Tag Archive for: Cripple

How ransomware could cripple countries, not just companies

/in


The scale of the problem is not easy to measure. Companies that are hacked or pay a ransom are reluctant to own up to it. Rising numbers can reflect better detection rather than more attacks. But what is clear is that, after a lull in 2022, caused in part by a split between Russian and Ukrainian hackers, ransomware attacks are back at their peak. Officials expect that 2023 will turn out to be the worst year on record.

The number of victims is troubling (see chart). In the four months to October the number listed on “leak sites”, where attackers name victims who refuse to pay, was the highest ever recorded, according to Secureworks, a cyber-security firm. Sophos, another such firm, estimates that on average individual ransom payments doubled from around $800,000 in 2022 to more than $1.5m in the first three months of 2023. And Chainalysis, a data company, estimates that ransom payments between January and June 2023 added up to $449m, compared with about $559m for the entirety of 2022. These numbers might reflect just the tip of the problem.

The growing threat from ransomware is occurring amid a shift in the nature of the business. An activity once dominated by a few large criminal groups is giving way to a mosaic of smaller attackers, many of them based in Russia or other ex-Soviet states, who can buy the necessary hacking tools. Western countries are striking back with sanctions and cyber-attacks of their own. Yet this does not seem to have stopped the wave of ransom payments, which is enriching criminal groups—and so potentially exacerbating the problem for years to come.

Ransomware has been mainly a Western problem but it is spreading globally. America, Australia, Britain, Canada and Germany are the most affected countries, but Brazil and India are not far behind them. Victims span the public and private sectors—in recent weeks attacks have hit an Italian cloud-service provider that hosts government data, Germany’s energy agency and a Chinese bank in New York, among others. An attack on Christmas Eve disrupted emergency care at a German hospital network, and attacks on the…

Source…

Could Russian hackers cripple US health care systems?

/in


Could russian hackers cripple U.S. health care systems?

Sick people seeking lifesaving care in the United States could fall victim to a hidden part of Russia’s war on Ukraine—vicious cyberattacks aimed at sowing disruption, confusion and chaos as ground forces advance.

Cybersecurity experts warn that attacks launched against Ukrainian institutions have the potential to spill over into America’s health care systems, potentially endangering patients’ lives.

The cybersecurity program at the U.S. Department of Health and Human Services last week issued an analysis warning health care IT officials about two pieces of Russian malware that could wipe out hospital data vital to patient care.

And since early December, the American Hospital Association has been warning about increased risk related to Russian cyberattacks, said John Riggi, the association’s national adviser for cybersecurity and risk.

“We were issuing advisories to the nation’s hospitals and health system, saying the geopolitical tensions would certainly increase the risk of cyberattacks which would impact potentially U.S. health care,” Riggi said.

Such attacks have the potential to cost lives, by cutting doctors and nurses off from needed patient data and causing hospitals under attack to delay scheduled procedures and divert critically ill people to other facilities, Riggi explained.

Nearly a quarter of health care organizations hit by a ransomware attack during the past two years said the attack resulted in increased patient death rates, according to a September 2021 report sponsored by the cybersecurity company Censinet.

Further, about two in five (37%) said such attacks caused an increase in complications from medical procedures, while more than two-thirds (69%) said delays in procedures and tests have led to poor patient outcomes, the report says.

“That is not a financial crime,” Riggi said. “It is a threat-to-life crime, and the government needs to respond to such, including offensive operations against these foreign-based bad guys.”


Source…

New Windows Zero-Day Exploit Exposed Via Twitter Can Cripple Windows 10 PCs

/in

  1. New Windows Zero-Day Exploit Exposed Via Twitter Can Cripple Windows 10 PCs  Hot Hardware

  2. New Windows Zero-Day Bug Helps Delete Any File, Exploit Available  BleepingComputer
  3. Security researchers release Windows zero-day exploit proof of concept  OnMSFT (blog)
  4. October 24, 2018—KB4462933 (OS Build 17134.376) – Microsoft Support  Microsoft Support

    5. Full coverage

zero day exploit – read more

Israeli Military Reportedly Plotting to Cripple Iran in Cyberspace – FOX News

/in

TEL AVIV – Israel has set up a military cyber command to wage a computer war against Iran as senior … In April, Iranian government offices came under attack from a hitherto unknown malware virus to which Tehran officials gave the name Stars.
Read more