Security Affairs

NOVEMBER 19, 2024

Russian Phobos ransomware operator Evgenii Ptitsyn, accused of managing attacks, was extradited from South Korea to the US to face cybercrime charges. Russian Phobos ransomware operator Evgenii Ptitsyn, suspected of playing a key role in the ransomware operations, was extradited from South Korea to the US to face cybercrime charges.

Cybercrime 114

Cybercrime Ransomware Healthcare Education 114

SecureWorld News

FEBRUARY 20, 2025

The FBI, CISA, and MS-ISAC have issued a joint cybersecurity advisory warning organizations about Ghost (Cring) ransomware, a sophisticated cyber threat that has been compromising critical infrastructure, businesses, and government entities worldwide.

Ransomware 112

Ransomware IoT Encryption Social Engineering 112

Security Affairs

MARCH 24, 2025

The Cloak ransomware group claims responsibility for a cyberattack on the Virginia Attorney Generals Office that occurred in February. The ransomware group Cloak has claimed responsibility for a February cyberattack on the Virginia Attorney General Office. ” reads a report published by Halcyon.

Ransomware 102

Ransomware Hacking Social Engineering VPN 102

Krebs on Security

NOVEMBER 22, 2019

A ransomware outbreak has besieged a Wisconsin based IT company that provides cloud data hosting, security and access management to more than 100 nursing homes across the United States. based Saint Francis Healthcare System began notifying patients about a ransomware attack that left physicians unable to access medical records prior to Jan.

Ransomware 362

Ransomware Computers and Electronics Healthcare Data breaches 362

Tech Republic Security

JULY 7, 2022

Since May of 2021, state-sponsored attackers have been deploying Maui ransomware in an attempt to encrypt sensitive records and disrupt services for vulnerable healthcare organizations. The post North Korean-sponsored ransomware attacks target US healthcare companies appeared first on TechRepublic.

Healthcare 169

Healthcare Ransomware Encryption 169

Krebs on Security

JUNE 2, 2020

The criminal group behind the REvil ransomware enterprise has begun auctioning off sensitive data stolen from companies hit by its malicious software. A partial screenshot from the REvil ransomware group’s Dark Web blog. and Europe in early March.” So it’s a double vig.”

Ransomware 338

Ransomware Backups Encryption Internet 338

Malwarebytes

DECEMBER 2, 2024

The US Department of Justice has charged a Russian national named Evgenii Ptitsyn with selling, operating, and distributing a ransomware variant known as “Phobos” during a four-year cybercriminal campaign that extorted at least $16 million from victims across the world.

Ransomware 120

Ransomware Backups Small Business Malware 120

Security Affairs

MARCH 10, 2025

Another American hospital falls victim to a ransomware attack; the RansomHouse gang announced the hack of Loretto Hospital in Chicago.” They provide healthcare services including: primary care, geriatric medicine, vision care, behavioral health services, pediatrics, womens health, pediatric medicine, family planning and dental services.

Hacking 116

Hacking Healthcare Backups Ransomware 116

The Last Watchdog

NOVEMBER 8, 2021

Related: Hackers relentlessly target healthcare providers. However, healthcare data ranks at the top of the list for needing improvements in security and privacy protections. There are many reasons for the vulnerable state of healthcare data. Healthcare data security and privacy is a problem that continues to grow.

Healthcare 268

Healthcare Technology Architecture IoT 268

Security Affairs

JULY 7, 2022

US authorities have issued a joint advisory warning of North Korea-linked APTs using Maui ransomware in attacks against the Healthcare sector. Treasury Department issued a joint advisory that warn of North-Korea-linked threat actors using Maui ransomware in attacks aimed at organizations in the Healthcare sector.

Healthcare 139

Healthcare Ransomware Encryption Government 139

Krebs on Security

MARCH 1, 2022

A Ukrainian security researcher this week leaked several years of internal chat logs and other sensitive data tied to Conti , an aggressive and ruthless Russian cybercrime group that focuses on deploying its ransomware to companies with more than $100 million in annual revenue. hospitals and healthcare providers.”. 23, 2020.

Ransomware 303

Ransomware Healthcare Cybercrime Government 303

Cisco Security

AUGUST 10, 2021

The shift to remote care and the widespread adoption of EHR solutions by health systems have shaped digital transformation in healthcare. The challenge now is to understand how hospitals and care centers expect to protect patient information and maintain network performance when threats like Ransomware are lurking.

