Someone typing on a laptop with illustrations of several closed locks and one opened lock.

UCSF Pays $1.14M Ransom After Cyberattack

The University of California San Francisco confirmed it paid a $1.14 million ransom to hackers who were behind a cyberattack on its medical school’s computer servers on June 1.  

  • By Yvonne Marquez
  • June 30, 2020

The University of California San Francisco confirmed it paid a $1.14 million ransom to hackers who were behind a cyberattack on its medical school’s computer servers on June 1.  

On June 1, UCSF’s IT staff identified the incident in progress and managed to partially stop the cyberattack and isolate it from the core UCSF network. However, the attackers were able to launch malware that “encrypted a limited number of servers within the School of Medicine, making them temporarily inaccessible.”

The attackers obtained data that they then used as proof of their attack to demand a ransom payment. The university says they don’t believe patient medical records were exposed.

“The data that was encrypted is important to some of the academic work we pursue as a university serving the public good,” says a statement published on the university’s website. “We therefore made the difficult decision to pay some portion of the ransom, approximately $1.14 million, to the individuals behind the malware attack in exchange for a tool to unlock the encrypted data and the return of the data they obtained.”

According to BBC News, the Netwalker criminal gang attacked the university. BBC News reports they are responsible for at least two other ransomware attacks on universities in the past two months.

UCSF negotiated with the attackers and paid them in bitcoins in exchange for decryption software. Now the university is assisting the FBI with their investigation and working to restore the affected servers.

About the Author

Yvonne Marquez is senior editor of Spaces4Learning and Campus Security and Life Safety. She can be reached at [email protected]

Featured

  • Gun Violence Report Finds Retail Spaces, K-12 Schools Most Targeted

    ZeroEyes, the creators of the only AI-based gun detection video analytics platform that holds the U.S. Department of Homeland Security SAFETY Act Designation, today announced the release of its annual Gun Violence Report, offering a deep dive into the landscape of gun-related incidents across the United States. This analysis extends beyond mass fatality events, providing a more nuanced understanding of when, where, and why shootings occur. Read Now

  • Cybersecurity is An Overlooked Threat on K-12 Campuses

    Improving physical security on K-12 campuses is always at the top of mind for decision makers like principals, superintendents, and many others with a focus on surveillance cameras, access control, and emergency drills. But cybersecurity something that needs as much scrutiny as in today’s digital landscape. Read Now

    • Communication

  • Four Fathers Stop School Shooter at Weekend Band Competition in Texas

    An 83-year-old man allegedly injured one during a school shooting at a band competition in a Houston suburb. According to a Facebook post by the Pasadena Police Department, the shooting happened after 6 p.m. at Pasadena Memorial High School on Saturday. Read Now

  • Tennessee School Shooter Partially Livestreamed Attack that Killed One

    The school shooter who killed one during an attack in Nashville, Tenn. partially livestreamed the attack. Read Now

Most   Popular