The New York Blood Center (NYBC) experienced a ransomware attack, discovered when suspicious activity was identified on IT systems. In response, the NYBC took specific systems offline and is currently working to restore them. 

Roei Sherman, Field CTO at Mitiga, comments, “The recent ransomware attack on the NYBC serves as a wake-up call for organizations across sectors, particularly those in critical services such as healthcare. As one of the world’s largest independent blood collection and distribution organizations, this incident undermines not just their operational capacity but potentially jeopardizes public health.

“Ransomware attacks are increasingly common, and this situation highlights the urgent need for organizations to adopt proactive cybersecurity measures. The disruption caused by this incident, which led to the rescheduling of appointments, may have serious repercussions not only for the NYBC’s operations but also for patients who rely on timely access to blood donations.”

Below, Sherman elaborates on how to protect against ransomware attacks. 

Defending against ransomware

Roei Sherman, Field CTO at Mitiga

Organizations should consider the following steps to bolster their defenses against ransomware:

1. Conduct comprehensive risk assessments: Regular assessments help identify vulnerabilities within organizations and allow for better preparedness against potential attacks.
2. Enhance cloud, SaaS and network security: Employing advanced security tooling, including EDR, CDR, and vulnerability scanning, is vital for protecting sensitive data.
3. Develop an incident response plan: In the event of an attack, having a well-defined response strategy can help organizations minimize damage and recover swiftly.

This incident at the NYBC underscores the broader implications of ransomware not just as a technical challenge but as a threat to essential public services. Moving forward, it’s critical for all organizations, especially within the healthcare sector, to prioritize cybersecurity to safeguard their operations and protect the populations they serve.

As we look to the future, collaboration across the industry to share knowledge, best practices, and threat intelligence will be imperative in combating these evolving The cyber threats.