Healthcare 145

Healthcare Ransomware Digital transformation Wireless 145

CyberSecurity Insiders

SEPTEMBER 21, 2021

Family Medical Center (FMC) of Michigan, a healthcare center supported by government funding, was targeted by a ransomware attack in July this year. IDX launched a comprehensive investigation confirmed that the data breach on the Family Medical Centre took place, but failed to identify the suspects’ gang behind the ransomware incident.

Healthcare 129

Healthcare Ransomware Data breaches Encryption 129

Bleeping Computer

AUGUST 6, 2022

A new ransomware family called 'GwisinLocker' targets South Korean healthcare, industrial, and pharmaceutical companies with Windows and Linux encryptors, including support for encrypting VMware ESXi servers and virtual machines. [.].

Encryption 137

Encryption Ransomware Healthcare 137

Krebs on Security

DECEMBER 16, 2019

As if the scourge of ransomware wasn’t bad enough already: Several prominent purveyors of ransomware have signaled they plan to start publishing data stolen from victims who refuse to pay up. The message displayed at the top of the Maze Ransomware public shaming site. Follow the news!”

Ransomware 244

Ransomware Data breaches Healthcare Cybercrime 244

Security Affairs

MARCH 7, 2025

Medusa ransomware has claimed nearly 400 victims since January 2023, with attacks increasing by 42% between 2023 and 2024. The Symantec Threat Hunter Team reported that the Medusa ransomware operators have claimed nearly 400 victims since January 2023. Experts tracked the Medusa ransomware activity as Spearwing.

Ransomware 62

Ransomware Antivirus Healthcare Encryption 62

Schneier on Security

FEBRUARY 11, 2022

It had no documented cyber incident response runbooks or IT recovery plans (apart from documented AD recovery plans) for recovering from a wide-scale ransomware event. The antivirus server was later encrypted in the attack). There was a lack of effective patching (updates, bug fixes etc.)

Antivirus 350

Antivirus Hacking Ransomware CISO 350

CyberSecurity Insiders

AUGUST 19, 2021

Memorial Health System, based in Ohio, is trending on Google for becoming a recent victim to a ransomware attack. In another incident related to ransomware targeting healthcare organization, St. Joseph/Candler is yet to confirm whether it is going to pay a ransom to free up its database from encryption.

Healthcare 126

Healthcare Ransomware Insurance Encryption 126

Security Affairs

MARCH 2, 2025

The Qilin ransomware group claims responsibility for attacking the newspaper Lee Enterprises, stealing 350GB of data. The Qilin ransomware group claimed responsibility for the recent cyberattack on Lee Enterprises, which impacted dozens of local newspapers. Qilin has targeted various sectors, including healthcare.

Ransomware 77

Ransomware Cybercrime Encryption Healthcare 77

Malwarebytes

FEBRUARY 28, 2024

On Wednesday February 21, 2024, Change Healthcare—a subsidiary of UnitedHealth Group—experienced serious system outages due to a cyberattack. In a Form 8-K filing the company said it: “identified a suspected nation-state associated cyber security threat actor had gained access to some of the Change Healthcare information technology systems.”

Healthcare 123

Healthcare Ransomware Backups Technology 123

The Hacker News

JUNE 5, 2024

An analysis of a nascent ransomware strain called RansomHub has revealed it to be an updated and rebranded version of Knight ransomware, itself an evolution of another ransomware known as Cyclops. ransomware first arrived in May 2023, employing double extortion tactics to steal and encrypt victims' data for financial gain.

Ransomware 139

Ransomware Healthcare Encryption 139

CyberSecurity Insiders

JUNE 3, 2022

Healthcare providers are opting to pay a ransom in the event of ransomware attacks, instead of recovering it from data backups. The reason is as it is easy and guarantees 100% encrypted data return- Of course, as per their perspective!

Healthcare 120

Healthcare Ransomware Insurance Backups 120

Krebs on Security

DECEMBER 8, 2022

Ransomware groups are constantly devising new methods for infecting victims and convincing them to pay up, but a couple of strategies tested recently seem especially devious. The first centers on targeting healthcare organizations that offer consultations over the Internet and sending them booby-trapped medical records for the “patient.”

Healthcare 321

Healthcare Backups Ransomware Insurance 321

Malwarebytes

APRIL 10, 2024

The Change Healthcare ransomware attack has taken a third cruel twist. Change Healthcare is one of the largest healthcare technology companies in the USA, responsible for the flow of payments between payers, providers, and patients. ” The announcement follows a series of events that require some unpacking. .”

Healthcare 113

Healthcare Ransomware Backups Software 113

Malwarebytes

JANUARY 6, 2025

A US chain of dental offices known as Westend Dental LLC denied a 2020 ransomware attack and its associated data breach, instead telling their customers that data was lost due to an accidentally formatted hard drive. In October 2020, Westend Dental was attacked by the Medusa Locker ransomware group.

