Who: Hackers known as AlphV or BlackCat, perpetrators of the Change Healthcare ransomware attack.
What: The hackers received a $22 million payment, visible on Bitcoin's blockchain, suggesting that the victim, Change Healthcare, may have paid a significant ransom. An affiliate of AlphV claimed on the cybercriminal underground forum RAMP that they were cheated out of their share of the ransom, pointing to the $22 million transaction as proof. Change Healthcare, a medical firm and a major player in prescription processing, has faced disruptions for over 10 days due to the ransomware attack.
Impact: If the $22 million ransom payment is confirmed, it sets a dangerous precedent for the healthcare industry, highlighting the profitability of attacks on critical services. Ransomware researcher Brett Callow emphasizes that such payments fund future attacks and encourage other cybercriminals to target the healthcare sector. The incident also exposes a rift within the hacker group, with affiliates expressing dissatisfaction and potential risks, such as possessing sensitive medical information and the possibility of additional demands or data leaks. Despite facing a previous FBI operation in December, AlphV made a comeback with the Change Healthcare attack, showcasing the persistent and evolving nature of ransomware threats.
Read the full article HERE