Maui: North Korean ransomware hits hospitals a comment

Antivirus Security Maui ransomware has been used by North Korean cybercriminals to carry out attacks against hospitals and other healthcare organizations. Pixabay

The FBI, CISA and the U.S. Treasury Department issued a joint statement to provide information about Maui, a ransomware used by government-funded North Korean cybercriminals to carry out attacks on hospitals and organizations operating in the health sector. In addition to the technical details of the malware, the document suggests measures to be taken to reduce risks, including the use of a security solution. Maui attacks health organizations The Maui ransomware has been around since May 2021, when the first attacks against the servers of organizations that offer health services to citizens were detected. At the moment, the initial access mode has not been identified, i.e. how the intrusion into the internal network is carried out. The next steps are known. The ransomware is remotely controlled by cybercriminals who use a command line interface to identify files to be encrypted. Similar to the Conti ransomware, Maui uses a three-layered procedure. The files are encrypted with the AES algorithm. Each file has a unique 16-bit key. Each AES key is encrypted with the RSA algorithm, using a pair of keys generated during Maui execution. Finally, the two RSA keys are encrypted with another hard-coded public RSA key (stored at the end of the executable file). At the end of the operation, the text file is obviously created that contains the instructions to pay the ransom. Healthcare organizations must follow various measures to reduce risks, such as making frequent (offline) backups, installing software updates, and using an antivirus. This article contains affiliate links: purchases or orders placed through such links will allow our site to receive a commission. Data Source Provider: CISA • I would expect a large team of local hackers to destroy North Korea's computer facilities: just so that they learn civilization. But unfortunately Italian culture is still in the nineteenth century, thanks to school programs worse than those of the third world. Max