Crozer-Keystone’s health care system was recently attacked by ransomware by the NetWalker Ransomware gang. The group is currently selling stolen data on the system through the Darknet website. If it was not purchased at a six-day auction, the gang promised to leak the data.
On June 19, Cointelegraph was able to access the alleged publication. There appear to be dozens of volumes with the amount of undisclosed data, most related to financial problems, but having nothing to do with patients’ medical records.
The gang claims that Crozer-Keystone’s health care system did not pay the ransom they claimed in bitcoins (BTC).
Crozer-Keystone is a health care system with four hospitals. Headquarters in Delaware County, Pennsylvania, Delaware County, up to Delaware, serves parts of western New Jersey.
The health service did not give as many details about the attack.
The health care system handled the accident through DataBreaches.net. They did not provide detailed information on the amount of ransom and did not confirm that the patient’s data was compromised:
“After quickly discovering the latest malware attack, Crozer-Keystone’s IT team took immediate action and began fixing vulnerable systems. After the hacking was isolated, we shut down the necessary systems to prevent further risk. We have completed this work in collaboration with cybersecurity professionals through our health care system, and we are fully investigating this issue. ”
Hospital attacks during the COVID-19 pandemic
In an interview with Cointelegraph, Brett Kallow, a threat analyst and blackmail expert at Emsisoft Malware Lab, said:
Attacking the hospital system is a vile and unacceptable act, especially in the midst of an epidemic. A number of ransomware groups have stated that they will not attack health professionals throughout the epidemic, and surprisingly, they are doing well. NetWalker was not one of these groups. ”
Kalu warned of the dangers of such attacks, noting that they can be very devastating and can be life-threatening. He noted that in previous incidents, hospitals had to effectively close doors and redirect patients in need of emergency care to other hospitals:
“This is the last thing required when medical services are already maximized thanks to Covid-19.”
According to Emsisoft’s own study, in 2019, at least 764 healthcare professionals in the United States were affected by ransomware.
On June 10, Cointelegraph announced that its risk management solutions provider, Kroll, has tended to use Qakbot Trojan, or Qbot, to launch e-mail theft campaigns that spread ransomware attacks.