RansomHub claims to have breached Intermountain Deliberate Parenthood, stealing 93GB of knowledge. The healthcare supplier is investigating the cyber assault whereas specialists warn of escalating ransomware threats to important sectors.
The infamous RansomHub ransomware group has claimed duty for breaching Deliberate Parenthood, a number one U.S. healthcare supplier. Particularly, the group has focused Intermountain Deliberate Parenthood, a department positioned in Montana.
Based on the Hackread.com analysis crew, RansomHub posted a pattern of the alleged stolen information on its darkish internet leak web site. The info reportedly consists of 93GB of delicate data. The group has threatened to launch the stolen information except a ransom is paid, though the precise quantity demanded continues to be unclear.
Deliberate Parenthood has acknowledged the breach and is taking steps to handle the state of affairs. An investigation is underway to evaluate the complete extent of the information compromised. Martha Fuller, CEO and president of Deliberate Parenthood of Montana (PPMT), issued a press release:
“On August 28, 2024, Planned Parenthood of Montana (PPMT) identified a cybersecurity incident affecting our IT systems. We immediately implemented our incident response protocols, including taking portions of our network offline as a proactive security measure,” Fuller instructed Hackread.com.
RansomHub, a ransomware-as-a-service (RaaS) group, first emerged in February 2024. The group primarily engages in information theft and extortion, quite than encrypting information. Safety specialists imagine RansomHub advanced from the now-defunct Knight ransomware, beforehand generally known as Cyclops.
The group has already claimed greater than 210 victims throughout varied important infrastructure sectors. This assault on Deliberate Parenthood follows a safety advisory issued by the FBI and CISA, warning in regards to the group’s elevated exercise.
The #FBI, @CISAgov and different companions have launched a joint
#CybersecurityAdvisory on Ransomhub, a ransomware-as-a-service (RaaS) variant that has claimed no less than 210 victims in a number of important infrastructure sectors. Click on for particulars and mitigations:
https://t.co/vnQ5H0uVo6— FBI (@FBI)
August 29, 2024
Ferhat Dikbiyik, Chief Analysis and Intelligence Officer of Black Kite, offered perception into RansomHub’s rising affect:
“RansomHub’s rapid rise to the top of the ransomware ecosystem is fueled by its aggressive affiliate model and a growing list of victims, including major players like Halliburton and Planned Parenthood but unlike older groups, they’ve attracted affiliates by offering a 90% cut and upfront payments, driven by the downfall of AlphV and LockBit.”
“Approximately 40% of their attacks target professional services and manufacturing sectors, with U.S. companies accounting for one-third of their victims. Critical industries, such as energy, healthcare, telecommunications, and financial services, are most affected,” he defined.
Dikbiyik additionally famous the broader implications of those assaults: “The Halliburton breach, impacting a key player in the energy sector, highlights the ripple effects these attacks can have, from supply chain disruptions to energy shortages. The Planned Parenthood attack shows RansomHub’s focus on organizations with sensitive data. Their strategy of exploiting vulnerabilities underscores the need for organizations to tighten vulnerability management and third-party risk monitoring, especially as critical infrastructure continues to be a prime target.”
This isn’t the primary time Deliberate Parenthood has confronted a cyber assault. In July 2015, the group was focused by DDoS assaults and a safety breach carried out by anti-abortion hacktivists. These assaults occurred after a controversial undercover video alleged that the group was concerned in donating fetal tissue for medical analysis.
The current ransomware assault exhibits that no group is immune from cyber threats, no matter its dimension or mission. This text will likely be up to date with new data. Keep tuned!
RELATED TOPICS
- Non-Revenue Blood Middle OneBlood Hit by Ransomware Assault
- Iranian Hackers Workforce Up with Ransomware Gangs Towards US
- PythonAnywhere Cloud Platform Abused for Internet hosting Ransomware
- Qilin Ransomware Improve: Now Steals Google Chrome Credentials
- BlackByte Ransomware Exploits VMware Flaw in VPN-Based mostly Assaults
