FBI and CISA issue joint warning on Royal Ransomware | ZoneAlarm Security Blog


On March 6, 2023, the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) issued a joint warning to critical infrastructure groups worldwide regarding the dangers of Royal Ransomware.

This state-sponsored hacking group has recently targeted high-profile healthcare organizations, including those in the United States, and has a particular interest in the energy sector.

The Royal Ransomware group was initially discovered in 2019 and has been responsible for several high-profile attacks on critical infrastructure systems globally. The group uses advanced tactics and techniques, such as spear-phishing emails and exploiting vulnerabilities in hardware and software, to carry out its attacks.

According to a recent advisory from the U.S. Department of Health and Human Services (HHS), the Royal Ransomware group has attacked several prominent healthcare organizations in the past few months. The advisory also states that the Royal Ransomware group’s ransom demands range from $1 million USD to $11 million USD. The group’s operators also use double extortion tactics, threatening to release sensitive data publicly if their ransom demands are not met.

In January of 2023 alone, the Royal Ransomware group executed at least 19 cyber attacks. The full extent of the group’s activities and the amount of money extorted from victims remains unknown.

The potential consequences of a Royal Ransomware attack on critical infrastructure systems are severe and can cause widespread disruption, endangering lives and property. It is crucial for organizations to take proactive measures to enhance their cybersecurity measures and protect their critical infrastructure systems from ransomware-related disruptions.

In conclusion, the Royal Ransomware group poses a significant threat to critical infrastructure groups globally, and organizations must take steps to protect their systems from cyber attacks. The joint warning from CISA and the FBI serves as a reminder of the importance of cybersecurity measures to prevent potentially devastating consequences.



Source link