Short Summary: The healthcare sector is increasingly targeted by cybercriminals, with data breaches costing an average of USD 9.77 million per incident. The rise of Ransomware-as-a-Service (RaaS) and vulnerabilities in supply chains and IoT devices exacerbate these risks, leading to significant disruptions and threats to patient safety.…
Read More Tag: HOSPITAL
Summary: The Everest ransomware group, a Russian-speaking cybercriminal organization, is increasingly targeting the healthcare sector, claiming to have stolen sensitive patient data from multiple medical facilities in the U.S. since 2021. U.S. officials have issued warnings about the group’s tactics, which include acting as an initial access broker to facilitate ransomware attacks.…
Threat Actor: DEDESEC | DEDESEC Victim: Chinese General Hospital and Medical Center | Chinese General Hospital and Medical Center Price: Not disclosed Exfiltrated Data Type: Sensitive patient information
Key Points :
The breach was announced by DEDESEC on a dark web forum. The group claims to have leaked sensitive information targeting Chinese and Filipino patients.…Victim: Patterson Health Center Country : US Actor: qilin Source: http://kbsqoivihgdmwczmxkbovk7ss2dcynitwhhfu5yw725dboqo5kthfaad.onion/site/view?uuid=9445a462-96c7-3767-bfe9-79db9b39687e Discovered: 2024-08-15 21:30:22.120840 Published: 2024-08-14 00:00:00.000000 Description : Completed in 2019, Patterson Health Center combined two critical access hospitals in Anthony and Harper, Kansas. The new centrally located critical access hospital has 16 inpatient beds, a large emergency department with two trauma bays to su …
Ransomware Victims – ALL Other Victims by qilin
This bellow paragraph was generated by AI.…
Summary: The FBI has dismantled the Radar/Dispossessor ransomware operation, which targeted small to mid-sized businesses globally, and is believed to be linked to former LockBit affiliates. The operation resulted in the takedown of numerous servers and domains across the U.S., U.K., and Germany, with the group reportedly attacking 43 companies in various sectors.…
Summary: A ransomware tabletop exercise conducted at Black Hat USA 2024 focused on the healthcare sector, simulating a high-stakes attack against a fictitious hospital to highlight vulnerabilities and response challenges. The exercise involved key stakeholders and aimed to address the increasing threat of ransomware incidents, particularly following the attack on Change Healthcare.…
Date Reported: 2024-08-05 Country: USA Victim: McLaren Health Care | McLaren Health Care | mclaren.org Additional Information :
The McLaren Health Care system in Michigan is facing a ransomware attack that is disrupting operations across its 13 hospitals, outpatient surgery centers, physician offices, and other facilities.…Victim: Bayhealth Hospital Country : Actor: rhysida Source: Discovered: 2024-08-07 17:17:16.846131 Published: 2024-08-07 17:17:15.746906 Description : Bayhealth Hospital Bayhealth is a technologically advanced not-for-profit healthcare system with nearly 4,000 employees and a medical staff of more than 450 physicians and 200 advanced practice clinicians.
Ransomware Victims – ALL Other Victims by rhysida…
Threat Actor: RADAR | RADAR Victim: Change Healthcare | Change Healthcare Price: $22 million Exfiltrated Data Type: Healthcare data
Key Points :
ALPHV group received a $22 million ransom from Change Healthcare. The data-exfiltrating affiliate was left unpaid and turned to RansomHub for payment.Threat Actor: RADAR | RADAR Victim: Long Island Plastic Surgery (LIPSG) | Long Island Plastic Surgery Price: Reduced ransom (exact amount not specified) Exfiltrated Data Type: Medical data
Key Points :
ALPHV allegedly received a reduced ransom from LIPSG.…Date Reported: 2024-07-21 Country: Virgin Islands | (United States Virgin Islands) Victim: Hôpital Schneider | Schneider Hospital | srmedicalcenter.org Additional Information :
The Schneider Hospital in the U.S. Virgin Islands was targeted in a ransomware cyberattack on Sunday morning. This attack rendered the patient portal and copies of medical records inaccessible.…Victim: delhihospital.com Country : Actor: dispossessor Source: http://e27z5kd2rjsern2gpgukhcioysqlfquxgf7rxpvcwepxl4lfc736piyd.onion/blogs/1371 Discovered: 2024-07-29 19:43:02.035591 Published: 2024-07-28 06:00:00.000000 Description : Richland Parish Hospital Video of files 10 minutes – https://streamable.com/jh06bs .
