HHS Cybersecurity Alert – Credential Harvesting

DataLink advises organizations in all industry sectors to safeguard their credentials.

The U.S. Department of Health and Human Services Health Sector Cybersecurity Coordination Center (HHS HC3) has warned that credential harvesting “poses a significant threat to the security and integrity of healthcare systems, potentially compromising patient confidentiality.”

Credential harvesting involves attackers convincing users to enter their login credentials into a malicious outlet, enabling the attacker to access the user’s account. This can lead to data breaches, exposing patients’ confidential information, and disrupting critical healthcare services. 

HHS HC3 advises healthcare entities to implement a combination of technical controls, security measures, and user awareness training to mitigate the risks of credential harvesting. This includes using:

  • Multifactor authentication
  • Email filtering
  • Endpoint security solutions
  • Keeping software up to date
  • Having comprehensive incident response plans 

Contact DataLink today so we can help protect your technology and your organization:
(410) 729-0440Email