Cybercriminals targeting critical healthcare institutions with ransomware [The scum 'rise' to the occasion!]

Interpol ^ | 04/04/2020 | Interpol

[SES1066]

SINGAPORE – Hospitals and other institutions on the front lines of the fight against the coronavirus facing unprecedented physical dangers are now also facing another threat from cybercriminals. ***** break ***** INTERPOL has issued a warning to organizations at the forefront of the global response to the COVID-19 outbreak that have also become targets of ransomware attacks, which are designed to lock them out of their critical systems in an attempt to extort payments.

[SES1066]

Also article behind paywall in today's Wall Street Journal about this despicable criminal attack. I cannot begin to say how despicable these scammers are, may they rot in hell!

[E. Pluribus Unum]

China.

[SES1066]

[cont.]

When so many staff / network / security functions are now being done from home AND when more people are concerned about the Pandemic, messages like the one below show the scum are still active!

In early March, the Champaign-Urbana Public Health District got hit and had to pay $350k to the blackmailers to regain access. As advised by Interpol and so many others, these are the minimums for security here;
Only open emails or download software/applications from trusted sources;
Do not click on links or open attachments in emails which you were not expecting to receive, or come from an unknown sender;
Secure email systems to protect from spam which could be infected;
Backup all important files frequently, and store them independently from your system (e.g. in the cloud, on an external drive);
Ensure you have the latest anti-virus software installed on all systems and mobile devices, and that it is constantly running;
Use strong, unique passwords for all systems, and update them regularly.

[Robert DeLong]

The only problem with the following advice is if the ransomeware was put on the system awhile ago and remained inactive for a set period of time. Then you run the risk of it being on the backups as well.

Backup all important files frequently, and store them independently from your system (e.g. in the cloud, on an external drive);

[LittleBillyInfidel]

I’ve been saying for 20 years now that they should be liable to capitol punishment or life. These cowards would would largely cease as they know it’s two way street and it would change the very nature of the risk to reward element.

[GailA]

Step Daughter has our computers as tight as she can get them. Still getting Spam. FB is letting it through. Nearly every other post is a Shill ad for Diabetes cures, Sue happy lawyers. And the same Freaking woman in ads from different companies trying to sell sandals. I report as spam.

[MayflowerMadam]

One of our personal PCs was hit with ransomware about a year ago. We have a yearly contract with a tech support company, and gave them a call. It took about five hours, but they got everything back to where it should be, and we paid no ransom.

We’re pretty sure it got through in an email identified as UPS — but wasn’t.

[SES1066]

The only problem with the following advice is if the ransomeware was put on the system awhile ago and remained inactive for a set period of time.
Backup all important files frequently, and store them independently from your system (e.g. in the cloud, on an external drive);

True enough but these SCUM are also plagued by the 'White Hats' that look for fixes that can invalidate an attack scheme. Set a trigger for a year out and the crooks are betting it still working AND waiting a year for the prize. My bet is that 4 weeks is the max logical attack and my backup goes 5 weeks.

Naked HDs are incredibly cheap insurance and if hit I have a chance of taking it to a secure shop for debugging by earlier date parameters. These SCUM need an ongoing income stream, not just a big jackpot once a year.

[Spktyr]

This has been going on for the past decade and isn’t new.

[Kid Shelleen]

Does anyone one know how effective the ransomware protection feature is on Windows 10?

[Robert DeLong]

I would think that an external drive for a hospital probably is not doable. Especially if they are using a mainframe as a serve to PC’s that are capable of accessing it as needed.

[SES1066]

Does anyone one know how effective the ransomware protection feature is on Windows 10?

As with anything else in this area of concern, it depends upon how frequently this protection is upgraded as the SCUM find vulnerabilities. I'd rather use it AND make regular generational disk images on external media. The more proactive YOU are in your protection scheme, the more likelihood for a good outcome!

An external HD Dock can cost less than $40 and the naked HDs (1 TB) are about the same.

[SES1066]

I would think that an external drive for a hospital probably is not doable.

You are correct as I got caught in 'thread creep', but that is not to say that there are not appropriate protection schemes available. My point is that the bad guys are out there and the medical first responders are vulnerable, especially at this time of social separation. No protection scheme is perfect but at least try to close vulnerabilities like password being '12345abcde' or worse!

[Kid Shelleen]

Thanks; I do make regular backups on external drives.

[Robert DeLong]

Yeah I agree with that for sure.

[flamberge]

This has been going on for the past decade and isn’t new.

And most of the perpetrators are located in foreign countries where it is very hard to get to them. Sometimes the local Government is taking a cut of the revenue to protect the criminals. They are effectively immune from prosecution.

This problem cannot be solved by judicial methods.

[Spktyr]

I personally would find resolving it by special operations or covert operative means a very appropriate use of my tax dollars.