Ransomware Impacts
AIIMS Delhi turns manual following ransomware attack
Healthcare IT News, November 28, 2022
On 23 November, the All India Institute of Medical Sciences in New Delhi, India reported an IT outage due to a suspected ransomware attack.
Ransomware Disrupts Indian Premier Hospital for 2nd Day
Healthcare Info Security, November 24, 2022
India’s premier healthcare institute reported a massive cyberattack on its servers on Wednesday. All patient care services were affected and were still operating manually on Thursday.
Hive Ransomware Racks up $100 Million in Ransom Payments, Over 1,300 Companies Victimized
CPO Magazine, November 22, 2022
Hive ransomware, one of the biggest ransomware-as-a-service (RaaS) strains circulating since 2021, has at this point brought in $100 million in ransom payments according to a new alert released by the Cybersecurity and Infrastructure Security Agency (CISA). The total victim count is at least 1,300 organizations, and the group is notorious for spitefully dumping other types of ransomware on target systems when they refuse to make payment.
Lorenz Ransomware
HHS, November 21, 2022
HC3: Analyst Note. Report: 202211211700
Lorenz Ransomware
Lorenz is human-operated ransomware that has been in operation for approximately two years. In that time, HC3 is aware of the compromise of healthcare and public sector targets. It is used to target larger organizations in what is called “big-game hunting”, and publishes data publicly as part of pressuring victims in the extortion process. Lorenz is known to target organizations globally using customized code, and can demand hundreds of thousands of dollars in ransoms.
Enterprise healthcare providers warned of Lorenz ransomware threat
SC Media, November 21, 2022
The Department of Health and Human Services Cybersecurity Coordination Center is warning larger, enterprise healthcare organizations of the potential threat posed by the Lorenz ransomware threat group.
The human-operated campaign is well-known for its big-game hunting of larger organizations and has claimed victims in both the healthcare and public health sectors.
7 health systems affected by data breaches in the last 30 days
Becker’s Health IT, November 21, 2022
From a third-party data breach to phishing schemes that compromised employee email accounts, seven health systems have been affected by a cybersecurity incident since Oct. 27.
Enterprise healthcare providers warned of Lorenz ransomware threat
SC Media, November 21, 2022
The Department of Health and Human Services Cybersecurity Coordination Center is warning larger, enterprise healthcare organizations of the potential threat posed by the Lorenz ransomware threat group.
Feds Alert Healthcare, Other Sectors of Growing Hive Threats
Gov Info Security, November 18, 2022
As of this month, Hive actors – who follow a Ransomware-as-a-Service model – have hit more than 1,300 companies worldwide, collecting about $100 million in ransom payments, says a Thursday joint alert from the Cybersecurity and Infrastructure Security Agency, the FBI and the Department of Health and Human Services.
Agencies urge health sector to protect against ransomware threat
American Hospital Association, November 18, 2022
The FBI, Cybersecurity & Infrastructure Security Agency, and Department of Health and Human Services yesterday recommended actions to reduce the risk of compromise from Hive ransomware, which has victimized over 1,300 health care and other organizations since last June.
HHS, FBI, CISA Warn Healthcare of Ongoing Hive Ransomware Threats
Health IT Security, November 18, 2022
HHS, the Federal Bureau of Investigation (FBI), and the Cybersecurity and Infrastructure Security Agency (CISA) issued a joint cybersecurity advisory about Hive ransomware actors. The ransomware actors have been repeatedly targeting critical infrastructure, especially the healthcare sector since they were first observed in June 2021.
AI and open-source intelligence can mitigate ransomware and cryptocurrency risks
SC Media, November 18, 2022
The Second International Counter Ransomware Initiative (CRI) Summit held recently at the White House turned the spotlight on the need to counter cybercriminal and other threat actors’ efforts to use the cryptocurrency ecosystem to garner payments and mask illicit activity.
Read full SC Media article.
Additional 15K added to Eye Care Leaders’ already record-setting breach tally
SC Media, November 18, 2022
Another 15,000 patients have been added to the breach tally of the Eye Care Leaders ransomware attack from nearly one year ago.
Approved for Public Release; Distribution Unlimited. Public Release Case Number 21-xxxx.