One of Michigan's largest healthcare providers fell victim to ALPHV ransomware gang

Sicherheit (Pexels, allgemeine Nutzung)[German]The ALPHV ransomware gang has just announced that they hacked one of the largest US healthcare providers in Michigan. More than 6 terabytes of data were stolen from the company's servers. The group is expecting a ransom payment or threatening to release the captured data – including patient data – on the Internet otherwise.

Security analyst Dominic Alvieri came across the ALPHV group's release in question and published its message in the following tweet. Here is the text in question:

Black Cat/ALPHV ransomware victim

ALPHV Blog Collections Api
!!!WARNING!!! 9/28/2023, 5:19:00 PM
One of Michigan's largest healthcare companies was attacked by our group. More than 6 Terabytes of data were stolen from the company's servers, not least due to negligence in network security and data storage. We give a good chance to negotiate and come to a reasonable solution and maintain the reputation and money and calm of your patients,who entrusted you with their health and safety. If our proposal is ignored, we will publish all stolen data in a few days. The medical and personal data of SEVERAL MILLION US citizens are at stake. As well as various video materials regarding the work of this company. It will be one of the biggest leaks of all time.

The group, also known as Black Cat, claims to have successfully attacked one of Michigan's largest healthcare companies. More than 6 terabytes of data were stolen from the company's servers. This was possible, they say, in no small part due to negligence in network security and data storage. The cybercriminals are giving the victim a chance to negotiate to come to a reasonable solution – in the form of ransom payments. This would be the only way to save the reputation, money and peace of mind of the provider's patients, to whom the customers have entrusted their health data.

If no payment is made, the cyber gangsters threaten to release all the stolen data in a matter of days. The medical and personal data of several million US citizens is at stake. Furthermore, various video materials about the work of this company are among the captured files. It will be one of the biggest leaks ever, the cybercriminals says.

The ALPHV Group did not name the affected company. But I found the following tweet, naming an attack, that have occurred in early September 2023. Michigan-based McLaren Healthcare had to take its healthcare network of 15 hospitals and 2 HMOs offline and shut down on September 5. The post here has some information.

This entry was posted in Security and tagged . Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *