Category | Details |
---|---|
Threat Actors | Black Basta ransomware gang (implicated but not confirmed). |
Campaign Overview | A ransomware attack on Ascension Health on May 8, 2023, impacted nearly 6 million people, leading to data theft and operational disruptions. |
Target Regions/Victims | 5,599,699 individuals, including patients and staff across Ascension’s 140 hospitals in 19 U.S. states. |
Methodology | Ransomware attack; accessed seven servers, extracted medical records, personal identification, and payment data. |
Product Targeted | Ascension Health’s electronic medical records system and hospital infrastructure. |
Malware Reference | Not specified; attributed to Black Basta ransomware gang. |
Tools Used | Likely ransomware payloads and tools for data exfiltration. |
Vulnerabilities Exploited | Unspecified vulnerabilities in Ascension Health’s IT systems. |
TTPs | Data exfiltration, system encryption, manual operation enforcement, and delayed service restoration. |
Attribution | Multiple sources implicated Black Basta, though no public acknowledgment from the group. |
Recommendations | Strengthen cybersecurity defenses, adopt advanced threat detection, ensure robust backup and disaster recovery plans. |
Source | The Record |
Read full article: https://therecord.media/nearly-six-million-affected-ransomware
The above summary has been generated by an AI language model
Leave a Reply