In the fall edition of OCR’s Cybersecurity Newsletter, OCR focused on how healthcare organizations should attempt to prevent, mitigate the effects of, and recover from ransomware attacks. The newsletter updates OCR’s previous guidance on ransomware based on observations of new developments and trends on these types of attacks. In 2017 and 2018, a new threat rapidly emerged: targeted ransomware attacks. A targeted ransomware attack is loosely defined as a ransomware attack that is adapted to a specific organization or industry. According to OCR, “the targeted attack’s tailored approach is what makes it so effective and dangerous and is what sets it apart from the previous type of mass-produced ransomware attack.”