Search This Blog

Powered by Blogger.

Blog Archive

Labels

Showing posts with label Swatting. Show all posts

Swatting: Cyber Attacks on Healthcare

 


In a concerning trend, cybercriminals are using a tactic called "swatting" to target medical institutions via their patients, aiming to coerce hospitals into paying ransoms. Swatting involves making repeated false reports to the police about individuals, leading armed authorities to unsuspecting victims' homes. 

What's Happening

Threat actors are pressuring US hospitals by threatening patients with swatting incidents unless a ransom is paid. This extreme form of prank-calling has escalated to involve bomb threats and other serious allegations, forcing authorities to intervene in patients' homes.

The Motive 

The attackers believe that by applying this pressure on hospitals, they can secure a ransom payment. A recent incident at the Fred Hutchinson Cancer Center in Seattle involved stolen medical records, and the threat actors escalated by targeting patients with the swatting technique. 

The Impact

This disturbing tactic not only puts patients at risk but also adds an extra layer of urgency for hospitals to meet ransom demands. It highlights the high-stakes nature of cyber threats against medical institutions. 

When faced with cybercriminals making swatting threats, Fred Hutchinson Cancer Center took immediate action. They alerted the FBI and local police, who collaborated on investigating these threats as part of the broader cybersecurity incident. This highlights the seriousness of the situation and the coordinated effort to address the issue. 

In a parallel incident, Integris Health in Oklahoma encountered a cyber-attack that potentially exposed patients' personal data. Shockingly, some individuals received emails from threat actors, signalling an intention to sell their information if specific demands were not met. This underscores the direct impact on individuals and the concerning methods employed by cybercriminals. 

Recent events highlight the shifting nature of cyber threats targeting healthcare. Experts notice a change in tactics, where criminals are getting more extreme. It's important to note that how institutions deal with these tactics can differ widely. Stay aware, as the scenario keeps evolving. 

 Healthcare Cybersecurity: What You Need to Know

In the latest updates on cybersecurity in healthcare, a lot is happening that affects us all. Not only are there weird swatting and ransom tactics, but now there's a new worry – sneaky phishing attacks targeting our hospitals. Cybercriminals are using trickier methods to get their hands on private patient info. This means it's super important for hospitals to step up their online security game. 

Understanding these tactics is crucial for both hospitals and the public. Cybersecurity in healthcare affects individuals directly, putting personal information at risk. Staying informed empowers us to collectively contribute to the protection of healthcare systems and personal data.



Hackers Hijacked Smart Devices and Live-Streamed Swatting Incidents

 

Technology is ameliorating at a great pace and here we are becoming the victims of our doings. In the current modern era, our reliance on technology is bound to skyrocket, however, various other factors need to be checked to ensure a durable sense of security and privacy. Several misconceptions and lack of knowledge among users are what allow hackers to make gigantic gains. 

In light of that, recently, one such incident took place where the hackers hijacked various smart home devices and live-streamed police raids simultaneously on various innocent natives of the settlement. Then, hackers made a hoax call to the police and authorities on 911, which lead to “Swatting”. In this regard, the FBI confirmed that these hackers have even spoken to the acknowledging officers operating via the hacked kit. 

What is “Swatting”?

The hackers are aggravating Swatting attacks, which is an offense. The operators attempt to befool authorities by 
making a hoax telephonic call and falsely stating that the current state of affair is an emergency and they should straight away be at their disposal at the said residence with armed forces. 

It should be noted that this was not the first time an incident of such sort has taken place. The FBI had clearly stated that there are “deadly” risks and appalling outcomes of such attacks. One such fake hoax call costed the life of an innocent person three years back when the police shot that man in Kansas over the information handed over to them by the hackers. 

Why such incidents happen where the hackers easily enter the secured digital systems of owners? 

Following the incident and investigating the matter at hand, the FBI has given valuable insights about the subject, the officials clarified that such “pranks” become a success because the victims have reused the watchwords from other devices and services for setting up the same smart home device as well, making attackers' work exceedingly simple.

On the hub of confidential information, the Dark Web, such credentials of devices are easily hacked and sold and concurrently bought; and when we use the same watchwords for multiple devices and services, as a consequence, it becomes easy for hackers to enter the security system and break the firewall. 

“The [perpetrators] call emergency services to report a crime,” the FBI told. 

“The offender watches the Livestream footage and engages with the responding police through the camera and speakers. In some cases, the offender also live streams the incident on shared online community platforms.”

With an upsurge in similar cases, the FBI has urged the victims as well as the owners of the smart devices/services that they must change their watchwords immediately and should also update the same regularly.

Swatting Incidents Streamed via Smart Gadgets

 


The FBI gave an admonition on Tuesday telling Americans of an "expansion" of swatting assaults focusing on individuals with smart home gadgets. As indicated by the FBI, pranksters have been hacking into occupants' smart gadgets and then contacting law enforcement to report counterfeit wrongdoings at the victims' homes. By getting into a particular home security gadget a hacker can start a call for help to authorities and watch distantly as the swat happens. The FBI brings up that, by starting a call for help from the genuine security gadget loans realness and namelessness to the hacker. 

The organization noticed that wrongdoers were utilizing, purloined email passwords to sign into the smart gadget and hack the features, including the live-stream camera and gadget speakers. In certain instances, hackers were even live-streaming the occasion on online network stages, the FBI added. Live streaming swat assaults isn't new. Last December, the Vice a Canadian-American magazine, provided details regarding a webcast called "NulledCast" which live-streamed to the substance sharing stage Discord, an episode where criminal entertainers commandeered a Nest and Ring smart home video and sound to harass them in a wide range of frightening ways.

By February 2020, Ring had revealed additional layers of security past its all-around compulsory two-factor verification, including requiring a one-time six-digit code to sign on, cautions when somebody signs onto the account, and devices to control access by third-party service providers which could likewise be penetrated. The ring is likewise getting ready to launch end to end video encryption.

Swatting has been an issue in America for as long as twenty years, and it can accompany some genuine repercussions. Settling on fake emergency calls can accompany misdemeanor or crime accusations relying upon the state. Los Angeles occupant Tyler Rai Barriss was condemned to 20 to 25 years in federal jail on 51 charges relating to spoof crisis calls, including one bogus report he made to authorities in Witchita, Kansas, in December 2017. On the call, Barriss professed to have shot and executed his dad and said he was holding his family hostage. 

To curb the rise in hack and swat cases, department authorities said they are presently working with gadget sellers to prompt clients on how they could choose better passwords for their gadgets. Makers have just been told about the uptick in hacking, and the FBI said it was working with nearby law authorization to help encourage units on the appropriate method to react to the danger.