New Ransomware Group Branches Out, Hits Multiple Hospitals, Provider Networks


While not much is known about Rhysida’s origins, the RaaS group’s logo references a type of centipede,
HHS HC3 said in its warning about the threat actors. (Image: Tor)

Marianne Kolbasuk McGee (HealthInfoSec) • August 7, 2023

Authorities are sounding the alarm about double-extortion attacks against healthcare and public health sector organizations by a relatively new ransomware-as-a-service group, Rhysida, which until recently had mainly focused on entities in other industries.

Rhysida, known for targeting the education, government, manufacturing, tech and managed services sectors, is apparently branching out with recent attacks on healthcare and public health sector organizations, warned the Department of Health and Human Services’ Health Sector Cybersecurity Coordination Center in an alert issued Friday.

The Health Information Sharing and Analysis Center also told Information Security Media Group that the Rhysida ransomware group has hit several hospitals and health provider networks over the past few days.

“We alerted the global healthcare community about Rhysida and passed along crucial information from our partners, including HC3,” said Errol Weiss, Health-ISAC chief security officer.

“Organizations should be vigilant about updating, protecting and monitoring their networks to avoid becoming victims of this newest ransomware group. Health-ISAC is reminding organizations to stay up to date on patching, backup systems regularly and implement multifactor authentication.”


Continue to the full article at HealthcareInfoSecurity here:


Translate »