Cyber-criminals are reportedly demanding a US$14 million (£11 million) extortion payment after using Ryuk ransomware to infect Virtual Care Provider Inc. (VCPI), a company that provides IT consulting and cloud-based data hosting and security services to roughly 110 nursing homes around the US.
The attack took place at 1:30 a.m. local time omn 17 November, encrypting the data that Milwaukee, Wis.-based VCPI hosts for its clients, cybersecurity expert Brian Krebs reported via his blog site. The resulting fallout potentially threatens elderly patients’ lives, especially with care facilities unable to access individuals’ medical records and execute timely drug delivery orders. Patients could also be in danger of being displaced if certain care centers are forced to shut their doors.
In addition to patient records, the attack also affects internet access and email, client billing, phone systems and payroll operations, VCPI owner and CEO Karen Christianson told KrebsonSecurity. Altogether, VCPI is responsible for approximately 80,000 computers and servers that assist its nursing home clients, which access the data and systems they need via a Citrix-based virtual private networking platform. Restoring this access is reportedly VCPI’s top priority, along with addressing any life-threatening situations.
Christianson also told Krebs that VCPI cannot afford the ransom demanded.
The original version of this article was published on SC Media US.