to ‘bounce’ internally. A Zero Trust security framework to prevent this sort of threat can be limiting as it is so cumbersome to use. However, security is always king, and if a single-step MFA – with frictionless Zero Trust – been used to access the Citrix server, in this case the attack would have been preventable, whilst providing day-to-day security that is hassle-free. We hope Advanced manage to resolve the issue as quickly as possible.