The notorious ALPHV/BlackCat ransomware group, active since November 2021, has continued its cyber onslaught on major organizations worldwide. Recently, the group has claimed two significant victims: the global hotel chain Motel One and the Michigan-based McLaren Health Care system.
Motel One's Massive Data Breach
Motel One, a renowned German hotel chain known for its stylish and budget-friendly accommodations, suffered a massive data breach at the hands of the ALPHV/BlackCat group. The cybercriminals claim to have pilfered over 24 million files, totaling around 6 terabytes (TB) of data. This stolen data includes booking confirmations from the past three years, which encompass customers' personal details, payment methods, and even sensitive credit card information. The group has threatened to release this data publicly unless a ransom is paid within five days, a move that could have dire reputational and legal consequences for the hotel chain.
McLaren Health Care's Patient Data Compromise
In another significant breach, the ALPHV/BlackCat group reportedly stole critical data from approximately 2.5 million patients of McLaren Health Care. This not-for-profit healthcare system, one of Michigan's largest, serves a vast portion of the state's residents. The ransomware group has criticized McLaren's handling of the breach and patient privacy, even claiming ongoing access to the healthcare system's network.
The Growing Threat of ALPHV/BlackCat
The ALPHV/BlackCat ransomware gang's activities have been escalating, with ransom demands ranging from tens of thousands to tens of millions of dollars. Their list of victims reads like a who's who of global organizations, including SOLAR INDUSTRIES INDIA, NJVC, Creos Luxembourg S.A., Moncler, Swissport, NCR, Western Digital, and more. Notably, the group has also targeted Clarion, a global manufacturer of vehicle audio and video equipment.
Cybersecurity researcher Dominic Alvieri has highlighted the group's increasing focus on the healthcare sector, revealing that ALPHV/BlackCat has infiltrated 15 more US hospitals and two health maintenance organizations (HMOs). This trend underscores the urgent need for robust cybersecurity measures, especially in sectors handling sensitive personal data.
ALPHV BlackCat Ransomware has breached 15 more US hospitals & 2 HMOs.
BlackCat posts McLaren Healthcare.@BleepinComputer pic.twitter.com/28HZqCMjiN
— Dominic Alvieri (@AlvieriD) September 30, 2023