The Hive ransomware gang has extorted more than $100 million from its growing list of victims.
A joint advisory notice released by the FBI, the US Cybersecurity and Infrastructure Security Agency, and the Department of Health and Human Services has revealed that the Hive ransomware gang has received the some from more than 1,300 victims since it was first observed in June 2021.
This list of victims includes organisations from a wide range of industries and critical infrastructure sectors such as government facilities, communications and information technology, with a focus on healthcare and public health entities.
Hive, which operates a ransomware-as-a-service (RaaS) model, claimed the Illinois-based Memorial Health System as its first healthcare victim in August 2021. This cyberattack forced the health system to divert care for emergency patients and cancel urgent care surgeries and radiology exams. The ransomware gang also released sensitive health information of about 216,000 patients.
Then, in June 2022, the gang compromised Costa Rica’s public health service before targeting New York-based emergency response and ambulance service provider Empress EMS the following month. Over 320,000 individuals had information stolen, including names, dates of services, insurance information and Social Security numbers.
Only last month, Hive also added Lake Charles Memorial Health System, a hospital system in Southwest Louisiana, to its dark web leak site, where it posted hundreds of gigabytes of data, including patient and employee information.
Hive has also recently targeted Tata Power a leading power generation company in India.