A new ransomware threat against healthcare systems, which was first observed in September 2022, has seen requested demand for payment range anywhere from $250,000 to over $2 million.

U.S. healthcare organizations could be in the crosshairs of a new cyberthreat collective dubbed Royal. The U.S. Department of Health and Human Services published an analyst note this week detailing the threat and the hacker group’s tactics.

The warning from HHS’s Health Sector Cybersecurity Coordination Center identified the relatively new group as perps behind several attacks first appearing in September 2022 against Healthcare and Public Healthcare targets. Ransom demands, per HC3, have reached into the millions of dollars, with the group constituting a real and present danger to the HPH sector going forward.

According to the report, the Royal ransomware group — an apparently money-motivated outfit with no affiliates — deploys a 64-bit executable written in C++ targeting Windows systems. It works to delete all volume shadow copies, a Microsoft Windows feature that can create backup copies of files or folders in real time.

Read the full article at TechRepublic.