Colorado Hospital Patient Information System Hit by Crypto Ransomware

Published at: April 29, 2020

Hackers have infected the infrastructure of Parkview Medical Center — the largest health center in Pueblo County, Colorado — with cryptocurrency ransomware.

Citing a hospital employee, Fox News reported on April 24 that Meditech — the Parkview Medical Center’s system for storing patient information — was infected with ransomware and rendered inoperable. The hospital confirmed the incident in a statement:

“On Tuesday, April 21, Parkview Medical Center was the target  of a cyber-incident which has resulted in an outage in a number of our IT systems.”

As Cointelegraph recently reported, ransomware attacks against hospitals are ongoing, despite the fall in the overall number of attacks amid the coronavirus crisis.

Brett Callow, a threat analyst at cybersecurity firm Emsisoft, told Cointelegraph that because of the ongoing pandemic “ransomware attacks have the potential to be devastating and could very well result in the loss of life.” 

Callow also said that because of this, some cybercrime groups may now be more motivated to attack hospitals than usual:

“Certain actors may well be more motivated to attack healthcare providers at this point in time. Hospitals are already strained — overwhelmed, in some cases — and criminals may believe they would have no option but to pay, and to pay very quickly.”

Parkview Medical Center also told Fox that it has switched to a paper record system to track and treat patients:

“Upon learning of the incident, Parkview immediately engaged leading third-party forensic experts to investigate and mitigation is well underway. Patient care is always our first priority. Patients will not see any impact to the level or quality of care being delivered.”

Ransomware is a major cybersecurity threat

Ransomware malware is rapidly evolving and is increasingly viewed by many as a major — if not the biggest — cybersecurity threat. While nearly all ransomware discovered so far demands a ransom in cryptocurrencies, cybersecurity firm Check Point recently unveiled a new ransomware attack wherein the attackers require credit card payment.

As Cointelegraph reported earlier this month, another innovative ransomware recently started its switch from Bitcoin (BTC) to Monero (XMR) in an attempt to protect the cybercriminal’s identity.

Tags
Related Posts
Bitcoin Ransomware and Remote Working: What the Future Holds
The new work-from-home culture is gaining more traction than ever before as businesses, government departments and schools try to remain afloat while flattening the pandemic curve. This migration to remote working is a double-edged sword that creates a fertile land for cybercriminals to thrive on. There is no way that cyberattacks can be eliminated completely. The best that companies can do is minimize the frequency of the threats. What is ransomware? Cybercriminals use malicious software code to block people or organizations from accessing their computer systems until a ransom has been paid. Cryptocurrencies such as Bitcoin (BTC) have made it …
Technology / Aug. 21, 2020
Don’t blame crypto for ransomware
Recently, gas has been a hot topic in the news. In the crypto media, it’s been about Ethereum miner’s fees. In the mainstream media, it’s been about good old-fashioned gasoline, including a short-term lack thereof along the East Coast, thanks to an alleged DarkSide ransomware attack on the Colonial Pipeline system, which provides 45% of the East Coast’s supply of diesel, gasoline and jet fuel. In cases of ransomware, we generally see a typical cycle repeat: Initially, the focus is on the attack, the root cause, the fallout and steps organizations can take to avoid attacks in the future. Then, …
Technology / May 30, 2021
Ransomware Targets Outdated Microsoft Excel Macros to Deploy Attacks
Microsoft Security Intelligence alerted users to a type of ransomware, called Avaddon, that uses Excel 4.0 macros to distribute malicious emails. These emails contain attachments which deploy an attack when opened in any version of Excel. Avaddon ransomware emerged in early June through a massive spam campaign that randomly targeted its victims. Some patterns seem to indicate that the ransomware mostly targets Italian users. Impersonating Italian officials As BleepingComputer reports, the attackers behind the ransomware are recruiting “affiliates” to spread the payload. According to their analysis, Avaddon’s average ransom amount is around $900, paid in crypto. The attack commonly impersonates …
Technology / July 3, 2020
Mac Users Beware — New Ransomware Targets Apple Computers
A new ransomware is targeting macOS users who download installers for popular apps via torrent files. Known as EvilQuest, the attack was first spotted by Dinesh Devadoss, a K7 Lab malware researcher. Findings show that EvilQuest has been quite active since the start of June 2020. Malware lab firms, like Malwarebytes, have found the ransomware attached to pirated macOS software distributed mainly through torrent sites and warez forums. Same BTC address used EvilQuest asks victims to pay a ransom through the same static Bitcoin (BTC) address in every documented attack. One of the first signs that EvilQuest has deployed an …
Technology / July 1, 2020
Defending Bitcoin’s Integrity in the Great Twitter Hack
Bitcoin (BTC) has made global headlines again because of the recent Twitter hack, but this time, we need to work harder to protect Bitcoin’s integrity and the progress the industry has made. The coordinated social engineering attack compromised the Twitter accounts of high-profile figures and organizations like Microsoft co-founder Bill Gates, Tesla founder Elon Musk, Amazon owner Jeff Bezos, former United States President Barack Obama and 2020 U.S. presidential candidate Joe Biden, among many others, to ask for Bitcoin in fake “giveaway” posts. When the story broke, the New York Times, BBC and other mainstream media outlets were quick to …
Decentralization / July 22, 2020