Sign up for our daily briefing
Make your busy days simpler with Axios AM/PM. Catch up on what's new and why it matters in just 5 minutes.
Stay on top of the latest market trends
Subscribe to Axios Markets for the latest market trends and economic insights. Sign up for free.
Sports news worthy of your time
Binge on the stats and stories that drive the sports world with Axios Sports. Sign up for free.
Tech news worthy of your time
Get our smart take on technology from the Valley and D.C. with Axios Login. Sign up for free.
Get the inside stories
Get an insider's guide to the new White House with Axios Sneak Peek. Sign up for free.
Catch up on coronavirus stories and special reports, curated by Mike Allen everyday
Catch up on coronavirus stories and special reports, curated by Mike Allen everyday
Want a daily digest of the top Denver news?
Get a daily digest of the most important stories affecting your hometown with Axios Denver
Want a daily digest of the top Des Moines news?
Get a daily digest of the most important stories affecting your hometown with Axios Des Moines
Want a daily digest of the top Twin Cities news?
Get a daily digest of the most important stories affecting your hometown with Axios Twin Cities
Want a daily digest of the top Tampa Bay news?
Get a daily digest of the most important stories affecting your hometown with Axios Tampa Bay
Want a daily digest of the top Charlotte news?
Get a daily digest of the most important stories affecting your hometown with Axios Charlotte
Illustration: Eniola Odetunde/Axios
A tsunami of ransomware attacks has hit U.S. hospitals in Vermont, New York, Oregon and likely other states, with U.S. officials warning that there is “credible information of an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers” across the country, according to a recent CISA, FBI and HHS bulletin.
Why it matters: The decision by cyber criminals to launch a large-scale campaign attacking hospitals represents a shocking escalation by these groups, and it shows how unbound by moral considerations they are when selecting their targets.
Details: “As many as 20 medical facilities” have already been affected by these attacks, according to NBC News.
- The ransomware attacks are believed to have been perpetrated by the Russian-speaking group of cyber criminals that operates the “TrickBot” botnet, the world’s largest. A botnet is a group of hijacked computers that have been repurposed for malicious ends.
Background: Last month, the U.S. military’s Cyber Command temporarily degraded the TrickBot network. In a related action, Microsoft also attempted to disrupt this cyber criminal group’s activities.
The big picture: These ransomware attacks, which encrypt victims’ data unless they pay a fee to get it back, are occurring as medical facilities across the country are being overwhelmed with new hospitalizations because of the COVID-19 pandemic.
- Some affected hospitals have lost access to their digital records, slowing down basic administrative tasks and creating backlogs. In an Oregon hospital, surgeries and some cancer treatments have been delayed because of the attacks.
The bottom line: Ransomware-wielding cyber criminals represent "the most significant cyber threat that we’ve experienced in the US to date," Charles Carmakal, chief technical officer of the cybersecurity firm Mandiant, told Wired.