Hollywood Hospital Victimized by Ransomware – “Locky” Spreading Fast

Hollywood Hospital Victimized by Ransomware – “Locky” Spreading Fast

Ransomware can leave any business, organization, institution or agency in a very tough spot. Ransomware is probably the fastest growing malware class of today’s cyber threat landscape due to its simplicity and effectiveness.

In this digital world, it doesn’t take a lot of imagination to predict just how much chaos would ensue in just about any business if control of their electronic world is ripped out of their hands by bad actors. As reported by Forbes on February 18th, that’s exactly what happened to Hollywood Presbyterian Medical Center earlier this month.

On February 5th, they became victims of a ransomware attack which affected a broad range of daily activities, even forcing staff to resort to pen and paper record keeping for a while. Eventually, the hospital paid roughly $17,000 (the estimated current value of the 40 Bitcoins demanded) just to get their operations on track. The Forbes article also highlighted some scary numbers on the new “Locky” ransomware variant behind the hospital attack, reporting estimations that it is infecting over 90,000 systems a day.

Joe Caruso, founder and CEO-CTO of Global Digital Forensics (GDF), a premier national provider of cyber security solutions and digital forensics services headquartered in New York City, has seen the aftermath of ransomware attacks many times over the last couple of years.

According to him,

“Ransomware is probably the fastest growing malware class of today’s cyber threat landscape due to its simplicity and effectiveness. When I first heard about the hospital attack, initial reports put the ransom at around $3.5 million dollars, and you know what, it didn’t even seem farfetched. After all, lives could have hung in the balance if a hospital is involved. And you can bet that ears perked in hacker circles around the world too, getting them to think that if they hit the right target, one heavily reliant on their digital assets, the sky is the limit. Make no mistake about it, the threat from ransomware like Locky, and it's certainly not the only one, is very real and the list of victims is growing fast That’s why we offer solutions which stress the importance of regular threat assessments, testing, enterprise-wide cyber awareness training and effective incident response, because with today’s threats, if those four elements are not working in concert, your business is more than likely going to be in for a rude and costly awakening at some point.”

So how is ransomware delivered?

“As with most of today’s most malicious threats, hackers typically seek out the path of least resistance,” says Caruso, “so they rely on the most fallible aspect of any organization’s cyber security posture, the human element, with the most common way of introducing malware being through a phishing or spear phishing email with an infected attachment, or Driveby attacks launched from visited websites containing malware.”

So how can ransomware be avoided?

“In two words, vigilance and awareness. Automated antivirus and antimalware solutions can do an excellent job stopping a great majority of attacks, but they are not intelligent enough to deal with the social engineering strategies hackers use today to compromise targets. And the key to stopping threats like ransomware is to never receive the payload in the first place. Hacks that make national news, and a majority of big ones that go unreported for obvious reasons, almost always use some type of social engineering, from those phishing and spear phishing emails and Driveby attacks I mentioned, to hand delivering a payload that gets injected via an infected USB stick. Stopping the most advanced and costly threats all starts with understanding what to look for, where the weak links are and how to avoid becoming a victim.

That’s what we do for clients with comprehensive cyber threat vulnerability assessments and penetration testing, with a special focus on social engineering methods used by today’s real-world hackers. We’ve done assessments, pen-testing, awareness training and served as emergency incident responders for hundreds of organizations, from companies and corporations recognized around the world, to small and medium sized business in every industry imaginable, so from A to Z, we can customize solutions and plans to fit virtually any situation and budget.

We offer free initial consultations where we’ll be happy to discuss your unique needs and lay out a cost-effective plan, so there is no risk and no more excuses. The much bigger risk when it comes to cyber security is doing nothing,” warns Caruso, “because in today’s digital world, that’s a plan which could cost you everything.”

For more information, visit http://www.evestigate.com/

*Global Digital Forensics is a recognized industry leader in the fields of computer forensics services, electronic discovery (eDiscovery), cyber security and emergency incident response, with years of experience assisting clients in the government, banking, healthcare, education and corporate arenas. For a free consultation with a Global Digital Forensics specialist, call 1-800-868-8189 about tailoring a plan which will meet your unique needs. Emergency responders are also standing by 24/7 to handle intrusion and data breach emergencies whenever and wherever they arise. Time is critical if a cyber-incident has occurred, so don’t hesitate to get help.


Related News

Another Hospital Paralyzed By Bitcoin Ransomware

Another hospital was attacked again with a crypto-locking malware called “Locky.” Henderson Kentucky Methodist Hospital had announced an “Internal State of Emergency” after the system was infected by the malicious computer program. Just after the recent Ottawa hospital attack and the Hollywood Presbyterian Medical Center extortion, which allowed hackers....

Ransomware Extortionists Land $17,000 in Bitcoin

A cyberattack targeting a Hollywood hospital laced with ransomware malware has been making rounds in mainstream news circles recently. In a separate incident, the Horry County school system in North Carolina was also struck by a ransomware cyberattack. The cyberattack on Hollywood Presbyterian Medical Center lasted nearly a fortnight after beginning on 5 Feb, with hospital systems affected and staff declaring an ‘internal emergency’. On Wednesday, the hospital announced that it had relented and paid the ransom demanded by extortionists. $17,000 in bitcoins. The attack began on the evening....

U.S. Government: Ransomware Attacks Have Quadrupled This Year

Ransomware attacks have quadrupled this year over last year, averaging 4,000 per day, according to the U.S. Justice Department, The Wall Street Journal reported in a front-page story recently. This is because ransomware has become easier to deploy and more profitable than other scams, and bitcoin is more widely used. The FBI noted ransomware costs totaled $209 million in the first three months this year, compared to a total $24 million for all of 2015. Costs include lost productivity and time needed to recover files. Ransomware losses averaged $333,000 per incident in the first three....

US & Canada Cyber Agencies Issue Alert To Healthcare Providers For Ransomware

US and Canada cyber security agencies issued an alert last week regarding an increasing number of ransomware attacks against healthcare organizations. Five providers, in just the last month alone, have been infected with such computer viruses, and often they are forced to pay Bitcoin ransoms. “Malicious software” infected the computer system at Alvarado Hospital Medical Center in San Diego last month. Two other hospitals, Chino Valley Medical Center and Desert Valley Hospital in Victorville, were also infected. Each of these infected parties is a Prime Healthcare Hospital. In Indiana,....

MedStar Washington Potentially Affected by Bitcoin Ransomware

There are rumors circulating this healthcare institution is affected by Bitcoin ransomware, as one staffer mentioned how she saw a pop-up on two different computer screens. In this pop-up windows, there was information about the infection, and instructions to pay a ransom through “some form of Internet currency”. Those details have not been officially confirmed at the time of publication, though. Another hospital in the United States has fallen victim to a virus bringing their services to a halt. MedStar Hospital Center, located in Washington, noticed the virus intrusion early Monday....