Kisco Senior Living, a prominent provider of elderly care services in the United States, has reportedly fallen victim to the BlackByte ransomware group. The hacker collective recently shared screenshots of stolen data on their dark web portal, claiming responsibility for the Kisco Senior Living data breach.
According to the hackers, they have exfiltrated data from the systems of Kisco Senior Living and are now demanding a ransom from the company. They have given the company an ultimatum: either pay up or risk the sale or release of the stolen information. The exact extent of the data breach and the compromised data remains unknown at this time.
The Cyber Express reached out to Kisco Senior Living for confirmation of the alleged data breach but has yet to receive a response. However, several researchers on Twitter have posted about the cyber attack, suggesting that the company may have already been contacted by the hackers.
Kisco Senior Living is a California-based organization that has been dedicated to providing care for the elderly for over three decades. They have received recognition for their commitment to excellence, with the prestigious U.S. News & World Report awarding them the 2023-24 Best Senior Living award for 19 of their communities. With a presence in six states, Kisco Senior Living operates 22 communities, offering a wide range of services and support to seniors.
The BlackByte ransomware group, discovered in July 2021, is a Russian-based group that operates using a Ransomware-as-a-Service model. They have been prolific in their cyber attacks, launching over 2,000 attacks in both 2021 and 2022. In addition to targeting manufacturing companies, the group has also targeted wholesale traders, the construction industry, and the scientific and technical service industry.
When researchers posted free decryptors for the first variant of the BlackByte ransomware on GitHub, the hackers responded with a warning. They claimed that using the free decryptors could irreversibly impact the system, discouraging victims from attempting to decrypt their files without paying the ransom.
The targeting of senior care facilities by cybercriminals is a growing concern. These facilities often hold sensitive patient information, making them attractive targets for hackers. The healthcare industry as a whole has struggled with cybersecurity, with many providers lacking strong initiatives to protect against data breaches. Unpatched vulnerabilities, weak passwords, legacy devices, and human error contribute to the increased risk of infection.
It is important to note that this report is based on internal and external research obtained through various sources. The information provided is for reference purposes only, and users should take full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.