Federal officials warned businesses that hackers backed by the Chinese government are aggressively targeting medical institutions to steal data, personally identifiable information and emerging technologies.
Chinese hackers attempt to mask their activities by using virtual private servers and common open-source or commercial penetration tools. China-backed hackers consistently launch attacks on American networks after a public disclosure has been released to businesses disclosing vulnerabilities, a July 19 news release said.
Here are seven guidelines to protect your organization against Chinese hackers:
- Federal officials advise hospitals to patch critical vulnerabilities immediately.
- Consider implementing a patch management program that allows patches to be addressed timely and thoroughly.
- Enhance monitoring of network traffic, email and endpoint systems. Consistently review signatures to monitor for phishing themes. Adjust email rules based on network findings.
- Ensure email logs allow for the maximum detection capabilities possible.
- Implement antivirus software and endpoint protection capabilities to prevent malicious files from deploying.
- Launch a network intrusion detection system to prevent access to suspicious websites.
- Require multifactor authentication for remote access to networks in case credentials have been compromised.