Someone typing on a laptop with illustrations of several closed locks and one opened lock.

UCSF Pays $1.14M Ransom After Cyberattack

The University of California San Francisco confirmed it paid a $1.14 million ransom to hackers who were behind a cyberattack on its medical school’s computer servers on June 1.  

The University of California San Francisco confirmed it paid a $1.14 million ransom to hackers who were behind a cyberattack on its medical school’s computer servers on June 1.  

On June 1, UCSF’s IT staff identified the incident in progress and managed to partially stop the cyberattack and isolate it from the core UCSF network. However, the attackers were able to launch malware that “encrypted a limited number of servers within the School of Medicine, making them temporarily inaccessible.”

The attackers obtained data that they then used as proof of their attack to demand a ransom payment. The university says they don’t believe patient medical records were exposed.

“The data that was encrypted is important to some of the academic work we pursue as a university serving the public good,” says a statement published on the university’s website. “We therefore made the difficult decision to pay some portion of the ransom, approximately $1.14 million, to the individuals behind the malware attack in exchange for a tool to unlock the encrypted data and the return of the data they obtained.”

According to BBC News, the Netwalker criminal gang attacked the university. BBC News reports they are responsible for at least two other ransomware attacks on universities in the past two months.

UCSF negotiated with the attackers and paid them in bitcoins in exchange for decryption software. Now the university is assisting the FBI with their investigation and working to restore the affected servers.

About the Author

Yvonne Marquez is senior editor of Spaces4Learning and Campus Security and Life Safety. She can be reached at [email protected]

Featured

  • CISA Releases Anonymous Threat Response Guidance and Toolkit for K-12 Schools

    The Cybersecurity and Infrastructure Security Agency (CISA) recently released the Anonymized Threat Response Guidance: A Toolkit for K-12 Schools, a new resource to help kindergarten through grade 12 (K-12) schools and their law enforcement and community partners create tailored approaches to addressing anonymous threats of violence, including those received on social media. The toolkit outlines steps school leaders can take to assess and respond to anonymous threats, better prepare for and prevent future threats, and work in coordination with law enforcement and other local partners when these threats arise. It is co-sealed with the Federal Bureau of Investigation (FBI), which provided expert feedback on the toolkit’s key principles and strategies. Read Now

  • How Hospitals are Using Modern Technology to Improve Security

    Workplace violence is a serious and growing challenge for many organizations — including those in the healthcare industry. According to the U.S. Bureau of Labor Statistics, workers in healthcare and social services experience the highest rates of injuries caused by workplace violence and are five times as likely to suffer a workplace violence injury than workers overall — and aggressive incidents are rising. Read Now

  • Father of Georgia School Shooting Suspect Charged in Connection With Attack

    Colin Gray, the father of the 14-year-old Georgia school shooting suspect, has also been charged in connection with the attack. The 54-year-old father was charged with four counts of involuntary manslaughter, two counts of second-degree murder and eight counts of cruelty to children. Read Now

  • Safeguarding Stony Brook University Hospital: HALO’S Commitment to Health & Safety

    The healthcare industry is experiencing an alarming escalation of violence, including an increase in threats against healthcare workers. As a result, it is looking for ways to be proactive and protect its staff and patients.  According to the Bureau of Labor Statistics,  the rate of injuries from violent attacks against medical professionals grew by 63% from 2011 to 2018 and hospital safety directors say that aggression against staff escalated as the COVID-19 pandemic intensified in 2020.      Read Now

Webinars