Ransomware Victims – ALL Other Victims by dispossessor…
Threat Actor: Dispossessor | Dispossessor Victim: Aire Dental Arts | Aire Dental Arts Price: N/A Exfiltrated Data Type: Sensitive patient information
Key Points :
Claims a major data breach affecting multiple organizations. Affected patients will receive instructions on legal claims against Aire Dental Arts. Allegations of negligence in safeguarding personal health information could increase liability.…Summary: Cyber insurance is becoming increasingly vital for organizations to enhance their cybersecurity posture, despite only a quarter of companies currently having a stand-alone policy. The evolving landscape of cyber threats, including AI-related risks, necessitates a reevaluation of coverage options and the procurement process for cyber insurance.…
Summary: A North Korean hacker, Rim Jong Hyok, has been indicted for his involvement in ransomware attacks targeting U.S. hospitals and defense contractors, using the Maui strain to disrupt healthcare services. The U.S. government has issued a warrant for his arrest and is offering a reward for information leading to his capture, while also highlighting the ongoing threat posed by the North Korean Andariel Unit in cyber espionage and ransomware activities.…
Victim: Northeast Rehabilitation Hospital Network Country : US Actor: hunters Source: https://hunters55rdxciehoqzwv7vgyv6nt37tbwax2reroyzxhou7my5ejyid.onion/companies/6545223065 Discovered: 2024-07-18 22:07:56.687043 Published: 2024-07-18 21:33:53.000000 Description : Country : United States of America – Exfiltraded data : yes – Encrypted data : yes
Ransomware Victims – ALL Other Victims by hunters…
Victim: www.respirarlondrina.com.br Country : BR Actor: ransomcortex Source: http://gg6owuhu72muoelkt2msjrp2llwr2on5634sk5v2xefzmobvryywbhid.onion/?p=77 Discovered: 2024-07-12 08:33:14.081516 Published: 2024-07-12 08:33:13.202001 Description : The Instituto Respirar Londrina is a multidisciplinary hospital that provides services in the areas of Pneumology, Infectology, and Thoracic Surgery., …
Ransomware Victims – ALL Other Victims by ransomcortex…
Victim: Sheba Medical Center Country : Actor: handala Source: https://handala.to/sheba-medical-center-hacked/ Discovered: 2024-07-15 16:10:09.171499 Published: 2024-07-15 14:07:14.000000 Description : Handala Hacked Sheba Medical Center Chaim Sheba Medical Center is the largest hospital in Occupied lands. This is the 9th-best hospital in the world. We could have targeted all parts of this center and endangered the lives of thousands of people, but according to our discretion, we destroyed the heart department of this hospital and, …
Ransomware Victims – ALL Other Victims by handala…
June 2024 has been a whirlwind of significant cyber attacks targeting high-profile organizations worldwide. Following the ongoing Snowflake-related issues, the past month has seen cases such as a TeamViewer data breach by a notorious Russian espionage group, massive Ethereum and Bitcoin thefts, and the sprawling Polyfill supply chain attack affecting hundreds of thousands of websites.…
Summary: This article discusses the Ukrainian hacker Vyacheslav Penchukov, who was on the FBI’s ‘Most Wanted’ list for a decade.
Threat Actor: Ukrainian Hacker Vyacheslav Penchukov | Vyacheslav Penchukov Victim: N/A
Key Point :
Vyacheslav Penchukov was a Ukrainian hacker who was on the FBI’s ‘Most Wanted’ list for ten years.…Summary: This content discusses how passkey technology used to protect online accounts can still be compromised through adversary-in-the-middle (AitM) attacks due to implementation flaws and the presence of less-secure backup authentication methods.
Threat Actor: Adversaries using adversary-in-the-middle (AitM) attacks.
Victim: Users of banking, e-commerce, social media, website domain name administration, software development platforms, cloud accounts, and more.…