BlackMatter Ransomware Attacks Threaten Healthcare, HC3 Says

Health IT Security

Jill McKeon

The Health Sector Cybersecurity Coordination Center (HC3) recently released a detailed threat brief on BlackMatter ransomware, a group that first surfaced in July 2021 shortly after the notorious ransomware group REvil/Sodinokibi abruptly took its website down.

HC3 is an arm of HHS that was created with the goal of protecting the healthcare sector from cyber threats by highlighting various cybersecurity topics, best practices, and mitigation strategies.

According to the brief, BlackMatter claimed to incorporate the “best” features of DarkSide, Lockbit 2.0, and REvil/Sodinokibi into its operations. The concoction resulted in a sophisticated, financially motivated ransomware-as-a-service (Raas) program.

HC3 obtained its information from an interview with a BlackMatter representative, hacking forum advertisements, ransom notes, affiliate panel information, and the BlackMatter ransomware public extortion blog.

As a result of its findings...

Get the Morning Update

Thanks for subscribing!