Orangeworm, new APT for the health sector
Symantec has published an article about an APT (Advanced Persistent Threat) whose objective is the health sector and its suppliers, mainly the USA. UU, Europe and Asia. According to Symantec, the group behind this threat called Orangeworm uses a malware called Trojan.Kwampirs. The first evidence of this malware goes back to 2015 and at present it has hardly been modified, so the measures adopted to mitigate it have not been effective.
According to published information, once attackers gain access to the organization's network they try to obtain information from medical devices such as magnetic resonance machines to steal confidential information presumably for industrial espionage purposes.
References:
- 23/04/2018 symantec.com New Orangeworm attack group targets the healthcare sector in the U.S., Europe, and Asia
- 23/04/2018 forbes.com Advanced Hackers Infect X-Ray Machines In Healthcare Espionage
- 23/04/2018 zdnet.com Mysterious cyber worm targets medical systems, is found on X-ray machines and MRI scanners
- 23/04/2018 bleepingcomputer.com Orangeworm Hackers Infect X-Ray and MRI Machines In Their Quest for Patient Data
Tags: