Skip to content

Healthcare facilities in Japan and US targeted by ransomware group

  • by
  • 3 min read

The Qilin ransomware gang, notoriously known for showing no mercy to its targets, has claimed responsibility for attacks on Japan’s Utsunomiya Central Clinic (UCC), a cancer treatment facility, and Rockhill Women’s Care, an all-female-owned gynecology and female healthcare facility located in Kansas City.

The UCC was hacked on February 10 and confirmed that ransomware had hit it on February 18. The attack cost the clinic nearly 140GB of files containing data on almost 300,000 people, including personally identifiable information, medical histories, treatment details, and images from scans and procedures. A sample of this information is already up on Qilin’s data leak website with the rest of the data on sale. The targeted system held personal data from patients and staff, including doctors, nurses, and non-medical employees.

Rockhill Women’s Care didn’t fare any better either. The hackers stole nearly 20 GB of data, including patients’ full names, ages, addresses, phone numbers, partial medical histories, treatment information, details of current conditions, and even their insurance companies. The Register reports that the clinic hasn’t officially disclosed the incident as a ransomware attack or even a cybersecurity event, but it did alert social media followers of an unscheduled closure that lasted two days due to “technical difficulties.”

Illustration: jmiks | shutterstock
Illustration: JMiks | Shutterstock

The facility’s website still claims that they’re working through technical difficulties, but they are open and seeing patients for scheduled appointments. Aside from this notice, there has been no official report of a cyberattack or service disruption from the healthcare facility.

As for the hackers, the Qilin ransomware group is believed to be Russian in origin and almost exclusively targets healthcare organisations. Due to the urgent nature of work in healthcare, organisations often don’t have the time to orchestrate a proper IT response, often leading to quick ransom payouts. Healthcare organisations are also not the best protected against threats.

Qilin caused the infamous attack on NHS pathology services supplier, crippling UK’s healthcare response for weeks. The breach also resulted in a £6.09 million fine for Advanced Computer Software Group Ltd, NHS’ IT service provider. Nearly 82,946 people’s personal information was exposed in the breach. Its other victims are also in or around the healthcare system, including social welfare company The Big Issue, set up to help homeless people.

In the News: Cybercriminals exploit YouTube and Telegram to spread crypto miners

Yadullah Abidi

Yadullah Abidi

Yadullah is a Computer Science graduate who writes/edits/shoots/codes all things cybersecurity, gaming, and tech hardware. When he's not, he streams himself racing virtual cars. He's been writing and reporting on tech and cybersecurity with websites like Candid.Technology and MakeUseOf since 2018. You can contact him here: yadullahabidi@pm.me.

Related Reads

This is an image of https 3344700 1280

SSL.com patches abused certificate issue vulnerability

Photo: koshiro k/shutterstock. Com

OpenAI report claims its latest models hallucinate more

What is a hack? 9 different types of hackers you must know about

New RustoBot malware hijacks routers to inject commands

This is an image of wordpress featured 9924

Ad-fraud operation monetises piracy via WordPress plugins

Photo: koshiro k/shutterstock. Com

OpenAI’s o3 model scores lower than initially promised

  • by
  • AI, In News
This is an image of spyware on pc

Russian hosting provider abused for malware delivery

>