Menu
On Sunday 26th of November 2022, a Colombian healthcare provider, Keralty multinational healthcare organization suffered a RansomHouse ransomware attack that resulted in a disruption to the websites and operations of the company and its subsidiaries. They also confirmed that they have been working to provide continuity of care to their members by implementing the necessary contingency plans to maintain the service.
“The computer servers of the Keralty Group companies have been the object of a cyberattack, which has generated technical failures in our systems.” – The translated statement from Keralty.
It is believed that the RansomHouse ransomware operation is behind the attack after a screenshot of a VMware ESXi server with a ransom note displaying ‘Dear Keralty,’ was discovered. This ransomware note has been identified as belonging to the RansomHouse ransomware operation, which originally called its ransomware ‘White Rabbit.’ Sources have confirmed that the RansomHouse threat actors have confirmed that they were behind the attack and claimed to have stolen 3 TB of data.
NCSC Threat Reports Feed© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.
