North Korean state-sponsored ransomware groups are targeting South Korean and U.S. healthcare organizations with Maui and H0lyGh0st ransomware as a way to raise revenue for the North Korean government, according to a U.S. government cybersecurity advisory, per Becker’s.
The groups demand cryptocurrency ransoms and then use the funds for espionage cyber operations targeting the U.S. and South Korea. In July, the U.S. government recovered $500,000 that two hospitals paid as a ransom to North Korean hackers. Read more.