fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

French MNH Health Insurance Company Hit By RansomExx Ransomware

French MNH Health Insurance Company Hit By RansomExx Ransomware

French health insurance company Mutuelle Nationale des Hospitaliers (MNH) has suffered a ransomware attack that has severely disrupted the company’s operations. BleepingComputer has learned.

MNH is the first mutual insurance company in France to provide health insurance services, and plans focused on the health sector.

The company’s website is used by members to generate insurance quotes or to manage services and benefits.

Since the attack, the mnh.fr website displays a notice stating that it has been affected by a cyberattack that started on February 5th. This attack has caused their websites and telephone platform to become unavailable. 

“The MNH has been undergoing a cyber attack since Friday, February 5, 2021 . Computer systems have been disconnected for security reasons.

“Our websites (mnh.fr, members’ area, corresponding and elected extranets) as well as our telephone platform (3031) are temporarily unavailable. The processing times for your requests are extended,” Gérard Vuidepot, CEO of MNH, states in the notice on the MNH website.

Also Read: PDPA For Companies: Compliance Guide For Singapore Business

Notice on the MNH website

Two days ago, an independent security researcher shared a Tor web page with BleepingComputer that acts as a ransom negotiation page for the MNH attack.

The page links to the mnh.fr website and dictates how the threat actors will negotiate with the company. It also advises MNH to use a protonmail account when negotiating and not contacting the police, or the police will seize their bank accounts.

MNH Tor ransom negotiation site

The site offers the ability to send the ransomware gang a single email to start negotiations and perform test decryption of a single file.

This Tor site belongs to a ransomware operation called RansomExx, a rebranded version of the Defray777 ransomware. 

While this ransomware group has been in operation since 2018, it became much more active in June 2020 when it rebranded as RansomExx and began to target high-profile organizations.

Like other human-operated ransomware operations, RansomExx will compromise a network and begin harvesting unencrypted files for their extortion attempts.

After gaining access to an administrator password, they deploy the ransomware on the network and encrypt all of its devices.

Unlike most other ransomware operations, RansomExx also created a Linux version to ensure they can target all critical servers and data in an organization.

Some of the RansomExx gang’s high-profile attacks in the past include Brazil’s government networksTexas Department of Transportation (TxDOT), Konica MinoltaIPG Photonics, and Tyler Technologies.

Also Read: Computer Misuse Act Singapore: The Truth And Its Offenses

BleepingComputer has attempted to contact MNH about this attack but has not received a reply.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us