Akute Ransomware-Gefahr für Spitäler

Washington (pte021/30.10.2020/11:30) – Das US-Gesundheitswesen muss sich akut auf eine erhöhte Cybercrime-Bedrohung einstellen. Davor warnen die zum Ministerium für Innere Sicherheit gehörige Cybersecurity and Infrastructure Security Agency (CISA) http://cisa.gov , das FBI und das Ministerium für Gesundheitspflege und Soziale Dienste (HHS) http://hhs.gov . Demnach sind verstärkt Ransomware-Angriffe mit “Ryuk” und “Conti” auf Spitäler und Gesundheitsdienstleister zu erwarten. Dahinter dürften osteuropäische Hacker stecken.

“TrickBot” wieder im Rennen

Ransomware, die Systeme in Spitälern lahmlegt, ist gerade angesichts der COVID-19-Pandemie eine sehr reale Gefahr. Immerhin kann sie ohnehin schon überlastete Einrichtungen de facto lahmlegen. CISA, FBI und HHS warnen also gemeinsam, dass es glaubwürdige Hinweise auf eine erhöhte Bedrohungslage gibt. Cyberkriminelle nutzen demnach das Botnetz “TrickBot”, das trotzt Gegenmaßnahmen von US-Militär, Microsoft und Security-Unternehmen Mitte Oktober offenbar wieder gut funktioniert sowie den “BazarLoader”, um eben Ryuk oder Conti bei ihren Zielen einzuschleusen. Die Ransomware verschlüsselt dann alle Daten und legt so Systeme lahm.

Die US-Behörden mahnen daher Spitäler und Gesundheitsdienstleister zu besonderer Vorsicht und Maßnahmen, um sich vor Infektionen zu schützen oder zumindest deren Auswirkungen in Grenzen zu halten. Das umfasst unter anderem möglichst umgehende Patches von Betriebssystem und Software, passend eingeschränkte Zugriffsrechte für verschieden User-Accounts und regelmäßige Back-ups, die auf vom Netzwerk getrennten Rechnern gelagert werden. Wichtig sei auch, bei Nutzern ein Bewusstsein zu schaffen, damit potenzielle Angriffe als solche erkennen und wissen, wer im Ernstfall zu kontaktieren ist.

Allzu reale Gefahr

Die Warnung kam allerdings erst nachdem eine neue Angriffswelle bereits begonnen hatte. Denn beginnend am Montag hat Ryuk binnen 24 Stunden sechs Spitäler von Kalifornien bis New York getroffen, berichtet die “Washington Post”. Die Lösegeldforderungen für das Entschlüsseln der Daten lag demnach bei über einer Mio. Dollar. Manche der betroffenen Einrichtungen hätten bezahlt.

Die Behörden-Warnung scheint eine Reaktion auf Hinweise zu sein, dass das erst der Anfang einer großen Kampagne gewesen sein dürfte. Zwar sprechen CISA, FBI und HHS in ihrer Warnung selbst nicht über die Hinterleute. In US-Medien ist allerdings die Rede von “osteuropäischen” oder “russischen” Hackern. Das ist plausibel, da die Gruppe hinter der Ryuk-Ransomware als wahrscheinlich russisch gilt.

122 Comments

  1. We absolutely love your blog and find the majority of your post’s to be exactly what I’m looking for. Do you offer guest writers to write content to suit your needs? I wouldn’t mind composing a post or elaborating on a number of the subjects you write about here. Again, awesome weblog!

  2. My brother suggested I might like this websiteHe was once totally rightThis post truly made my dayYou can not imagine simply how a lot time I had spent for this information! Thanks!

  3. whoah this weblog is wonderful i like reading your articles. Keep up the good paintings! You already know, many people are looking around for this information, you can help them greatly.

  4. Thanks for sharing the information. I found the information very useful. That’s a awesome story you posted. I will come back to scan some more.

  5. This is something that will need all of our combined efforts to address.

  6. Good day! This is my first comment here so I just wanted to give a quick shout out and say I really enjoy reading through your articles. Can you recommend any other blogs/websites/forums that cover the same subjects? Thanks a lot!

  7. whoah this weblog is great i really like studying your articles. Stay up the great work! You already know, lots of persons are looking round for this information, you can aid them greatly.

  8. Dude.. I am not much into reading, but somehow I got to read lots of articles on your blog. Its amazing how interesting it is for me to visit you very often. –

  9. Thank you for sharing this very good post. Very interesting ideas! (as always, btw)

  10. This has to be one of my favorite posts! And on top of thats its also very helpful topic for newbies. thank a lot for the information!

  11. Hello there I am so delighted I found your weblog, I really found you by mistake, while I was searching on Google for something else, Anyhow I am here now and would just like to say cheers for a remarkable post and a all round exciting blog (I also love the theme/design), I don’t have time to browse it all at the moment but I have book-marked it and also included your RSS feeds, so when I have time I will be back to read a lot more, Please do keep up the superb work.

  12. This contained some excellent tips and tools. Great blog publication.

  13. This is valuable stuff.In my opinion, if all website owners and bloggers developed their content they way you have, the internet will be a lot more useful than ever before.

  14. Well, I don’t know if that’s going to work for me, but definitely worked for you! 🙂 Excellent post!

  15. Great post. I was checking constantly this blog and I’m impressed! Very useful info specifically the last part 🙂 I care for such info much. I was looking for this certain information for a very long time. Thank you and good luck.

  16. Appreciation for taking the time to discuss this topic, I would love to discover more on this topic. If viable, as you gain expertise, would you object to updating the website with further information? It is tremendously beneficial for me.

  17. Hello there, just became aware of your blog through Google, and found that it is truly informative. I am going to watch out for brussels. I will appreciate if you continue this in future. Lots of people will be benefited from your writing. Cheers!

  18. Spot on with this write-up, I truly believe this website requirements a lot much more consideration. I’ll probably be once more to read much much more, thanks for that info.

  19. Spot on with this write-up, I truly believe this website requirements a lot much more consideration. I’ll probably be once more to read much much more, thanks for that info.

  20. I have been surfing online more than three hours today, yet I never found anything that grabbed my interest as much as this piece.

  21. I just couldn’t leave your web site prior to suggesting that I really enjoyed the standard info an individual supply to your guests? Is going to be again continuously in order to inspect new posts

Leave a Reply

Your email address will not be published.