1 min read

Maze Ransomware group publicly releases stolen data

Picture of Kapua Iao Kapua Iao February 10, 2020

Healthcare cybersecurity news
Laptop displaying ransomware alert on screen with hard drive wrapped in chains and cash on the desk

Soon after the recent FBI flash alert warning organizations in the U.S. about Maze ransomware, the hacking group followed through on threats to publicly release stolen data after a failure to pay.

As Paubox reported January 10, 2020, the Maze group differs from common encrypt-only ransomware hackers in its "pay-or-we-will-leak-your-data" approach.

 

Maze group to organizations: pay or be data shamed

The Maze hacking group is the first known to publicly release stolen data after an organization refuses to pay a ransom in an act of data shaming. The threat groups behind REvil (Sodinokibi) and DoppelPaymer quickly followed the Maze group’s methods: exfiltrate data before encrypting and demanding a ransom; if not paid, expose snippets until they receive a payoff. They, no doubt, will not be the last. Maze targeted and exposed The City of Pensacola and Southwire late last year. Apparently, the group has its sights set on the healthcare industry. Officials have yet to release a public report naming affected organizations though the Maze group’s personal list of compiled victims includes 29 targets that have yet to pay. Known healthcare organizations include Stockdale Radiology and Sunset Radiology. The largest is New Jersey’s Medical Diagnostics Laboratories, LLC (MDLabs) which had 100 GB of data stolen then encrypted in December 2019 for a ransom of 200 Bitcoins. After refusing to pay, the Maze group published 9.5 GB of its data, putting the stolen information up for sale. MDLabs has yet to publicly respond.

 

Refocus cybersecurity on detection and prevention

The uptick in ransomware is disconcerting in itself but becomes alarming with added data stealing and shaming. Healthcare organizations must be more transparent about breaches, unlike MDLabs, and work further at HIPAA compliancy.

RELATED: HIPAA Compliant Email

Relying solely on data backup is not best practice; cybersecurity must be proactive to combat such bold and sophisticated attacks. Especially as the trend of data shaming is likely to stay and escalate.

 

Try Paubox Email Suite for FREE today.
Start for free
Secure every email you send and receive HIPAA compliant. Threat-proof. Hassle-free.
Woman looking stressed while working at a laptop

Healthcare data breaches - a haunting reality

Hannah Trum : August 14, 2020

The number of data breaches in the healthcare industry increased in 2019 for the 4th year in a row, with over 41 million patient records breached,...

Healthcare cybersecurity news
Read More
Blue Cross Blue Shield logos

Data breach at BlueCross BlueShield's business associate puts 3.3 million people data at risk

Phuong Tran : August 8, 2016

On Friday (08/05/16) Newkirk Products a business associate for BlueCross BlueShield, reported that a data breach has occurred on one of its servers....

Healthcare cybersecurity news
Read More
Jefferson Dental & Orthodontics logo

JDC reports new findings that a data breach impacts over 1M patients

Sara Nguyen : April 11, 2022

JDC reports new findings that a data breach last year impacted over 1M patients. JDC Healthcare Management operates over 70 Jefferson Dental &...

Healthcare cybersecurity news
Read More

Subscribe to Paubox Weekly

Every Friday we bring you the most important news from Paubox. Our aim is to make you smarter, faster.