Attackers Demand $10m Ransom From French Hospital

A major hospital in Corbeil-Essonnes, southeast of Paris, has been targeted by a cyber attack, causing major disruption to services. The hackers made its demands in English soon after the attack started late night on Saturday 20th August. Since the attack, clinicians have had to access data and write prescriptions by hand.

The hackers have demanded a $10 million ransom to unblock the system, but the hospital’s director says it will not pay. The attack is being investigated by the Centre for Combating Digital Crime (C3N) a division of the gendarmerie

The hospital has a 1,000 bed capacity and covers a population of about 600,000 in the Ile de France region. 
It triggered a “white plan” emergency operation on Sunday 21st August, following the start of the attack to ensure some health services could be maintained.

The IT system at the hospital centre in Corbeil-Essonnes has been virtually paralysed by a cyber attack. Non-critical services have had to be directed elsewhere, and staff are now working with limited resources. "Each day we need to rewrite patients' medications, all the prescriptions, the discharge prescriptions," said Valerie Caudwell, the president of the medical commission of the CHSF hospital... For the nurses, instead of putting in all the patients' data on the computer, they now need to file it manually from scratch."

"You know the hospital would not pay, has not paid and will not pay this type of ransom," said CHSF director Gilles Calmes.

Police specialising in cyber crime are investigating. Cyber attacks targeting hospitals in France have been increasing recently, with 380 last year, a 70 percent rise from 2020. Paris prosecutor's office has opened an investigation into the hacking of the hospital's computer system and the attempted extortion by an organised gang.
According to the prosecutor's office, the investigation is being spearheaded by the gendarme's Centre for Combating Digital Crime division.

This latest cyber attack is once again aimed at a hospital, a sector that has consistently been the target of ransomware attacks. For several months, French hospitals have been under fire from cyber criminals. In April, the computer systems belonging to nine of the hospitals in France’s Grand Est region also experienced ransomware attacks.

France24:   Techmonitor:   Le Monde:  RFI:   Cybertalk:   Information Security BuzzBitDefender:   Dark Reading:

You Might Also Read: 

Update: British NHS Confirms A Damaging Software Attack:

 

« Healthcare Ransomware Attacks Have Almost Doubled
It's Just Good Business To Collaborate With A Web Data Collection Partner You Can Trust »

Quartz Conference
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Clayden Law

Clayden Law

Clayden Law are experts in information technology, data privacy and cybersecurity law.

Kanda

Kanda

Kanda offer software development and full cycle quality assurance and application testing services.

CybelAngel

CybelAngel

CybelAngel is a leading digital risk protection platform that detects and resolves external threats before these wreak havoc.

Conscia

Conscia

Conscia provides IT infrastructure solutions and 24/7 services in network, data center, security and mobility.

Compass Security

Compass Security

Compass Security is a specialist IT Security consultancy firm based in Switzerland. Services include pentesting, security assessments, digital forensics and security training.

Israel Aerospace Industries (IAI)

Israel Aerospace Industries (IAI)

IAI offers a holistic approach that provides defense forces, governments, critical infrastructures and large enterprises with end-to-end cyber security & monitoring tools.

Security University

Security University

Security University is a leading provider of Qualified Hands-On Cybersecurity Education, Information Assurance Training and Certifications for IT and Security Professionals.

Open Cloud Factory

Open Cloud Factory

Open Cloud Factory is a European based security company, that strives to ease the pressure on IT managers, by providing tools to implement your Security Strategy in an effective and easy manner.

Strategic Cyber Ventures (SCV)

Strategic Cyber Ventures (SCV)

SCV grow cybersecurity companies that disrupt advanced cyber adversaries and revolutionize the cyber product marketplace.

JobStreet.com

JobStreet.com

JobStreet is one of Asia’s leading online employment marketplaces in Malaysia, Philippines, Singapore, Indonesia and Vietnam.

RIA in a Box

RIA in a Box

MyRIACompliance combines our team of RIA compliance experts with an online software platform to help investment advisers better manage regulatory compliance and cybersecurity responsibilities.

Hyperwise Ventures

Hyperwise Ventures

Hyperwise Ventures lead seed investments in startups in the cyber security and enterprise software spaces.

Futurae Technologies

Futurae Technologies

Futurae - enabling trust and invisible security for your users on all devices and applications. Strong customer authentication (SCA) made easy.

Have I Been Pwned (HIBP)

Have I Been Pwned (HIBP)

Have I Been Pwned is a free resource for anyone to quickly assess if they may have been put at risk due to an online account of theirs having been compromised or "pwned" in a data breach.

IPKeys Technologies

IPKeys Technologies

IPKeys delivers innovative cybersecurity and technology solutions focused on helping the federal government reduce risk and protect the US from cyberattacks.

Wazuh

Wazuh

Wazuh is a free, open source and enterprise-ready security monitoring solution for threat detection, integrity monitoring, incident response and compliance.

Condition Zebra

Condition Zebra

Condition Zebra has wide experience in providing IT Security Services, Training, and Certification in the field of cybersecurity.