The FDA-approved COVID-19 ventilator manufacturer Boyce Technologies is the new firm targeted by ransomware launched by the DoppelPaymer gang, who are threatening to leak data from the firm.
While viewing the DoppelPaymer web-blog, where the gang lists example files of the information stolen within the attack, including sales and buy orders, assignment forms, among others.
The cybercriminals have threatened that more data are going to be disclosed next week via the website if an undisclosed cryptocurrency ransom isn’t paid by the firm.
Ransomware & Health Care
While adding further, Brett Callow, threat analyst and ransomware expert at malware lab, Emsisoft, warns that such attacks on hospitals, medical testing labs, and medical device manufacturers might not only cost money, “they may cost lives also.” He adds:
“Unfortunately, ransomware will continue to be a drag for as long as ransoms still be paid, and this is often something organizations should keep this in mind. If they prefer to pay, they’re helping to make sure that other organizations are going to be hit in future, and other organizations could also be ones that offer critically important services.”
At the reporting time, Boyce Technologies has not issued an official statement addressing the ransomware attack, nor any further data on what extent the attack has impacted their operations.
Microsoft’s security team revealed more details in May about DoppelPaymer as a ransomware deployed in human-operated attacks. It uses “brute force” against a target company’s systems management server, and mainly has targeted the healthcare sector amid the coronavirus outbreak.