Data breaches 144

Data breaches Ransomware Passwords Insurance 144

eSecurity Planet

SEPTEMBER 22, 2022

To accelerate the ransomware encryption process and make it harder to detect, cybercriminal groups have begun using a new technique: intermittent encryption. Intermittent encryption allows the ransomware encryption malware to encrypt files partially or only encrypt parts of the files.

Encryption 135

Encryption Ransomware Backups Advertising 135

Webroot

APRIL 5, 2024

From 2018 to 2023, healthcare data breaches have increased by 93 percent. And ransomware attacks have grown by 278 percent over the same period. Healthcare organizations can’t afford to let preventable breaches slip by. Globally, the average cost of a healthcare data breach has reached $10.93 Read the full case study.

Healthcare 126

Healthcare Data breaches Encryption Ransomware 126

The Hacker News

JULY 7, 2022

cybersecurity and intelligence agencies have warned about the use of Maui ransomware by North Korean government-backed hackers to target the healthcare sector since at least May 2021. In a new joint cybersecurity advisory, U.S.

Healthcare 112

Healthcare Ransomware Encryption Government 112

Security Affairs

JULY 6, 2022

Hive ransomware operators have improved their file-encrypting module by migrating to Rust language and adopting a more sophisticated encryption method. ” These upgrades prove that Hive is one of the fastest evolving ransomware families in the cybercrime ecosystem. . ” reads the post published by Microsoft.

Encryption 138

Encryption Ransomware Cybercrime Malware 138

Malwarebytes

MAY 28, 2021

On the 14th of May, the Health Service Executive (HSE) , Ireland’s publicly funded healthcare system, fell victim to a Conti ransomware attack, forcing the organization to shut down more than 80,000 affected endpoints and plunging them back to the age of pen and paper. Threat profile: Conti ransomware.

Healthcare 127

Healthcare Ransomware Encryption Passwords 127

Krebs on Security

DECEMBER 27, 2019

Synoptek , a California business that provides cloud hosting and IT management services to more than a thousand customer nationwide, suffered a ransomware attack this week that has disrupted operations for many of its clients, according to sources. A now-deleted Tweet from Synoptek on Dec.

Ransomware 219

Ransomware Media Financial Services Retail 219

Malwarebytes

NOVEMBER 27, 2024

In 2019, a ransomware attack hit LifeLabs, a Canadian medical testing company. The ransomware encrypted the lab results of 15 million Canadians, and personally identifiable information (PII) of 8.6 Reportedly , LifeLabs paid the ransomware group, which is why it’s still unknown which group was behind the attack.

Ransomware 123

Ransomware Healthcare Risk Encryption 123

The Last Watchdog

JUNE 21, 2020

Ransomware is undoubtedly one of the most unnerving phenomena in the cyber threat landscape. Related: What local government can do to repel ransomware Ransomware came into existence in 1989 as a primitive program dubbed the AIDS Trojan that was spreading via 5.25-inch inch diskettes. inch diskettes. FBI spoofs 2012 – 2013.

Ransomware 243

Ransomware Hacking Encryption Penetration Testing 243

Malwarebytes

AUGUST 28, 2024

The Qilin ransomware group listed CODAC Behavioral Healthcare, a nonprofit health care treatment organization, as one of their latest victims. Qilin seems to have a preference for healthcare and support organizations. As ThreatDown reported earlier in 2024, 70% of all known attacks on healthcare happen in the US.

Healthcare 105

Healthcare Ransomware Data breaches Passwords 105

Security Affairs

DECEMBER 10, 2022

The US Department of Health and Human Services (HHS) warns healthcare organizations of Royal ransomware attacks. The human-operated Royal ransomware first appeared on the threat landscape in September 2022, it has demanded ransoms up to millions of dollars. The malware changes the extension of the encrypted files to ‘.royal’.

Healthcare 104

Healthcare Ransomware Encryption Malware 104

CyberSecurity Insiders

DECEMBER 13, 2022

Day to day a new ransomware emerges on the web giving us a feeling that the threat seems to be a never-ending saga and is going through evolution with time. Royal Ransomware is the latest file encrypting malware that is on the prowl and is, for now, encrypting only networks related to the healthcare sector of America.

Healthcare 105

Healthcare Ransomware Encryption Malware 105

The Hacker News

SEPTEMBER 2, 2024

Threat actors linked to the RansomHub ransomware group encrypted and exfiltrated data from at least 210 victims since its inception in February 2024, the U.S. government said.

Ransomware 143

Ransomware Financial Services Healthcare Government 143