Security News > 2020 > April > Hackers Targeting Critical Healthcare Facilities With Ransomware During Coronavirus Pandemic
As hospitals around the world are struggling to respond to the coronavirus crisis, cybercriminals-with no conscience and empathy-are continuously targeting healthcare organizations, research facilities, and other governmental organizations with ransomware and malicious information stealers.
While the security firm didn't name the latest victims, it said a Canadian government healthcare organization and a Canadian medical research university both suffered ransomware attacks, as criminal groups seek to exploit the crisis for financial gain.
Upon execution, the ransomware binary contacts the command-and-control server to download an image that serves as the main ransomware infection notification on the victim's device, and subsequently transmits the host details to create a custom key to encrypt the files on the system's desktop with a ".
Palo Alto Networks ascertained that the ransomware strain was EDA2 based on the code structure of the binary and the host-based and network-based behaviors of the ransomware.
A Spike in Ransomware Incidents The ransomware attacks are a consequence of an increase in other cyberattacks related to the pandemic.
News URL
http://feedproxy.google.com/~r/TheHackersNews/~3/Hgo8AbcgGI8/ransomware-hospitals-coronavirus.html
Related news
- US charges Chinese hackers linked to critical infrastructure breaches (source)
- Microsoft: North Korean hackers join Qilin ransomware gang (source)
- CISA: Medusa ransomware hit over 300 critical infrastructure orgs (source)
- Live Ransomware Demo: See How Hackers Breach Networks and Demand a Ransom (source)
- TechRepublic EXCLUSIVE: New Ransomware Attacks are Getting More Personal as Hackers ‘Apply Psychological Pressure” (source)
- Critical flaw in Next.js lets hackers bypass authorization (source)
- For healthcare orgs, DR means making sure docs can save lives during ransomware infections (source)
- Critical FortiSwitch flaw lets hackers change admin passwords remotely (source)
- Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised (source)