Today, CISA, the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services (HHS) released an update to the joint advisory #StopRansomware: ALPHV Blackcat to provide new indicators of compromise (IOCs) and tactics, techniques, and procedures (TTPs) associated with the ALPHV Blackcat ransomware as a service (RaaS). ALPHV Blackcat affiliates have been observed primarily targeting the healthcare sector.
CISA, the FBI, and HHS urge network defenders to review the updated joint advisory to protect and detect against malicious activity.
All organizations are encouraged to share information on incidents and anomalous activity to CISA’s 24/7 Operations Center at [email protected] or via our Report page, and/or to the FBI via your local FBI field office or the FBI’s 24/7 CyWatch at (855) 292-3937 or [email protected]. For more on ransomware, visit stopransomware.gov.