April 19, 2024 at 07:42PM
Ransomware attacks decreased after disruptions by LockBit and BlackCat, but have since increased with the emergence of RansomHub. Change HealthCare was extorted through RansomHub after already paying a ransom to BlackCat/ALPHV. Other targets included Omni Hotels, Nexperia, United Nations, and Octapharma Plasma. Additional ransomware variants were also identified this week. Implications for affected organizations persisted, with UnitedHealth Group reporting an $872 million impact from the attack. Noteworthy developments also include charges against a botnet operator and rebranding of the HelloKitty ransomware operation as HelloGookie.
From the meeting notes provided, here are the key takeaways:
– Ransomware attacks have resurged after a temporary decrease following disruptions to the LockBit and BlackCat operations.
– Change HealthCare suffered a second attack through the new RansomHub operation, with an affiliate extorting the company again after stealing ransom money and data.
– The cyberattack on Change HealthCare has cost UnitedHealth Group $872 million with ongoing losses.
– Other notable attacks targeted Omni Hotels, Dutch chipmaker Nexperia, the United Nations Development Programme, Octapharma Plasma, and the Atlantic States Marine Fisheries Commission.
– The U.S. Justice Department charged a Moldovan national for running a large-scale botnet and deploying ransomware.
– The Akira ransomware operation earned $42 million from over 250 victims, while HelloKitty has rebranded as HelloGookie.
– Various new ransomware variants have been discovered, each with distinct file extensions and ransom notes.
These takeaways summarize the recent developments in ransomware attacks and related cyber incidents.