US 'Disrupted' North Korean Hackers Who Breached Health Sector (bloomberg.com) 13
Federal investigators "disrupted" a North Korean state-sponsored hacking group that targeted US medical facilities and other health organizations, a top Justice Department official said Tuesday. From a report: The attacks included the targeting of a medical center in Kansas last year, Deputy Attorney General Lisa Monaco said, disabling the hospital's systems that store important data and run key equipment. Monaco said the government's investigation led to a public warning, with the Department of Homeland Security, about "Maui" ransomware targeting the health sector.
"The hospital's leadership faced an impossible choice: Give in to the ransom demand, or cripple the ability of the doctors and nurses to provide critical care," Monaco said at the International Conference on Cyber Security at Fordham University in New York. The Biden administration has increasingly warned of cyber threats from countries, including Russia, and has urged the private sector to do more to harden its security. The Cybersecurity and Infrastructure Security Agency, for instance, has widely published tips it said could help deter and mitigate potentially disruptive attacks.
"The hospital's leadership faced an impossible choice: Give in to the ransom demand, or cripple the ability of the doctors and nurses to provide critical care," Monaco said at the International Conference on Cyber Security at Fordham University in New York. The Biden administration has increasingly warned of cyber threats from countries, including Russia, and has urged the private sector to do more to harden its security. The Cybersecurity and Infrastructure Security Agency, for instance, has widely published tips it said could help deter and mitigate potentially disruptive attacks.
Go back to terminals (Score:1)
Dump the trash Windows boxes and go back to old school dumb terminals. This shit would vanish overnight.
It would seem easy enough oh wait.. (Score:2)
The last thing I could find was this [northkoreatech.org] on how the DPRK has Internet access but then it also ties through China. Well if they're hacking through China that would be a diplomatic issue and one I'm sure won't be addressed directly with Pooh Bear. Does anybody have an updated list of DPRK routes?
Welp (Score:3)
and the process involved in that seizure.
Sounds like they got more than just the ransom payment.
My Devil's Advocate wonders if FBI didn't just steal some shitcoins from a known baddy and declared a victory.
SHUM (Score:1)
Re: (Score:2)
And if they did how would that be inconsistent with the summary? The public ledger is traceable. It's how the baddy gets to be known in the first place.
Tracking shitcoin transactions is literally the modern way of finding and uncovering dumb criminals and there are far more people doing it than just the FBI.
Bloomberg misses key question (Score:2)
How did the ransomware get inside? Was it phishing(most likely) or a software/network vulnerability or someone plugged in an infected flash drive or ???
Re: (Score:2)
Probably a bad mix of Microsoft Windows and stupid users, as usual.
Archived Article (Score:3)