<div dir="ltr"><a href="http://siliconangle.com/blog/2017/03/28/fbi-warns-medical-dental-providers-anonymous-ftp-hacks/">http://siliconangle.com/blog/2017/03/28/fbi-warns-medical-dental-providers-anonymous-ftp-hacks/</a><br><br><p style="box-sizing:border-box;margin:0px 0px 1.1em;font-size:1.2em;line-height:1.5em;padding:0px;color:rgb(51,51,51);font-family:arimo,sans-serif;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;background-color:rgb(255,255,255);text-decoration-style:initial;text-decoration-color:initial">The Federal Bureau of Investigation has issued a warning to medical and dental providers to be aware that “criminal actors” are actively targeting File Transfer Protocol servers to gain access to private information they can use to intimidate, harass and blackmail business owners.</p><p style="box-sizing:border-box;margin:1.1em 0px;font-size:1.2em;line-height:1.5em;padding:0px;color:rgb(51,51,51);font-family:arimo,sans-serif;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;background-color:rgb(255,255,255);text-decoration-style:initial;text-decoration-color:initial"><a href="https://publicintelligence.net/fbi-phi-ftp/" class="external external_icon" rel="nofollow" target="_blank" style="box-sizing:border-box;background:transparent url("external.png") no-repeat scroll right center;color:rgb(51,122,183);text-decoration:none;padding-right:13px">According to the agency</a>, attackers are particularly targeting FTP servers operating in “anonymous” mode, a mode that allows a user to authenticate to the FTP server with a common username such as “anonymous” or “ftp” without submitting a password or by submitting a generic password or e-mail address.</p><p style="box-sizing:border-box;margin:1.1em 0px;font-size:1.2em;line-height:1.5em;padding:0px;color:rgb(51,51,51);font-family:arimo,sans-serif;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;background-color:rgb(255,255,255);text-decoration-style:initial;text-decoration-color:initial">“The FBI recommends medical and dental healthcare entities request their respective IT services personnel to check networks for FTP servers running in anonymous mode. If businesses have a legitimate use for operating a FTP server in anonymous mode, administrators should ensure sensitive [personal data] is not stored on the server.”</p><p style="box-sizing:border-box;margin:1.1em 0px;font-size:1.2em;line-height:1.5em;padding:0px;color:rgb(51,51,51);font-family:arimo,sans-serif;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;background-color:rgb(255,255,255);text-decoration-style:initial;text-decoration-color:initial">The targeting of healthcare providers for personal information has become epidemic, <a href="http://www.pbs.org/newshour/updates/has-health-care-hacking-become-an-epidemic/" class="external external_icon" rel="nofollow" target="_blank" style="box-sizing:border-box;background:transparent url("external.png") no-repeat scroll right center;color:rgb(51,122,183);text-decoration:none;padding-right:13px">according to some</a>, because unlike bank account details, data from the healthcare industry, which includes both personal identities and medical histories, can’t be changed.<span class="gmail-Apple-converted-space"> </span><a href="https://www.brookings.edu/wp-content/uploads/2016/07/Patient-Privacy504v3.pdf" class="external external_icon" rel="nofollow" target="_blank" style="box-sizing:border-box;background:transparent url("external.png") no-repeat scroll right center;color:rgb(51,122,183);text-decoration:none;padding-right:13px">According to Brookings</a>, since 2009 the medical information of more than 155 million Americans has been exposed in more than 1,500 breaches.</p><p style="box-sizing:border-box;margin:1.1em 0px;font-size:1.2em;line-height:1.5em;padding:0px;color:rgb(51,51,51);font-family:arimo,sans-serif;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;background-color:rgb(255,255,255);text-decoration-style:initial;text-decoration-color:initial">How widespread these attacks are is not made clear. The FBI only cited a University of Michigan study from 2015 titled, “FTP: The Forgotten Cloud,” that claims that more than 1 million FTP servers online were configured to allow anonymous access, potentially exposing sensitive data stored on those servers.</p><p style="box-sizing:border-box;margin:1.1em 0px;font-size:1.2em;line-height:1.5em;padding:0px;color:rgb(51,51,51);font-family:arimo,sans-serif;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;background-color:rgb(255,255,255);text-decoration-style:initial;text-decoration-color:initial">With the anonymous access, hackers are able to store malicious tools or launch cyber attacks to gain the personal data they are after. CloudPassage Chief Technology Officer and co-founder Carson Sweet<a href="http://www.darkreading.com/attacks-breaches/fbi-attackers-targeting-anonymous-ftp-servers-in-healthcare/d/d-id/1328496" class="external external_icon" rel="nofollow" target="_blank" style="box-sizing:border-box;background:transparent url("external.png") no-repeat scroll right center;color:rgb(51,122,183);text-decoration:none;padding-right:13px"><span class="gmail-Apple-converted-space"> </span>explained to Dark Reading</a><span class="gmail-Apple-converted-space"> </span>that cyber criminals can add data to a fraudster database or sell it on the<span class="gmail-Apple-converted-space"> </span><a href="https://en.wikipedia.org/wiki/Dark_web" class="external external_icon" rel="nofollow" target="_blank" style="box-sizing:border-box;background:transparent url("external.png") no-repeat scroll right center;color:rgb(51,122,183);text-decoration:none;padding-right:13px">dark web</a>. They can also potentially use the data for blackmail, leveraging records with information patients wouldn’t want made public.</p><p style="box-sizing:border-box;margin:1.1em 0px;font-size:1.2em;line-height:1.5em;padding:0px;color:rgb(51,51,51);font-family:arimo,sans-serif;font-style:normal;font-variant-ligatures:normal;font-variant-caps:normal;font-weight:normal;letter-spacing:normal;text-align:start;text-indent:0px;text-transform:none;white-space:normal;word-spacing:0px;background-color:rgb(255,255,255);text-decoration-style:initial;text-decoration-color:initial">“In general, any misconfigured or unsecured server operating on a business network on which sensitive data is stored or processed exposes the business to data theft and compromise by cyber criminals who can use the data for criminal purposes such as blackmail, identity theft, or financial fraud,” the FBI added.</p></div>