Ransomware gang behind Ireland’s attacks also regarding US health and emergency networks
1 min readRansomware attacks on the Irish health care system are far from isolated incidents. Bleepingcomputer and Gizmodo Note that the FBI has issued a flash warning warning that the ransomware group behind Ireland’s attack also targets “at least” 16 health and emergency networks, including police and 911 shipping centers. The group uses conti ransomware that steals files, encrypts the system and presses the victim to pay through the portal so that their data is sold or published online.
The FBI did not identify the victims or said if they paid the ration.
Conti Ransomware is believed to be under the control of the Russian-based Spider Cybercrime gang wizard. The code shares several connections with ryuk ransomware and even uses the malware distribution channel.
The perpetrators behind the Irish attack release free decrattors after realizing the nature of their victims, but they still said they would release or sell data. They initially demanded a ransom. The problem is, of course, is that this group might use similar tactics. Health care operations and personal data may be at risk even if attackers release ransom, and those who pay may accidentally encourage attacks in the future.