FBI Private Industry Notification TLP:CLEAR November 7, 2023 Summary The Federal Bureau of Investigation (FBI) is releasing this Private Industry Notification to highlight ransomware initial access trends and encourage organizations to implement the recommendations in the “Mitigations” section to reduce the likelihood and impact of ransomware incidents. Threat As of July 2023, the FBI noted…
Category: Malware
Info from 5.6 million patient visits among data stolen in ransomware attack on Ontario hospital
Kathleen Saylors and Jennifer La Grassa report: A database containing information on 5.6 million patient visits to Bluewater Health and the social insurance numbers of as many as 1,446 Chatham-Kent Health Alliance employees are among the data taken in the ransomware attack on five southwestern Ontario hospitals, officials said in a lengthy update Monday. […] According to…
HC3: Analyst Note: BlackSuit Ransomware
November 6, 2023 TLP:CLEAR Report: 202311061700 Executive Summary A relatively new ransomware group and strain known as BlackSuit, with significant similarities to the Royal ransomware family, will likely be a credible threat to the Healthcare and Public Health (HPH) sector. Discovered in early May 2023, BlackSuit’s striking parallels with Royal, the direct successor of the…
Mulkay Cardiology Consultants notifies almost 80,000 of ransomware attack
On Friday, Mulkay Cardiology Consultants at Holy Name Medical Center (“Mulkay”) notified the Maine Attorney General’s Office of an incident they discovered at the beginning of September. According to their report, a total of 79,582 people were affected by the breach. A copy of their notification letter to patients, appended to the submission, explained that…
Data of 171,871 Deer Oaks Behavioral Health clients and employees dumped by ransomware group
Deer Oaks Behavioral Health in Texas is a behavioral health services provider of psychological and psychiatric services to residents of long-term care and assisted living facilities. On October 31, they issued a substitute notice on their website about a ransomware incident they experienced. According to their notice, they discovered the attack on September 1. “The…
HC3: Analyst Note: 8Base Ransomware
November 1, 2023 TLP:CLEAR Report: 202311011500 Executive Summary A recent attack on a U.S.-based medical facility in October 2023 highlights the potential threat of the ransomware gang, 8Base, to the Healthcare and Public Health (HPH) sector. Active since March 2022, 8Base became highly active in the summer of 2023, focusing their indiscriminate targeting on multiple…