HC3 warns HCOs to fortify against cybercriminals FIN11 now

Cybercriminal collective FIN11, known for exploiting zero-day vulnerabilities to steal data and deploy ransomware, should be a top priority for healthcare sector security teams, according to the Health Information Sharing and Analysis Center (HC3). FIN11 has been targeting companies in North America and Europe, with recent attacks using the CL0P ransomware. HC3 has observed around 30 CL0P ransomware incidents in the US healthcare sector since 2021. The recent exploitation of a zero-day vulnerability in the MOVEit Transfer software is attributed to FIN11.