“BOSTON (美联社) — Federal agencies warned that cybercriminals are unleashing a wave of data-scrambling extortion attempts against the U.S. healthcare system designed to lock up hospital information systems, which could hurt patient care just as nationwide cases of COVID-19 are spiking. In a joint alert Wednesday, the FBI and two federal agencies warned that they had “credible information of an increased and imminent cybercrime threat to U.S. hospitals and healthcare providers.” The alert said malicious groups are targeting the sector with attacks that produce “data theft and disruption of healthcare services.” The cyberattacks involve ransomware, which scrambles data into gibberish that can only be unlocked with software keys provided once targets pay up. Independent security experts say it has already hobbled at least five U.S. hospitals this week, and could potentially impact hundreds more. The offensive by a Russian-speaking criminal gang coincides with the U.S. 总统选举, although there is no immediate indication they were motivated by anything but profit. “We are experiencing the most significant cyber security threat we’ve ever seen in the United States,” Charles Carmakal, chief technical officer of the cybersecurity firm Mandiant, said in a statement. Alex Holden, CEO of Hold Security, which has been closely tracking the ransomware in question for more than a year, agreed that the unfolding offensive is unprecedented in magnitude for the U.S. given its timing in the heat of a contentions presidential election and the worst global pandemic in a century. The federal alert was co-authored by the Department of Homeland Security and the Department of Health and Human Services. The cybercriminals launching the attacks use a strain of ransomware known as Ryuk, which is seeded through a network of zombie computers called Trickbot that Microsoft began trying to counter earlier in October. 我们. Cyber Command has also reportedly taken action against Trickbot. While Microsoft has had considerable success knocking its command-and-control servers offline through legal action, analysts say criminals have still been finding ways to spread Ryuk. 美国. has seen a plague of ransomware over the past 18 months or so, with major cities from Baltimore to Atlanta hit and local governments and schools hit especially hard. In September, a ransomware attack hobbled all 250 我们. facilities of the hospital chain Universal Health Services, forcing doctors and nurses to rely on paper and pencil for record-keeping and slowing lab work. Employees described chaotic conditions impeding patient care, including mounting emergency room waits and the failure of wireless vital-signs monitoring equipment. Also in September, the first known fatality related to ransomware occurred in Duesseldorf, Germany, when an IT system failure forced a critically ill patient to be routed to a hospital in another city. Holden said he alerted federal law enforcement Friday after monitoring infection attempts at a number of hospitals, some of which may have beaten back infections. The FBI did not immediately respond to a request for comment. He said the group was demanding ransoms well above $10 million per target and that criminals involved on the dark web were discussing plans to try to infect more than 400 hospitals, clinics and other medical facilities. “One of the comments from the bad guys is that they are expecting to cause panic and, 不, they are not hitting election systems,” Holden said. “They are hitting where it hurts even more and they know it.” U.S. officials have repeatedly expressed concern about major ransomware attacks affecting the presidential election, even if the criminals are motivated chiefly by profit. Mandiant’s Carmakal identified the criminal gang as UNC1878, saying “it is deliberately targeting and disrupting U.S. hospitals, forcing them to divert patients to other healthcare providers” and producing prolonged delays in critical care. He called the eastern European group “one of most brazen, heartless, and disruptive threat actors I’ve observed over my career.” While no one has proven suspected ties between the Russian government and gangs that use the Trickbot platform, Holden said he has “no doubt that the Russian government is aware of this operation — of terrorism, really.” He said dozens of different criminal groups use Ryuk, paying its architects a cut. Dmitri Alperovitch, co-founder and former chief technical officer of the cybersecurity firm Crowdstrike, said there are “certainly lot of connections between Russian cyber criminals and the state,” with Kremlin-employed hackers sometimes moonlighting as cyber criminals. Neither Holden nor Carmakal would identify the affected hospitals. Four healthcare institutions have been reported hit by ransomware so far this week, three belonging to the St. Lawrence County Health System in upstate New York and the Sky Lakes Medical Center in Klamath Falls, Oregon. Sky Lakes acknowledged the ransomware attack in an online statement, saying it had no evidence that patient information was compromised. It said emergency and urgent care “remain available” The St. Lawrence system did not immediately return phone calls seeking comment. Increasingly, ransomware criminals are stealing data from their targets before encrypting networks, using it for extortion. They often sow the malware weeks before activating it, waiting for moments when they believe they can extract the highest payments, said Brett Callow, an analyst at the cybersecurity firm Emsisoft. A total of 59 我们. healthcare providers/systems have been impacted by ransomware in 2020, disrupting patient care at up to 510 facilities, Callow said. Carmakal said Mandiant had provided Microsoft on Wednesday with as much detail as it could about the thr eat so it could distribute details to its customers. A Microsoft spokesman had no immediate comment. Associated Press writers Eric Tucker in Washington, 直流电, Lisa Baumann in Seattle and Deepti Hajela in New York City contributed to this report.
福克斯新闻’ 杰拉尔多·里维拉: 特朗普现在没有和我说话
112 观看次数0 评论0 喜欢
["Fox News’ Geraldo Rivera said Tuesday that President Donald Trump isn’t speaking to him because he acknowledges the fact that President-elect Joe Biden won the election. 保守派评论员, 谁有描述...
特朗普政府在新的 COVID-19 提议中降低失业救济金
144 观看次数0 评论1 喜欢
["白宫的最新刺激提议是一次性的 $600 大多数美国人的付款和失业者的一块煤. 财政部长史蒂夫·姆努钦 (Steve Mnuchin) 提出的新提案交换了 $3...
拜登选择玛西娅福吉担任住房部长, 汤姆·维尔萨克农业
88 观看次数0 评论0 喜欢
["华盛顿 (美联社) - 主席乔·拜登选出了俄亥俄州代表. Marcia Fudge 担任他的住房和城市发展部长和前农业部长 Tom Vilsack,将在他的政府中再次担任这一角色,...
王牌: 数百万美国人感染 COVID-19 是“了不起的”’ 和“强大的疫苗”’
130 观看次数0 评论0 喜欢
["周二,唐纳德·特朗普总统将大量感染 COVID-19 的美国人称为“了不起的人”。,”错误地声称所有这些病例都是“强大的疫苗”。 “我认为疫苗 ...
如何应对不断抱怨的同事
124 观看次数0 评论0 喜欢
[]["抱怨者可能会找你,因为他们觉得在其他任何地方都听不到他们的声音. 以下是如何以同情心对待他们的委屈。每个人都会在某些时候遇到不断抱怨的人。.
MSNBC 任命 Rashida Jones 为总裁, 为主要有线新闻网创造历史
175 观看次数0 评论0 喜欢
["MSNBC 任命拉什达·琼斯为下一任总裁, 使她成为第一位经营大型综合新闻有线网络的黑人高管, 华尔街日报报道. 琼斯, 现任高级副总裁...
比尔奈解释了为什么口罩会在那些讨厌的“唾沫和鼻涕滴”中保存病毒’ 在海湾
151 观看次数0 评论0 喜欢
["比尔·奈 (Bill Nye) 在周五发布的 TikTok 视频中解释了口罩背后的科学, 强调它们在阻止冠状病毒传播方面的有效性“并不难理解”。奈分享了两张地图...