Technology

US recovers more than half a million dollars in ransom payments to North Korea

By Andreww McCollum
0

The Department of Justice (DOJ) and the FBI disrupted ransomware operations of a North Korean state-sponsored group that targeted U.S. medical facilities, recovering roughly a half-million dollars in ransom payments made to the country, Deputy Attorney General Lisa Monaco announced on Tuesday.

Speaking at the International Conference on Cyber Security, Monaco said the seizure of the ransom payments — which she said were laundered through cryptocurrency — is the latest example of the DOJ’s approach to prioritizing the prevention of cyber attacks.

“This approach has yielded real results,” she said. “In the last year, those results — reflected in actions and disruptions — many of which began with critical reporting from and cooperation with companies who have been victims of cyberattacks.”

Monaco said a medical center in Kansas, which she did not name, was targeted by the ransomware from the North Korean state-sponsored group, which encrypted the hospital’s servers that store data and operate equipment.

“Left with no real choice, the hospital’s leadership paid the ransom,” Monaco said. “But they also notified the FBI, which was the right thing to do for themselves and for future victims.”

She said the ransomware was a “never-before-seen” variant, which the DOJ now refers to as “Maui,” and that investigators tracked the payments to China-based money launderers, whose accounts she said also contained other ransom payments from a medical provider in Colorado and other victims.

Investigators recovered the entirety of the ransom paid by the Kansas hospital and what they believe to be the ransom paid by the Colorado provider and other victims. Monaco said the funds will be returned to the facilities.

“In sum, a medical center in Kansas did the right thing at a moment of crisis and called the FBI,” Monaco said. 

“What flowed from that virtuous decision was: the recovery of their ransom payment; the recovery of ransoms paid by previously unknown victims; the identification of a previously unidentified ransomware strain; all from an investigation that allowed the FBI and its partners to release a cybersecurity advisory to empower network defenders everywhere,” she added.

Stay connected with us on social media platform for instant update click here to join our  Twitter, & Facebook

We are now on Telegram. Click here to join our channel (@TechiUpdate) and stay updated with the latest Technology headlines.

For all the latest Technology News Click Here 

Read original article here

Denial of responsibility! Rapidtelecast.com is an automatic aggregator around the global media. All the content are available free on Internet. We have just arranged it in one platform for educational purpose only. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials on our website, please contact us by email – [email protected]. The content will be deleted within 24 hours.
Andreww McCollum
Leave a comment