Attackers Demand $10m Ransom From French Hospital

Uploaded on 2022-08-29 in FREE TO VIEW, BUSINESS-Services-Health & Welfare, TECHNOLOGY--Hackers

A major hospital in Corbeil-Essonnes, southeast of Paris, has been targeted by a cyber attack, causing major disruption to services. The hackers made its demands in English soon after the attack started late night on Saturday 20th August. Since the attack, clinicians have had to access data and write prescriptions by hand.

The hackers have demanded a $10 million ransom to unblock the system, but the hospital’s director says it will not pay. The attack is being investigated by the Centre for Combating Digital Crime (C3N) a division of the gendarmerie

The hospital has a 1,000 bed capacity and covers a population of about 600,000 in the Ile de France region. 
It triggered a “white plan” emergency operation on Sunday 21st August, following the start of the attack to ensure some health services could be maintained.

The IT system at the hospital centre in Corbeil-Essonnes has been virtually paralysed by a cyber attack. Non-critical services have had to be directed elsewhere, and staff are now working with limited resources. "Each day we need to rewrite patients' medications, all the prescriptions, the discharge prescriptions," said Valerie Caudwell, the president of the medical commission of the CHSF hospital... For the nurses, instead of putting in all the patients' data on the computer, they now need to file it manually from scratch."

"You know the hospital would not pay, has not paid and will not pay this type of ransom," said CHSF director Gilles Calmes.

Police specialising in cyber crime are investigating. Cyber attacks targeting hospitals in France have been increasing recently, with 380 last year, a 70 percent rise from 2020. Paris prosecutor's office has opened an investigation into the hacking of the hospital's computer system and the attempted extortion by an organised gang.
According to the prosecutor's office, the investigation is being spearheaded by the gendarme's Centre for Combating Digital Crime division.

This latest cyber attack is once again aimed at a hospital, a sector that has consistently been the target of ransomware attacks. For several months, French hospitals have been under fire from cyber criminals. In April, the computer systems belonging to nine of the hospitals in France’s Grand Est region also experienced ransomware attacks.

France24:   Techmonitor:   Le Monde:  RFI:   Cybertalk:   Information Security BuzzBitDefender:   Dark Reading:

You Might Also Read: 

Update: British NHS Confirms A Damaging Software Attack:

 

« Healthcare Ransomware Attacks Have Almost Doubled
It's Just Good Business To Collaborate With A Web Data Collection Partner You Can Trust »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Tines

Tines

The Tines security automation platform helps security teams automate manual tasks, making them more effective and efficient.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

VMworld

VMworld

VMworld is a global conference for virtualization and cloud computing, including associated security issues.

Promon

Promon

Promon is an application security vendor providing Self-Protection abilities to Mobile apps and Desktop applications.

EC-Council

EC-Council

EC-Council is a member-based organization that certifies individuals in various e-business and information security skills.

Packet Ninjas

Packet Ninjas

Packet Ninjas is a niche cyber security agency with specialized expertise in the use of digital intelligence to strengthen cyber security.

New Zealand Internet Task Force (NZITF)

New Zealand Internet Task Force (NZITF)

The New Zealand Internet Task Force (NZITF) is a non-profit with the mission of improving the cyber security posture of New Zealand.

MONITORAPP

MONITORAPP

MONITORAPP is responsible for complete web security. Protect your business environment with Application Security Solutions from MONTORAPP.

Bolster

Bolster

Bolster (formerly RedMarlin) is an AI-based cyber-security platform designed to detect phishing and fraudulent sites in real-time.

BrainStorm

BrainStorm

BrainStorm Threat Defense takes a new human-focused approach to security awareness that traditional training lacks. It’s a cutting-edge platform to make your users more security savvy.

Tailscale

Tailscale

Tailscale is a VPN service that makes the devices and applications you own accessible anywhere in the world, securely and effortlessly.

Ipstack

Ipstack

Ipstack offers one of the leading IP to geolocation APIs and global IP database services worldwide. Protect your site and web application by detecting proxies, crawlers or tor users at first glance.

IBM Security

IBM Security

IBM manufactures and markets computer hardware, middleware and software, and offers hosting and consulting services in areas ranging from mainframe computers to nanotechnology.

Heron Technology

Heron Technology

Heron Technology are a technology solutions consultancy with core competencies in the areas of Cyber Security and Digital Aviation.

Helix Security Services

Helix Security Services

Helix Security provides IT & information security consultancy to government and businesses across New Zealand.

Entro Security

Entro Security

Entro is the first holistic secrets security platform that detects, safeguards, and enriches with context your secrets across code, vaults, chats, and platforms.

Digital.ai

Digital.ai

Digital.ai empowers organizations to scale software development teams, continuously deliver software with greater quality and security.

Adsigo

Adsigo

Adsigo AG is your reliable and professional partner for all topics concerning PCI certification, compliance and information security.