- UK healthcare group HCRG reportedly hit by ransomware assault
- Over 2.5TB of knowledge provided on the market by Medusa ransomware gang
- Newest in a sequence of ransomware assaults focusing on healthcare orgs
A personal well being and social companies supplier, the HCRG Care Group, has reportedly suffered a cyberattack by the hands of the Medusa ransomware gang.
The Register reported the gang is threatening to leak the data, which it claims to be stolen inner information. It appears the information was not encrypted by the gang, so the healthcare group continues to be operational.
The Medusa gang’s darkish website online claims the group has stolen 2.275TB of knowledge, and the data is on the market for £1.6 million ($2 million), or providing to delete information for a similar quantity. They then threatened to leak the data on-line if the ransom isn’t paid by February 27.
Ongoing negotiation
Samples of the stolen information have been leaked, and of the 35 pages posted, the data appears to be passport and driving license scans, delivery certificates, background checks, and workers rotas. These might put these affected prone to identification theft, fraud, or social engineering scams.
“We will affirm that we’re at present investigating an IT safety incident and have not too long ago recognized a publish on the darkish internet by a bunch claiming duty,” a spokesperson for HCRG advised The Register.
“Our staff has not noticed any suspicious exercise because the implementation of quick containment measures, and we’re working with exterior forensic specialists to research the incident. Our companies are persevering with to function and safely see sufferers, and people with appointments or who have to entry our companies ought to proceed to take action.”
Medusa has additionally provided to delay the discharge of the data for a charge of £8,000 per day to maintain negotiations open.
Healthcare organizations are more and more the goal of cyberattacks, significantly ransomware – and are compelled to pay hundreds of thousands in restoration, with the typical profitable assault costing over $2.5 million to resolve.