Topic: Bitcoin payment for Exploit. (Read 197 times)

At this point in time, no one would really care about medical records being exposed to the open public, even the affected individuals themselves IMO as everyone is currently occupied with the pandemic. That might be an understatement on my end but it is what I see, at least here in the country that I'm staying on. It's just saddening to see that some twisted individuals would go the lengths to actually make money off of the pandemic and do the most ridiculous things possible even if it involves tarnishing the last sense of normalcy this society has currently. Perhaps every hospital should do a systems upgrade and add layers of security for their data in order to avoid this from happening again.

I think it is better to make sure that the transaction is immediately solved because most of the time if this kind of news will spread rapidly to the people and also to the patients, it is a massive problem because it is an essential issue to the hospital. After all, this is the credentials of the patients. Also, even hackers do not have mercy because most of the time, yet there is an economic problem, they are still targeting all people because it is all about the money; it is all about earnings. If you are the head of the hospital, you need to do an action immediately because it is information that can risk other people.

Good thing that hackers ask for money in return instead of digging directly to patients credentials, and enjoy living a life they didn't worked out for. Why is this a good thing? It simply just reveals how vulnerable the hospital's security itself. Worse possible circumstance than this could possibly happen. Although it seems bad to look at, but looking at it on the other hand, it really helps the security of the hospital to tighten up more or else everything would be doomed. The thing is, do hackers really return the credentials without even looking upon a single sheet of those files? You know it is easy to play pretend nowadays.

Wasn't expecting that there are people out there that can do this much in times of crisis. The hackers are using a ransomware to make sure that they will pay for data recovery, at times like this no negotiations are worth it more than many of their patients life.

As I was saying here, even before the advent of Covid-19 pandemic, hospitals has been a target for hackers because obviously they are willing to pay the ransom because they are afraid that their clients info are going to be leaked. I'm just trying to point out that the hospital infrastructure are very weak and easily be exploited by the criminals because their systems are really outdated and we really don't know if there are somewhat an internal IT department to help them upgrade their systems so that they won't be vulnerable to attacks specially today.

I like Bitcoin but there are people who just wants to destroy the face of this community by using this cryptocurrency only for bad purposes, and that’s what annoys me the most. Just imagine that a situation like this becomes a regular thing, the government might get pissed and start setting out strict rules for those that are caught making use of cryptocurrency.

If only that people will have sense and stop using this Bitcoin and other cryptocurrencies for evil purposes, but the truth is that it’s never going to happen, they will continue doing this,and that’s because no matter what there will always be bad people.

The false image of Bitcoin being constantly linked to criminals should continue to be preserved, right? Why does it surprise you? Why offer USD for getting back your data when you can "offer the criminal's favorite coin" for it?

They know nothing about privacy and how BTC works. It's all based on assumptions and the false ideas of BTC authorities have successfully shaped in most people's heads. Possibly more of a desperate try to recover their information by trying to bait them with "their favorite candy" (BTC). Maybe this time the lesson will be learned.

I believe this is an option offered by hackers to still be able to hide from police pursuit. The redemption carried out by the hospital related to important data received by hackers in the form of bitcoin greatly enables them to remain safe due to the anonymous nature of bitcoin.
I assume that if the hacker used a bank account, he could easily be traced to where the money flow ended by the police. But in fact, hackers are human beings who also still have shortcomings and they still might make mistakes in action. And if the police can track them down, the prison is waiting to be responsible for all of its actions.

I don’t know what is the bitcoin’s problem with this issue? The fault lies with the hospitals and the lack of qualified medical staff that can deal with the basics of preserving personal data and protecting information.
Therefore, countries must spend more money to protect the privacy of patients, and they must train doctors.
Why do they use BTC? We all know that bitcoin can be tracked, even using the best mixers will not make it impossible to track your currencies.
It would make sense if they asked for privacy cryptocurrencies like Monero.

There is nothing we can do to change them, what we can just do is to avoid them. I agree scammers are inhumane, they don't have a heart when it comes to their victim if it is dying or will lost everything after taking it to them. Even with pandemic like this, they are just more vile these days taking advantage of the current event, what is most painful part is that the government has nothing to do about it.

I pity them, a lot. They are attacking hospitals which is a very busy facility because of the current disease spreading in the world. There is nothing more inhuman like that. pssh.

Some hackers do not have a sense of humanity so do not think about the impact on others during the covid19 pandemic.

The dirty thing that was done was in the background because of money and wanted to blackmail the hospital by hacking their data. events like this must be resisted and opponents comparable to them are white hackers who have a high sense of solidarity and protect innocent people. But the authorities must also help solve the problem.

It does show the vulnerability of bitcoin. Its good that even on medical facility it is utlized but people tends to ruin its reputation by inserting some scamming activity. I think bitcoin adoption is great but we must have a regulation on its application. You dont want to be on the same boat with OP's story.

