Ireland’s publicly-funded healthcare system, Health Service Executive (HSE), has shut down all IT systems due to a ransomware attack. Even though most hospital appointments are not affected, some hospitals have suffered service disruptions, including the Rotunda Maternity Hospital and the Cork University Hospital where some appointments have been canceled. HSE stated that emergency and ambulatory services are still operating in a normal capacity. HSE also noted that the attackers have yet to make a ransom demand. This could be because the added pressure on ransomware gangs following the US government reaction to the Colonial Pipeline attack, or it could be due to rejection by other cybercrime groups of any ransomware operation that targets hospitals. It is also possible that the ransomware group has left a demand message somewhere but has just failed to connect with the healthcare system administrators. Binary Defense analyst will continue to monitor the situation for updates.
Using Microsoft Sentinel to Detect Confluence CVE-2022-26134 Exploitation
By Akshay Rohatgi and Randy Pargman About this Student Research Project Binary Defense’s mission is