No lows are low enough for digital extortion gangs. In the latest example, Russia-linked ransomware syndicate ALPHV (BlackCat) opted to leak cancer patient data and photos, to blackmail the US healthcare network into meeting the gang’s ransom demand.
The gang published what appears to be LVHN patient data and photos of likely breast cancer patients on its blog, which is used to post victim details. ALPHV further threatened the healthcare network, saying it would publish additional data.
The rash action from the ransomware cartel is likely an indication of desperation. Ransomware groups publish snippets of stolen data as part of the double-extortion tactic: crooks steal data and then threaten victims that they’ll publish sensitive information if their demands are not met.
In late February, LVHN, a Pennsylvania-based healthcare provider,
announced that the ALPHV syndicate had targeted it. However, the organization said it refused to succumb to threats from the ransomware gang.
