Cybercriminals have been capitalizing on coronavirus (COVID-19) fears to spread malware either through infected coronavirus distribution maps or by demanding ransom through malicious Android app by locking users out of their devices.
Ironically, hackers arenโt even sparing health organizations who are not only treating affected coronavirus patients but are also serving as the frontline virus-testing center.
Recently, a group of hackers known as โMazeโ compromised the infrastructure of Hammersmith Medicines Research (HMR), a UK-based research team on standby for developing a COVID-19 vaccine. ย
For those unaware, HMR performs early medical trials of medication and vaccines and has previously researched and developed an Ebola vaccine and drugs for Alzheimerโs disease.ย
Maze hackers stole sensitive data on medical trial volunteers, including identification documents, medical background, and the vaccination studies volunteers were put through and posted these details after the research firm declined to pay the ransom demand.ย ย
HMR discovered the โsevere attackโ on 14th March during which the firmโs security team was able to quickly detect and repel the attack, and restored its computer systems within the same day.ย ย
โWe repelled [the attack] and quickly restored all our functions. There was no downtime,โ Malcolm Boyceย toldย ComputerWeekly, Managing and Clinical Director, and Doctor at HMR.ย
According to Boyce, the hackers sent them breached information of more than 2,300 patients that dated back anywhere between 8 to 20 years, and included copies of their passports, driving licenses, medical questionnaires, and national insurance numbers.ย
The main intention of the hacking group was to prove and let the research firm know that they had accessed the companyโs sensitive data along with a ransom demand.
โWe have no intention of paying. I would rather go out of business than pay a ransom to these people,โ added Boyce.
After the attack on HMR, the Maze ransomware group made a public promise that they would stop attacking medical organizations until “the stabilization of the situation with the virus.” However, it warns of more attacks in the future and blamed companies who are earning billions of dollars from the internet but are not bothered about security or privacy.ย
Meanwhile, HMR data previously published on the hackerโs website is now no longer available, reports ComputerWeekly.ย
โNote that, since the ComputerWeekly report ran, the data stolen from HMR has been โtemporarily removedโ from the criminalsโ website. […] But hereโs the problem. Other criminals download the data posted on these leak sites and use it for their own purposes.โ
Amidst all these, several computer security companies, including Emsisoft and McAfee, have offered to provide their ransomware services for free to help medical research companies as well as hospitals fighting ransomware attacks amid the Covid-19 outbreak.ย
Also Read- Elite Hackers Targeted WHO Amid Coronavirus Outbreakย
