PhilHealth hackers $300,000 blackmail - DICT
By Nidz Godino
"They have already made demand for $300,000 for them to delete data they captured, and would give us key so we can decrypt data that they encrypted," Department of Information and Communications Technology (DICT) Undersecretary Jeffrey Ian Dy told media after Medusa ransomware infected systems of state health insurer Philippine Health Insurance Corp. (PhilHealth) on Sept. 22,2023, cyberhackers have demanded $300,000 or approximately P16 million.
Stolen data from PhilHealth has been posted on dark web, he stressed.
National Computer Emergency Response Team of DICT Cybersecurity Bureau has been mobilized to probe cyberhackers, Dy noted.
"Observed recently since June 2021, Medusa ransomware is distributed by exploiting publicly exposed Remote Desktop Protocol servers either through brute force attacks, phishing campaigns or by exploiting existing vulnerabilities,when executed, Medusa ransomware terminates more than 280 Windows services and processes for programs that could prevent file encryption," Dy said in advisory.
Dy noted they have taken containment measures and PhilHealth's system should return today.
PhilHealth president Emmanuel Ledesma Jr. said no personal or medical information has been compromised or leaked.
No comments:
Post a Comment