HC3 Warns of Cobalt Strike Threat to Healthcare Sector
Health IT Security
HHS’s Health Sector Cybersecurity Coordination Center (HC3) issued a brief warning the healthcare sector of the threat of Cobalt Strike, a remote access tool that was originally created to defend against cyberattacks. The tool is meant to simulate network intrusions and assist with penetration testing but has since been manipulated by actual bad actors.
Cobalt Strike was created in 2012 by Raphael Mudge and was one of the first widely available red team frameworks used for legitimate risk and vulnerability assessments. Since its creation, it has gained popularity among threat actors such as Ryuk and FIN12 who target the healthcare sector specifically.
“Cobalt Strike is an entire framework, which means...