Germany's healthcare system could collapse within days: Hardly any laboratory medicine institute – university clinic or private – is adequately equipped against Advanced Persistent Threat (APT) attacks. While all facilities use certified cybersecurity solutions that comply with BSI requirements. The only catch: According to insider information from LabNews, these are not sufficient to detect new or existing APTs.
A special feature of APT attacks is their function. They remain undetected and almost impossible to find in the infected network for years, to be activated, so to speak, "at the push of a button." The zero-day malware attacks, mostly introduced by third countries, primarily serve industrial espionage.
However, they can also be used to deactivate entire networks.
One aspect proves particularly explosive: To introduce the APT malware, a single physically accessible computer and a USB stick are sufficient. This is how the laboratory medicine of a university hospital can be completely taken over if there is a PC anywhere in the entire university hospital that can be turned on unsecured.
Another way to introduce APTs into IT networks are so-called fileless attacks.
Crowdstrike writes about this:
"Fileless malware is a type of malicious activity that abuses system-native legitimate tools for cyberattacks. Unlike traditional malware, an attacker does not need to install any code on a target system with fileless malware. This makes it so difficult to detect. This fileless technique of using native tools for malicious purposes is also referred to as Living off the Land."
Is your laboratory also at risk? Contact us. We would be happy to offer you an APT penetration test.
Lab Cyberdefense | LabNews (lab-news.de)
