top of page

Services
Professional services
Security Risk Assessment
Expert-led, customized assessment with a clear fix-first roadmap.
Virtual CISO (vCISO)
Build your security program with senior guidance and execution.
Compliance as a Service (CaaS)
We build and run your compliance program so you stay audit-ready year-round.
Penetration Testing
Prove what’s exploitable before attackers do.
Incident Response
Incident response readiness plus on-call support when it counts.
Managed Services
Third-Party Risk Management
Securely manage vendor relationships from start to finish.
Security Awareness Training
Empower your team to recognize threats.
Email Security
Protect your inbox from phishing and spam.
Vulnerability Management
Continuous scanning and alerts for swift risk remediation.
Managed Detection & Response (MDR)
Quickly detect, respond, and recover from advanced threats.
Password Management
Secure, manage, and simplify passwords.
Dark Web Monitoring
Monitor exposed data before it’s used against you.
Industry
Healthcare
Ensure patient trust with robust data protection and compliance.
Financial Services
Safeguard financial data while meeting compliance at every level.
K-12 Education
Enhance student safety and privacy while supporting educational goals.
Framework
HIPAA
SOC 2
Additional frameworks
Simplify security: How to build your security program with NIST CSF 2.0
Download the ebook
Resources
Resources
Blog
Stay updated with the latest trends and insights in cybersecurity. From industry news to expert analyses, our blog keeps you informed.
Podcast
Listen to expert discussions on pressing cybersecurity issues. Featuring interviews and practical advice, our podcast keeps you engaged and informed.
Security community
Stay updated with the latest security news and join the conversation. Connect with peers, share insights, and leave comments on the most recent updates.
Guides and reports
Access comprehensive guides and reports with actionable insights and strategies to improve your security stance.
Master HIPAA: How to achieve compliance with our ultimate guide
Download the guide
Company
Contact
Partners

Free Cybersecurity Review

News

Public·3 members

George Sutton

George Sutton

George Sutton

February 24, 2026

Ransomware-as-a-Service (RaaS) Set's It's Sights on the Healthcare Industry

February 24th, 2026

❓What:

The North Korean-linked Lazarus Group (also tracked under aliases like Diamond Sleet or Andariel) has been observed deploying Medusa ransomware in extortion attacks against at least one organization in the Middle East and attempting, unsuccessfully, to breach a U.S. based healthcare entity.
Medusa, a ransomware-as-a-service (RaaS) strain operated by the cybercrime group Spearwing, has been used by affiliates in hundreds of attacks, but this is the first time Lazarus has been tied to it.
Spearwing has claimed responsibility for over 366 attacks to date.

⚠️Impact:

Targeting hospitals, healthcare nonprofits, and other high-impact services escalates risk to critical infrastructure and patient safety.
Medusa attacks typically encrypt systems and demand ransoms (reportedly averaging ~$260,000), and even failed intrusions drain defensive resources and can disrupt operations.
The use of commodity and custom tools (like Comebacker, Blindingcan, and credential stealers) increases attack sophistication and persistence.
Lazarus’ shift to rent-a-ransomware demonstrates that nation-state actors are leveraging criminal ecosystems to fund and scale financially motivated operations.

💡Recommendations:

Elevate Ransomware Defenses for Healthcare & Critical Sectors: Harden email gateways, remote access points, and endpoint protection; ensure regular backups are offline and tested.
Expand Threat Hunting and Detection: Deploy or enhance anomaly detection for ransomware TTP's, unusual process spawning, lateral movement behaviors, and credential dumping tools.
Strengthen Segmentation and Least-Privilege Access: Proper network segmentation and strict access controls reduce the blast radius of ransomware and limit lateral travel.
Incident Response Preparedness: Exercise ransomware playbooks with tabletop exercises, update recovery procedures, and secure communications channels for crisis response.
Threat Intelligence Sharing: Exchange IOC's and attacker behaviors with ISAC's and trusted partners to accelerate detection of emerging variants like Medusa in the wild.

Read the full article HERE

43 Views

bottom of page