After the LockBit 3.0 group attack, Cannes Hospital – Simone Veil (CHC-SV) refused to pay the ransom demanded by the group. Unfortunately, some data was therefore exposed.
On April 16, the CHC-SV was the victim of a major cyberattack, plunging the establishment into a major crisis. The latter was claimed by the formidable LockBit group, a real scourge of cybercrime which had nevertheless been partly dismantled in February.
Faced with this hard blow, the CHC-SV IT teams mobilized tirelessly to limit the damage and restore the normal functioning of the systems. The most striking fact: the hospital did not give in to the pressure of the ransom, but the consequences could be quite significant.
Uncompromising blackmail: the hospital refuses to give in
Respecting his modus operandi, Lockbit 3.0 demanded the payment of a substantial ransom in exchange for the return of stolen data and a cessation of threats. A request to which the CHC-SV management categorically refused to comply. In a tweet, the hospital informed of the refusal while promising to inform those affected by any potential leak of data concerning them.
Technical teams are struggling to get IT systems back to normal and are maintaining their investigations internally.
The position taken is courageous, but it provoked the pirates to take action. Faced with the hospital’s refusal, they published part of the stolen data on their web portal hosted on the darkweb. A leak which seriously compromises the privacy of patients and which also exposes the establishment to potential legal proceedings.
This data leak could also tarnish the reputation of the hospital and force it to face significant financial costs linked to the management of the data leak. Potentially, these costs could include: costs of notifying affected patients and repairing compromised IT systems, as well as additional costs to strengthen their security measures.
The medical sector, an area highly exposed to cybercriminal acts
Healthcare facilities are becoming prime targets for cybercriminals because they store sensitive patient data, such as their medical records and financial information. LockBit is used to taking on big fish like this, but they are not the only ones. This Finn, recently convicted, had also stolen data from a psychiatric hospital.
Bad news, proving that LockBit is still alive and well, despite the February dragnet. An observation that Colonel Pascal Péresse shared with us during the interview he gave us. “ This is a serious blow to them, but we cannot consider it final » he confided. Let us nevertheless salute the courage of the Cannes hospital teams, who did not give in to blackmail.
A few weeks before the Paris 2024 Olympic Games, the number of cyber threats is reaching records. In this context, it is more important than ever to protect your fixed and mobile terminals. Close-up on our ranking of the best antivirus security suites in May 2024.
Read more
Source : Bleeping Computer
7