In their April Sector Alert, the U.S. Department of Health’s Health Sector Cybersecurity Coordination Center (HC3) warned that threat actors are systematically targeting IT helpdesk employees to cripple American healthcare systems.
Why would an attacker bother trying to phish your users' credentials to carry out ATO [account takeover], when it may just be easier to call your helpdesk, pretend to be a user and get the credentials reset? – Akif Khan, VP Analyst at Gartner
The HC3 offers several security recommendations in their Sector Alert, Social Engineering Attacks Targeting IT Help Desks in the Health Sector. But to properly implement this guidance, organizations first need to understand the nature of the threat.
In this context, Aaron Painter, Nametag CEO, recently shared his thoughts on the subject with Forbes. Aaron breaks down the Sector Alert and offers specific recommendations on how hospitals and other organizations can protect themselves against this pernicious threat.
Read Aaron's article in Forbes
