| Category | Details |
|---|---|
| Threat Actors | Black Basta ransomware gang (implicated but not confirmed). |
| Campaign Overview | A ransomware attack on Ascension Health on May 8, 2023, impacted nearly 6 million people, leading to data theft and operational disruptions. |
| Target Regions/Victims | 5,599,699 individuals, including patients and staff across Ascension’s 140 hospitals in 19 U.S. states. |
| Methodology | Ransomware attack; accessed seven servers, extracted medical records, personal identification, and payment data. |
| Product Targeted | Ascension Health’s electronic medical records system and hospital infrastructure. |
| Malware Reference | Not specified; attributed to Black Basta ransomware gang. |
| Tools Used | Likely ransomware payloads and tools for data exfiltration. |
| Vulnerabilities Exploited | Unspecified vulnerabilities in Ascension Health’s IT systems. |
| TTPs | Data exfiltration, system encryption, manual operation enforcement, and delayed service restoration. |
| Attribution | Multiple sources implicated Black Basta, though no public acknowledgment from the group. |
| Recommendations | Strengthen cybersecurity defenses, adopt advanced threat detection, ensure robust backup and disaster recovery plans. |
| Source | The Record |
Read full article: https://therecord.media/nearly-six-million-affected-ransomware
The above summary has been generated by an AI language model
Leave a Reply