Personal data is important, exploitation has been so common now these days. If you were that guy who will pay over 40btc? I think he must be rich to pay for the data breached on him. The point is, always be careful on dealing your file online.

We live in a society where cyber-crimes are on an increasing level. I'm obviously putting the blame on the top-level personnel of the hospitals because they must protect the database. If an exchange gets hacked due to the lack of security, is it the hacker's fault or the exchange's?

The cost of not having a secured database is very high. These could at any point include your own data too. This data includes in many cases even personal addresses, phone numbers and crucial data about your person. If someone ever wants to hurt you one way or another, they could easily get in touch with your personal info by buying it off a black market from someone who's successfully done such a hack..

So yes, it's their blame. You don't blame a thief for stealing stuff from your car if you've left your windows open - the one to blame becomes you for not taking proper precaution.

This news makes me kinda glad that the healthcare system in my country isn't entirely "digital" and still relies mostly on paperwork and the good old-fashioned bureaucracy.
The hackers,who are spreading ransomware across hospitals are freakin' sociopaths.Taking advantage of such emergency situation and making lots of money out of it.
What kind of low life shitty person you have to be in order to create and spread such malware?
Anyway,I hope that the majority of the hackers have at least some dignity and refuse to do such shit.

I don't think these personnel ever forgot the importance of their patients' data, it is just that they must be doing things as if the possible threats are not as near as their doorstep. They were wrong of course but putting the entire blame on them is also wrong. They must be presuming everything to be pretty normal. But these hospitals should now consider hiring a data security staff to make sure everything's well protected. The cost of not having one is pretty high. 

Oh well, hackers do not trigger the "stop" button once a crisis begins. That's how they work - they don't give a damn about deaths of others as soon as they profit off them.

Why are we blaming the medical personnel though? If the hospital managers wanted to secure their database and bulletproof it from any kind of hack, they could do it. Medical personnel aren't IT specialists, so why put your trust on their mouses when you can secure your database from attacks?

I have no doubts the hospital managers know how valuable our personal data is on the black markets.. so why do nothing about securing it?

We cannot really deny today that there are a lot of scammers that are grabbing the opportunity to make a lot of advantage even this kind of scenario because they know that the people have a lot of problems and they want to target those people and also I think the system security of the account also has a problem too because it is better at the first place they made a lot of security and maintenance because it is a private record of the patient and it is a huge problem if the bad person got this information, I hope they made a fast action about this because this is another problem to the community and it is not good if the information gets more leak.

It is better than even we have the economic crises about the pandemic outbreak in the higher positions must consider this kind of hacking is a threat to the hospital because we need to make sure all of the information of each individual must be safe and must not be a leak.

And maybe the hospital are forced to pay because they are afraid that they are going to be sued by their patience because of the 'doctor-patient confidentiality".  So just imagine if the medical records of that hospital leaks on the internet and used as a tool to destroy others.

I think one problem is that the health industry computer systems are not that updated that's why it is easy for the hackers to exploit. And it is more evident in this Covid-19 pandemic as many hackers are easily breaking on hospital systems because of that loophole. Microsoft is Alerting Hospitals Vulnerable to Ransomware Attacks.

While the coronavirus is rapidly spreading there is a lot of people abuse this kind of situation an unknown group of hackers exploit the data records of the hospital and they use bitcoin as the payment to the transaction. A Hollywood-based medical center pays for over 40 BTC over $17k dollars for the recovery of their data.

Source:

---

This kind of scenario is not new because from the previous year of 2018 there is news about the Hancock Regional Hospital data exploit again. The Hospital Administrator Steve Long pay for over  $55,000 of this cyber attack so why did they still pay this kind of data breach? Because all of the details of the patience and the workers in the hospital record is important.

So why the health information record is important than your personal identifiable information?
In the black market the health information is more valuable than your personal information only because in personal infomation it is just only consist of your but in health informatuion it is consist of . It is more risk if the hackers have this kind of information because they can now make easy access to your connected records. Also they know now the information about your health like what is food makes trigger your allergy and can be possible cause of death. There are a lot of cases happen like this L.A. hospital pays $17,000 in bitcoin ransom to get back medical records and this kind of crime can continuously happen for over the years.

Why this happen?
Base on the Chubb the 58 percent of the reason why this happens is because of the human errors and to the employees does not aware of the things they are doing. Some of the reason why is clicking of links and emails came from unknown sources. Also, they included the installing of software that consist of malware, downloading files, and getting cracked documents.

To make their systems better and to be secured here are the things they can do base on Chubb.

1.Set up multifactor authentication - make a lot of verifications, passwords and be randomly generated.
2. Practice vulnerability management - Always make sure that the system are always safe in the risk.
3. Vet your vendors - Always monitor who can access the system so we can easily identify who is the responsible for the problem and to make it immediately report.
4. Install AI-enabled software that can work offline - Even the system is offline still we need to make a lot of updates
5. Enable some level of system logging  - Don't make an easy or general logging in the system make it more difficult and a lot of verifications.

Source