A group of ransomware auctions off information from a U.S. health care facility

The Crozer-Keystone Health System recently suffered a ransomware attack by the NetWalker ransomware band. The group is now auctioning the data stolen from the system through their website on the darknet. If the auction does not take place within six days, the group has promised to filter the data.

On June 19, Cointelegraph was able to access the publication. They seem to have dozens of Bitcoin Lifestyle folders with an undisclosed amount of data, mainly about finances, but nothing related to their patients‘ medical records.

The blockchain community speaks out in support of the Juneteenth

The group claims that the Crozer-Keystone Health System was unable to pay the ransom demanded at Bitcoin (BTC).

Crozer-Keystone is a health system composed of four hospitals. It is based in Delaware County, Pennsylvania, and serves Delaware County, northern Delaware, and parts of western New Jersey.

Buddha.com warns about Facebook scam attempts
The health system did not give any further important details about the incident
The health care system addressed the incident through DataBreaches.net. They did not provide details on the amount of ransom demanded, nor did they confirm whether their patients‘ data were compromised:

„After quickly identifying a recent malware attack, the Crozer-Keystone information technology team took immediate action and began remediation of the affected systems. Once the threat was isolated, we shut down the necessary systems to avoid further risk. We completed this work in collaboration with cybersecurity professionals throughout our healthcare system and are currently conducting a comprehensive investigation into the problem.

North Korean Hackers to Launch COVID-19 Global Phishing Campaign

Hospitals are under attack during the VOC-19 pandemic
Speaking to Cointelegraph, Brett Callow, a threat analyst and ransomware expert at the Emsisoft malware lab, said

„Attacking a hospital system is a despicable and inconceivable act, especially in the midst of a pandemic. Several groups of ransomware stated that they would not attack healthcare providers during the pandemic and, surprisingly, they have kept their word, NetWalker is not one of these groups.

Callow warned of the dangers of such attacks, noting that they can be extremely damaging and potentially life-threatening. She recalled that during previous incidents, hospitals have had to close their doors and redirect emergency patients to other hospitals:

„This is the last thing that is needed at a time when health care services are already stretched thin due to Covid-19.“

In 2019, at least 764 health care providers in the United States were affected by ransomware attacks, according to research by Emsisoft.

On June 10, Cointelegraph reported that risk solutions provider Kroll identified a growing trend in the use of the Qakbot Trojan, or Qbot, to launch wiretap campaigns in emails that trigger ransomware attacks.