The Truth is Powerful
Cybercriminals post health system employee information online
A hacker group known for ransomware attacks posted sensitive employee files online following a cyberattack at a Gallup, New Mexico, health system.
According to NBC News , the group stole sensitive employee files from Rehoboth McKinley Christian Health Care Services and posted them to its website, seemingly in an attempt to extort payment.
The files reportedly included job applications and background check authorizations that included Social Security numbers.
WHY IT MATTERS
Caleb Barlow, CEO of CynergisTek, told Healthcare IT News Executive Editor Mike Miliard that the action of posting stolen information online is a fairly new tactic for bad actors.
“This is commonly referred to as ‘double extortion,'” said Barlow, describing the action of posting information after a ransom has not been paid.While NBC did not confirm whether Rehoboth paid the ransom, the information was removed from the hacker group’s website.”Recovery from a ransomware attack often requires negotiation with the ransomware actors,” Allan Liska, a ransomware analyst at the cybersecurity company Recorded Future, said to NBC.”Usually, when files appear on an extortion site and then disappear, it means a payment was made,” Liska added.Although most experts say paying hackers is not the right strategy for dealing with ransomware , Barlow said the […]