Wednesday, September 30, 12:17
Home security Microsoft: Warns hospitals about ransomware attacks exploiting COVID-19

Microsoft: Warns hospitals about ransomware attacks exploiting COVID-19

Microsoft warns hospitals that Gateway and their VPN devices are vulnerable to ransomware attacks that seek exposed endpoints. Technology giant claims hackers hiding behind ransomware REVILE (also known as Sodinokibi), scan it Internet for vulnerable systems, with VPN be widely used at this time as, in view of COVID-19, employees are required to stay and work at home. This group of hackers seems to change her malware infrastructure used last year in new attacks aimed at exploiting vulnerable health care facilities, such as hospitals, which are under extreme pressure to deal with patients infected with COVID-19.

According to Microsoft, these attacks are different from ransomware attempts made on commodities, as hackers exploit their expanded knowledge of system management, while also exploiting common misconceptions about network security. The company also added that as soon as hackers infiltrate into one network, perform in-depth recognition and customize privilege escalation and side-based movements errors security and vulnerable services they discover on the network. In these attacks, hackers usually insist, even for months, on untrusted networks, and then develop ransomware payload. This type of ransomware is harder to recover because it can be difficult for victims to find where hackers have discovered bugs and to locate inboxes, credentials, endpoints or applications that have been compromised.

Reportedly, ransomware attacks, including REvil, had targeted bugs found in Citrix ADC and Gateway products. There is also a suspicion that the team exploited last year's errors on the VPN Pulse Security platform to infringe on Travelex. The National Center for Cyber ​​Security (NCSC) and the NSA warned last October that these products had been targeted. APT hackers.

Microsoft recommends them users to do updates often and carefully, carefully monitor remote access and enable notifications of attacks on Windows as well as the AMSI (Antimalware Scan Interface) for Office VBA in Office 365 environments. Finally, a report released by the company in February contains more details on how users can defend, to some extent at least, ransomware attacks.


Please enter your comment!
Please enter your name here

Every accomplishment starts with the decision to try.


Medisys: 60.000 customers affected by data breach

According to an announcement by Medisys Health Group, the personal information of about 60.000 of its clients has been affected by a breach that took place ...

Microsoft: Russia is behind most cyber attacks

Russia-based hackers are responsible for most of the attacks - nationally - on Microsoft customers, according to ...

OTE Group: A guide to the digital transformation of society and business

-A total of nine awards and the top distinction ICT Company of the Year, for the second year in the OTE Group, in Impact Business IT ...

Americans receive unwanted election messages every day!

As the early voting for the US presidential election on November 3 is underway, many Americans (50%) ...

Amazon: Automation has brought more injuries

According to leaked data, it seems that Amazon's automated warehouses have higher injury rates. Since 2014, ...

United Kingdom: Why have hacking prosecutions decreased in the country?

According to a report by the law firm RPC, hacking prosecutions decreased in the United Kingdom by 12% in 2019, compared to ...

Insurance company Arthur J. Gallagher victim of ransomware attack

US-based insurance company Arthur J. Gallagher (AJG) said it was attacked by ransomware on Saturday. It is about a...

Thousands of Microsoft Exchange servers are vulnerable to RCE vulnerabilities

More than 247.000 Microsoft Exchange servers need to be updated to address the CVE-2020-0688 vulnerability, which ...

How to use the YEAR function in Microsoft Excel

If you need to quickly export the year from a date in Microsoft Excel, you can use the YEAR function. This will ...

5G: Nokia wins deal after Huawei shut down!

Nokia has signed a major 5G agreement with the largest British telecommunications group BT, after the exclusion of Huawei!