Ransomware Forces A French Hospital To Redirect Patients


French hospital sends patients elsewhere after ransomware attack.

The Centre Hospitalier Sud Francilien (CHSF) states the ransomware attack left the hospital’s corporate software, storage systems (including medical imaging), and patient admissions system unusable on Aug. 21.

CHSF will refer imaging patients elsewhere. Separate warning adds emergency patients should seek treatment elsewhere since “health professionals currently work without the help of IT, which generates much longer than average wait times,”

Le Monde says ransomware operators want $10 million. CHSF was attacked using LockBit 3.0 ransomware-as-a-service, which breaches LockBit’s guidelines against targeting healthcare providers.

Sophos stated in June that hospital ransomware assaults roughly increased in 2021. Healthcare firms are more inclined to pay ransoms than other companies, even though few can restore all their data.
Sophos reports that 44% of healthcare firms attacked in the last year took up to a week to recover from the most significant attack, while 25% took up to a month.
CHSF hasn’t said how it’ll respond to the attack.

More From Us:Falcon 9 And Starship Will Launch Second-Generation Starlink Satellites.

How do current attacks affect healthcare?

Local media reports say France had 27 significant cyberattacks against healthcare last year and one every week this year. France isn’t special.

In the U.S., ransomware assaults on the healthcare system became such a concern last year that the CISA, FBI, and HHS issued a joint notice alerting providers of an imminent threat.

“CISA, FBI, and HHS assess malicious cyber actors are targeting healthcare and public health with TrikBot and BazarLoader malware,” the notification said. Administrators must weigh this risk when deciding how much to invest in cybersecurity during the COVID-19 epidemic.

Ryuk’s problem

CISA said threat actors utilise TrickBot to deploy Ryuk, a 2018 ransomware strain. This strain isn’t just dangerous since it causes healthcare attacks.

The 2020 family Ryuk has changed. Security experts fear this ransomware has gotten more hazardous since it can self-proliferate.

French researchers think this variant self-propagates by exploiting a privileged domain account. Changing the password or disabling the account may stop worm activity.

Ryuk is one of numerous ransomware families available to attackers. According to IBM Security X-annual Force’s Threat Intelligence Index, ransomware was the most popular threat last year. These widespread attacks are worrisome.

Leave a Comment

Your email address will not be published.