Thursday, March 24, 2016

Ransomware hackers take aim at Kentucky hospital



A Kentucky hospital is operating in an internal state of emergency following an attack by cybercriminals on its computer network, Krebs on Security reported.

Methodist Hospital, based in Henderson, Kentucky, is the victim of a ransomware attack in which hackers infiltrated its computer network, encrypted files and are now holding the data hostage, Krebs reported Tuesday.

The hospital has not responded to CNBC's requests for comment.

The criminals reportedly used new strain of malware known as Locky to encrypt important files. The malware spread from the initial infected machine to the entire internal network and several other systems, the hospital's information systems director, Jamie Reid, told Krebs.

"We essentially shut our system down and reopened on a computer-by-computer basis," David Park, an attorney for the Kentucky healthcare center told Krebs.

The hospital is reportedly considering paying hackers the ransom money of four bitcoins, about $1,600 at the current exchange rate, for the key to unlock the files.

The FBI is reportedly investigating and declined to comment for this story.

This is just the latest hack attack by cybercriminals using ransomware to shut down critical infrastructure, a cyber threat that the FBI warns is on the rise. "Ransomware has been around for several years, but there's been a definite uptick lately in its use by cyber criminals," the FBI warned in a January report.

In February, a California hospital paid a $17,000 ransom to get its files back. In that case, hackers shut down the internal computer system for more than a week, initially demanding a ransom of almost $3.7 million.

The way ransomware infects computers has also become more effective. When ransomware first emerged, the most common way for computers to become infected was when users opened email attachments containing the malware, the FBI reported.

"But more recently, we're seeing an increasing number of incidents involving so-called 'drive-by' ransomware, where users can infect their computers simply by clicking on a compromised website, often lured there by a deceptive e-mail or pop-up window," the FBI said in its report.

According to the FBI, the way cybercriminals are demanding payment has also changed, from prepaid cards to bitcoin. Hackers prefer bitcoin because of the anonymity the decentralized virtual currency network offers.

With ransomware attacks on critical infrastructure, cybercriminals have found a sweet spot, said security expert Ben Johnson. Hospitals, power companies and government municipalities are often more concerned with getting back online than investigating an attack. They are also often battling on aging computer operating systems with understaffed security teams.

"So they pay, thus encouraging the attackers because it is working," said Johnson, a former NSA employee and co-founder and Chief Security Strategist for Carbon Black.

"Ransomware has done its market research and found its ideal market segment," Johnson said. "Last year, it was that all your health records will be stolen, this year it's that you'll be in the hospital and all the systems will fail."

Source: http://www.msn.com

Related Posts:

  • For kids with autism, this tech matters For these kids, games and cute robots are more than just fun. On World Autism Awareness Day, we look at some of the ways technology is improving the lives of those with the condition. Both Katie and her teacher look like th… Read More
  • 2 New Cancer Therapies That Might Help Patients 'Live Again' Cancer can be devastating to the individuals and families it affects. The disease alters patients' routines, roles, and relationships with others. Luckily, in the age of cancer research, millions more Americans are surviving … Read More
  • Mammograms May Detect More Than Breast Cancer New study finds calcium deposits in breast tissue can predict calcium in arteries, a known risk factor for heart disease. Mammograms are widely and often successfully used to detect breast cancer, the second leading cause of… Read More
  • Obamacare premiums could spike next year Companies selling individual health plans on Obamacare’s insurance marketplaces must grapple with the impending expiration of two of the law’s key early-stage programs, likely foretelling premium increases in 2017, as Pricew… Read More
  • DC Healthcare Provider Limps On After Malware AttackDespite its computer systems being infected with malware since Monday, MedStar Health, which operates 10 hospitals and more than 250 outpatient facilities in and around Washington, D.C., has continued to provide patient care … Read More

0 comments:

Post a Comment