Security News > 2020 > April > Hackers Targeting Critical Healthcare Facilities With Ransomware During Coronavirus Pandemic
As hospitals around the world are struggling to respond to the coronavirus crisis, cybercriminals-with no conscience and empathy-are continuously targeting healthcare organizations, research facilities, and other governmental organizations with ransomware and malicious information stealers.
While the security firm didn't name the latest victims, it said a Canadian government healthcare organization and a Canadian medical research university both suffered ransomware attacks, as criminal groups seek to exploit the crisis for financial gain.
Upon execution, the ransomware binary contacts the command-and-control server to download an image that serves as the main ransomware infection notification on the victim's device, and subsequently transmits the host details to create a custom key to encrypt the files on the system's desktop with a ".
Palo Alto Networks ascertained that the ransomware strain was EDA2 based on the code structure of the binary and the host-based and network-based behaviors of the ransomware.
A Spike in Ransomware Incidents The ransomware attacks are a consequence of an increase in other cyberattacks related to the pandemic.
News URL
http://feedproxy.google.com/~r/TheHackersNews/~3/Hgo8AbcgGI8/ransomware-hospitals-coronavirus.html
Related news
- Microsoft: Vanilla Tempest hackers hit healthcare with INC ransomware (source)
- Microsoft Warns of New INC Ransomware Targeting U.S. Healthcare Sector (source)
- Healthcare's Diagnosis is Critical: The Cure is Cybersecurity Hygiene (source)
- MFA bypass becomes a critical security issue as ransomware tactics advance (source)
- Ransomware gang Trinity joins pile of scumbags targeting healthcare (source)
- Akira and Fog ransomware now exploit critical Veeam RCE flaw (source)
- Critical Veeam Vulnerability Exploited to Spread Akira and Fog Ransomware (source)
- Iranian hackers act as brokers selling critical infrastructure access (source)
- North Korean govt hackers linked to Play ransomware attack (source)
- North Korean hackers pave the way for Play ransomware (source)