It sounds like something out of one tragic Black mirror Episode: A woman in urgent need of help died this week after an apparently botched ransomware attack tore down a major hospital in Germany, forcing paramedics to take her to another city for treatment several Sockets.
It seems to be the first case of someone who dies as a result of a ransomware attack, albeit indirect, and the German authorities are investigating the unknown hackers on suspicion of negligent manslaughter. the Associated Press Reports
From Thursday evening, the attack disrupted the IT systems of the Düsseldorf University Hospital, impaired access to data and forced them to postpone all planned operations and to direct emergency patients to other locations. The event under investigation occurred on Friday when a woman in a life-threatening condition was rushed to a hospital about 20 miles away, delaying her treatment by about an hour, resulting in her death.
Strangely said the hospital on twitter that “there was no specific ransom demand” and no data was stolen, suggesting that it may just be an unfortunate victim who was embroiled in a misdirected attack. A blackmail certificate that was left on one of the 30 servers crippled in the hack further supports this theory: According to a report by the Minister of Justice of North Rhine-Westphalia, it is sent via AP to the Heinrich Heine University, a member of the clinic. The note says the university to contact but does not list any requirements, which only raises further questions.
The local police were finally able to contact the perpetrators and inform them The not just them missed its intended mark, however they would too endangered the hospital patient in the process. The attackers Reportedly dropped the Blackmail attempt immediately and provided a decryption key to unlock all of them hacked server. The authorities have since lost contact with them, according to the Justice Minister’s report.
The hospital said investigators attributed the problem to a hacker exploiting a vulnerability in “widely used commercial add-on software” that it did not name. A.s Wired points this outEvidence suggests it is likely the Citrix Application Delivery Controller, a tool from the software company Citrix Systems tThis is used to optimize traffic without compromising data security. In a subsequent tweet, hospital officials said they had alerted German authorities to the attack, including the German cybersecurity agency BSI, which is responsible for sending out cybersecurity alerts. The day before the attack, the BSI tweeted a warning to German companies asking them to update their Citrix network gateways because ransomware gangs are exploiting a critical vulnerability known as CVE-2019-19781.
The same vulnerability also hit the headlines on Wednesday after the Cybersecurity and Infrastructure Security Agency, a division of the US Department of Homeland Security, released it a safety notice Warning that CVE-2019-19781 was one of several backdoors used by Beijing-backed hackers to address game and software manufacturers.
During this week’s incident it appears to have been a tragic and fatal one Mix-ups, ransomware attacks have grown steadily more common around the world in last months. D.Dozens of the biggest names in entertainment history were met in May, with other ransomware Victims including the watchmaker Garmin, the foreign exchange company Travelexand the power supply of the network the Texas judicial systemjust to name a few. hacker These attacks reportedly grossed millions of dollars, which explains why more and more bad actors are risking jail time to get juicy Cut.