"CISA Warns of Daixin Team Hackers Targeting Health Organizations With Ransomware"

US cybersecurity and intelligence agencies have issued a joint advisory warning of attacks carried out by the Daixin Team, a cybercrime gang primarily targeting the country's healthcare sector. According to the agencies, the Daixin Team is a ransomware and data extortion group that has targeted the Healthcare and Public Health (HPH) sector with ransomware and data extortion operations since at least June 2022. The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Health and Human Services (HHS) issued the alert. The group has been linked to multiple ransomware incidents in the HPH sector over the last four months, encrypting servers related to electronic health records, diagnostics, imaging, and intranet services. Personally Identifiable information (PII) and Patient Health Information (PHI) are also said to have been exfiltrated as part of a double extortion scheme to secure ransoms from victims. On September 1, 2022, one of those attacks targeted OakBend Medical Center, with the group claiming to have stolen about 3.5GB of data, including over one million records containing patient and employee information. On its data leak site, the group also published a sample of 2,000 patient records, which included names, genders, dates of birth, Social Security numbers, addresses, and other appointment details. This article continues to discuss the warning about the Daixin Team targeting the HPH sector. 

THN reports "CISA Warns of Daixin Team Hackers Targeting Health Organizations With Ransomware"