@ShahidNShah
Community Health Systems reports GoAnywhere hacked
The healthcare company says the protected health information of as many as one million patients was exposed in a wave of zero-day attacks targeting Fortra's MFT platform. The incident that led to the unlawful disclosure of Community Health Systems' patient data was reported to the Securities and Exchange Commission by a third-party vendor for secure file transfer. According to the technical notice published on Infosec.exchange by renowned security researcher Brian Krebs, the GoAnywhere managed file transfer platform initially alerted users of a zero-day remote code injection attack on February 1. According to the Fortra bulletin Krebs accessed and shared, "The attack vector of this exploit requires access to the administrative console of the application, which is typically only accessible from within a private company network, through [virtual private network] or by allow-listed IP addresses (when running in cloud environments, such as Azure or AWS).
Continue reading at healthcareitnews.com
Make faster decisions with community advice
- Innovation and the Future of Healthcare at HIMSS23
- Q&A: How the PHE's end could affect telehealth, patient care
- Health benefits platform Collective Health announces layoffs
- University Hospitals, Premier Division Collaborate on Real-World Evidence
- What the metaverse and virtual reality can contribute to healthcare
Next Article
-
Innovation and the Future of Healthcare at HIMSS23
The 2023 HIMSS Global Health Conference & Exposition, frequently referred to as the Davos Summit of healthcare information and technology, will include innovative solutions to promote better …
Posted Feb 19, 2023 Healthcare Healthcare Innovation