18 incidents of ransomware in health treated by Anssi in 2019

[ad_1]

ANSSI handled a total of 69 incidents relating to ransomware attacks on the "very numerous attacks of this type in France" in 2019, and the health sector is strongly concerned, she said.

The agency sees two reasons: "the quality of incident reports made to Anssi" and "the interest of attackers for entities reputed to have poor IT security or whose business disruption would have a significant social impact . "

The report also returns to the cyberattack which greatly disrupted the Rouen University Hospital in November, described as "representative of the threat of ransomware for French interests".

It confirms that "the compromise (of the CHU) took place by the opening of a malicious email" and that the ransomware used is Clop, as explained by Vincent Trély, president of the Association for the security of computer systems. 'information (Apssis), end of November at TICsanté.

The agency had dispatched agents to the Rouen University Hospital from the start of the attack to investigate the origin of the attack and how it spread. It is part of "a large campaign targeting European universities, operated by the large Russian-speaking cybercriminal group TA505 and which notably affected the universities of Antwerp at the end of October and Maastricht in December," she said in her report.

The agency specifies that its data being "limited", it "lacks direct visibility on the extent of the ransomware phenomenon in France, in particular the number of victims, their nature as well as the ransomware mainly targeting the country". These data "cannot therefore reflect the real impact of ransomware in France".

The Digital Health Agency (ANS, ex-Asip health) has identified 693 incidents declared by health structures since the implementation of a new reporting system in October 2017, we recall.

The report on the CERT-com website

[ad_2]