Proprietary Software and Microsoft's Security Toll

posted by Roy Schestowitz on Dec 06, 2022

• French hospital cancels operations after cyberattack [iophk: Windows kills]

  The Hospital Centre of Versailles -- which consists of Andre-Mignot Hospital, Richaud Hospital and the Despagne Retirement Home -- was affected by the hacking attempt, said the complex's management. The regional health agency (ARS) said the Andre-Mignot Hospital had cancelled operations, but was doing everything possible to keep walk-in services and consultations running.

• French Hospital Halts Operations After Cyber-Attack [iophk: Windows kills]

  Although not mentioned explicitly in reports so far, the attack on the 700-bed hospital looks to be the work of ransomware actors.

  If so, it follows a major ransomware attack on another facility near Paris in September this year. The Centre Hospitalier Sud Francilien (CHSF) in Corbeil-Essonnes was forced back to pen and paper after being hit with a $10m ransom demand by the LockBit 3.0 group.

  A few months earlier, the GHT Cœur Grand Est hospital group said it had been forced to cut internet connectivity to its Vitry-le-François and Saint-Dizier hospitals after receiving a $1.3m ransom demand.

• French Hospital Cancels Operations After Cyberattack [iophk: Windows kills]

  The Paris prosecutors' office has opened a preliminary investigation into attempted extortion, as well as the access and maintenance of the state's digital system. The hospital had also filed a formal complaint Sunday.

  For several months now, hospitals and health systems in France have been targeted with such cyberattacks.

• [Old] Paralysed French hospital fights cyber attack as hackers lower ransom [iophk: Windows kills]

  A hospital southeast of Paris has been crippled by an ongoing cyberattack, drastically reducing the number of patients who can be admitted and forcing a return to pre-digital workflows. Security experts are trying to retake control of the computer system as ransom negotiations continue.

• Brooklyn Hospitals Decried for Silence on Cyber Incident [iophk: Windows kills]

  Some systems at One Brooklyn Health System's three hospitals - Interfaith Medical Center, Brookdale Hospital Medical Center and Kingsbrook Jewish Medical Center - were taken offline Nov. 19 following an incident about which little is publicly known.

  Sources tell Information Security Media Group that the organization has been tight-lipped with other area hospitals about the cause of the outage, which is suspected to involve ransomware.

• Cyber Attackers Cripple IT Systems of Prominent Indian Hospital [iophk: Windows kills]

  It’s unclear what data the attackers may have accessed, or what their motives were. The hospital itself hasn’t said what data — or whose — may have been compromised. On Monday, police in the Indian capital, where the hospital is located, said it was unaware of ransom demands in response to local media reports that 2 billion rupees ($24.5 million) had been demanded.

• [Crackers] Cripple Prestigious Indian Hospital’s IT Systems [iophk: Windows kills]

  The All India Institute of Medical Sciences -- a hospital that’s traditionally treated the country’s top politicians -- has succumbed to a ransomware attack that’s shut down centralized records, people familiar with the matter said.

• Why Ransomware Victims Avoid Calling It 'Ransomware'

  Mathew Schwartz: What is a ransomware attack called if it's ransomware, but an organization that's fallen victim doesn't want to call it ransomware? Some companies have become expert at spinning as in using corporate speak or weasel words to avoid having to ever say the word ransomware. To a raft of press statements or data breach reports from companies that talk about suffering unexpected downtime, or perhaps a cybersecurity incident, the word cyberattack is another favorite. What's going on here? Companies aren't comfortable saying they've been hit by ransomware. That's despite the volume of ransomware attacks appearing to have recently declined, at least against the healthcare sector.

• Judge Orders U.S. Lawyer in Russian Botnet Case to Pay Google

  In December 2021, Google filed a civil lawsuit against two Russian men thought to be responsible for operating Glupteba, one of the Internet’s largest and oldest botnets. The defendants, who initially pursued a strategy of counter suing Google for tortious interference in their sprawling cybercrime business, later brazenly offered to dismantle the botnet in exchange for payment from Google. The judge in the case was not amused, found for the plaintiff, and ordered the defendants and their U.S. attorney to pay Google’s legal fees.

• [Crackers] linked to Chinese government stole millions in Covid benefits, Secret Service says

  The theft of taxpayer funds by the Chengdu-based hacking group known as APT41 is the first instance of pandemic fraud tied to foreign, state-sponsored cybercriminals that the U.S. government has acknowledged publicly, but may just be the tip of the iceberg, according to U.S. law enforcement officials and cybersecurity experts.

  The officials and experts, most speaking on the condition of anonymity because of the sensitivity of the subject matter, say other federal investigations of pandemic fraud also seem to point back to foreign state-affiliated hackers.