Attackers Demand $10m Ransom From French Hospital

A major hospital in Corbeil-Essonnes, southeast of Paris, has been targeted by a cyber attack, causing major disruption to services. The hackers made its demands in English soon after the attack started late night on Saturday 20th August. Since the attack, clinicians have had to access data and write prescriptions by hand.

The hackers have demanded a $10 million ransom to unblock the system, but the hospital’s director says it will not pay. The attack is being investigated by the Centre for Combating Digital Crime (C3N) a division of the gendarmerie

The hospital has a 1,000 bed capacity and covers a population of about 600,000 in the Ile de France region. 
It triggered a “white plan” emergency operation on Sunday 21st August, following the start of the attack to ensure some health services could be maintained.

The IT system at the hospital centre in Corbeil-Essonnes has been virtually paralysed by a cyber attack. Non-critical services have had to be directed elsewhere, and staff are now working with limited resources. "Each day we need to rewrite patients' medications, all the prescriptions, the discharge prescriptions," said Valerie Caudwell, the president of the medical commission of the CHSF hospital... For the nurses, instead of putting in all the patients' data on the computer, they now need to file it manually from scratch."

"You know the hospital would not pay, has not paid and will not pay this type of ransom," said CHSF director Gilles Calmes.

Police specialising in cyber crime are investigating. Cyber attacks targeting hospitals in France have been increasing recently, with 380 last year, a 70 percent rise from 2020. Paris prosecutor's office has opened an investigation into the hacking of the hospital's computer system and the attempted extortion by an organised gang.
According to the prosecutor's office, the investigation is being spearheaded by the gendarme's Centre for Combating Digital Crime division.

This latest cyber attack is once again aimed at a hospital, a sector that has consistently been the target of ransomware attacks. For several months, French hospitals have been under fire from cyber criminals. In April, the computer systems belonging to nine of the hospitals in France’s Grand Est region also experienced ransomware attacks.

France24:   Techmonitor:   Le Monde:  RFI:   Cybertalk:   Information Security BuzzBitDefender:   Dark Reading:

You Might Also Read: 

Update: British NHS Confirms A Damaging Software Attack:

 

« Healthcare Ransomware Attacks Have Almost Doubled
It's Just Good Business To Collaborate With A Web Data Collection Partner You Can Trust »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

IEEE Computer Society

IEEE Computer Society

The IEEE Computer Society is the world's leading membership organization dedicated to computer science and technology.

NUS-Singtel Cyber Security R&D Lab

NUS-Singtel Cyber Security R&D Lab

NUS-Singtel Cyber Security R&D Lab conducts research into predictive security analytics.

Engage Black

Engage Black

Engage Black provides solutions for securing and protecting cryptographic keys, data at rest, and data in motion.

Logically Secure

Logically Secure

Logically Secure provide penetration testing and security assessment services.

AEI Cybersecurity

AEI Cybersecurity

AEI brings together companies, Research Centres, Universities, and other organizations interested in promoting new cybersecurity technologies.

Rippleshot

Rippleshot

Rippleshot is a fraud analytics firm that detects mass card compromises faster, allowing issuers to execute more proactive fraud detection strategies.

Rule4

Rule4

Rule4 is a global professional services firm that provides practical, real-world knowledge and solutions in areas including cybersecurity, AI, Machine Learning and industrial control systems.

RFA

RFA

RFA is an institutional-quality IT, financial cloud and cyber-security services provider to the financial service and investment management sector.

Highland Capital Partners

Highland Capital Partners

Highland Capital Partners is an early stage venture capital firm focused on category-defining businesses in consumer and enterprise technology, including cybersecurity.

CyVolve

CyVolve

Cyvolve is the next great leap forward in data security, ensuring constant encryption and pervasive control over all your data.

Sontiq

Sontiq

Sontiq is committed to providing best-in-class, highly scalable, award-winning identity security solutions to consumers, businesses and government agencies.

SessionGuardian

SessionGuardian

SessionGuardian (formerly SecureReview) is the world's first and only technology which ensures second-by-second biometric identity verification of your remote user, from log on to log off.

2021.AI

2021.AI

2021.AI serves the growing business need for full oversight and management of applied AI.

Digital Encode

Digital Encode

Digital Encode is a leading consulting and integration firm that specializes in the design, management, and security of business-critical networks, telecommunications, and IT infrastructures.

DeepTempo

DeepTempo

At DeepTempo, we build AI models and related software that protect enterprises and service providers from sophisticated cyber threats.

BeckTek

BeckTek

BeckTek specialize in IT Cyber Security & Support, helping clients run their businesses faster, easier and more profitably.