Attackers Demand $10m Ransom From French Hospital

A major hospital in Corbeil-Essonnes, southeast of Paris, has been targeted by a cyber attack, causing major disruption to services. The hackers made its demands in English soon after the attack started late night on Saturday 20th August. Since the attack, clinicians have had to access data and write prescriptions by hand.

The hackers have demanded a $10 million ransom to unblock the system, but the hospital’s director says it will not pay. The attack is being investigated by the Centre for Combating Digital Crime (C3N) a division of the gendarmerie

The hospital has a 1,000 bed capacity and covers a population of about 600,000 in the Ile de France region. 
It triggered a “white plan” emergency operation on Sunday 21st August, following the start of the attack to ensure some health services could be maintained.

The IT system at the hospital centre in Corbeil-Essonnes has been virtually paralysed by a cyber attack. Non-critical services have had to be directed elsewhere, and staff are now working with limited resources. "Each day we need to rewrite patients' medications, all the prescriptions, the discharge prescriptions," said Valerie Caudwell, the president of the medical commission of the CHSF hospital... For the nurses, instead of putting in all the patients' data on the computer, they now need to file it manually from scratch."

"You know the hospital would not pay, has not paid and will not pay this type of ransom," said CHSF director Gilles Calmes.

Police specialising in cyber crime are investigating. Cyber attacks targeting hospitals in France have been increasing recently, with 380 last year, a 70 percent rise from 2020. Paris prosecutor's office has opened an investigation into the hacking of the hospital's computer system and the attempted extortion by an organised gang.
According to the prosecutor's office, the investigation is being spearheaded by the gendarme's Centre for Combating Digital Crime division.

This latest cyber attack is once again aimed at a hospital, a sector that has consistently been the target of ransomware attacks. For several months, French hospitals have been under fire from cyber criminals. In April, the computer systems belonging to nine of the hospitals in France’s Grand Est region also experienced ransomware attacks.

France24:   Techmonitor:   Le Monde:  RFI:   Cybertalk:   Information Security BuzzBitDefender:   Dark Reading:

You Might Also Read: 

Update: British NHS Confirms A Damaging Software Attack:

 

« Healthcare Ransomware Attacks Have Almost Doubled
It's Just Good Business To Collaborate With A Web Data Collection Partner You Can Trust »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Radiant Logic

Radiant Logic

Radiant Logic is a market-leading provider of federated identity solutions based on virtualization, and delivers simple, logical, and standards-based access to all identities within an organization.

Luxar Tech

Luxar Tech

Luxar's network visibility products enable enterprises and service providers to monitor network traffic, improve security and optimize efficiency.

SEPPmail

SEPPmail

SEPPmail is a patented e-mail encryption solution to secure your electronic communication.

Codeproof Technologies

Codeproof Technologies

The Codeproof enterprise mobility solution empowers your business to secure, deploy and manage mobile applications and data on smartphones, tablets, IoT devices and more.

Telelogos

Telelogos

Telelogos is a European provider of Enterprise Mobility Management software, Digital Signage software and Data Transfer and Synchronization software.

Polish Centre for Accreditation (PCA)

Polish Centre for Accreditation (PCA)

PCA is the national accreditation body for Poland. The directory of members provides details of organisations offering certification services for ISO 27001.

GulfTalent

GulfTalent

GulfTalent is the leading job site for professionals in the Middle East and Gulf region covering all sectors and job categories, including cybersecurity.

CyberQ Group

CyberQ Group

CyberQ is an award winning cyber security consultancy and services provider and an innovator in Artificial Intelligence and Automated Cyber Security.

Open Connectivity Foundation (OCF)

Open Connectivity Foundation (OCF)

OCF is dedicated to ensuring secure interoperability ensuring secure interoperability of IoT for consumers, businesses and industries.

Arkose Labs

Arkose Labs

Arkose Labs' Fraud and Abuse Platform combines Telemetry and adaptive Enforcement Challenges to break down the ROI of fraudsters and protect digital businesses.

Thridwayv

Thridwayv

Thirdwayv helps your enterprise realize the full potential of loT connectivity. All while neutralizing security threats that can run ruin the customer experience - and your reputation.

Presidio

Presidio

Presidio is a leading North American IT solutions provider focused on Digital Infrastructure, Business Analytics, Cloud, Security & Emerging solutions.

Sikich

Sikich

Sikich LLP is a leading professional services firm specializing in accounting, advisory, technology and managed services.

Black Girls In Cyber (BGiC)

Black Girls In Cyber (BGiC)

Black Girls In Cyber's mission is to increase industry awareness and diversity in cybersecurity, privacy, and STEM for women of color.

Gutsy

Gutsy

Gutsy uses process mining to help organizations visualize and analyze their complex security processes to understand how they actually run, based on observable event data.

Phone Monitoring Service

Phone Monitoring Service

Phone Monitoring Service provides cyber security services, ethical hacking services, social media hacking services in the USA, Canada, Europe.