US DOJ Seizes $500,000 From North Korean Hackers Who Targeted US Medical Providers

Medical providers were attacked by a ransomware strain called Maui.

Advertisement
By Shomik Sen Bhattacharjee | Updated: 20 July 2022 12:42 IST
Highlights
  • In recent years, ransomware attacks have grown in frequency
  • In 2021, a Kansas medical center paid $100,000 in Bitcoin ransom
  • The North Korean hackers targeted mostly medical providers

The facility ultimately paid the attackers but also notified the FBI

Photo Credit: Unsplash/ Michael Geiger

The US Justice Department has seized about $500,000 (roughly Rs. 4 crore) from North Korea-backed hackers using ransomware, Deputy Attorney General Lisa Monaco announced in a statement. Monaco, who leads the Justice Department's agencywide efforts to combat cyberthreats, said the North Korean group hacked a Kansas hospital's system in 2021 and demanded a ransom, threatening to cripple the center's servers if their demands were not met. The hospital's staff paid the ransom after the cyber criminals threatened to double the amount within 48 hours, the statement said.

"Thanks to rapid reporting and cooperation from a victim, the FBI and Justice Department prosecutors have disrupted the activities of a North Korean state-sponsored group deploying ransomware known as 'Maui,'" Monaco said.

Advertisement

The hackers, she said, used a strain of malware known as Maui to encrypt a Kansas-based hospital's servers and files, demanding a ransom payment in exchange for the key to unlock the data. The attack took place in May 2021.

"In that moment, the hospital's leadership faced an impossible choice: Give in to the ransom demand or cripple the ability of doctors and nurses to provide critical care," Monaco said.

Advertisement

After failing to regain access to their servers for more than a week, the hospital paid the hackers about $100,000 (roughly Rs. 80 lakh) in Bitcoin. But the medical center also notified the FBI, allowing federal investigators to identify the malware and trace this and other ransom payments to Chinese money launderers that help North Korean cybercriminals convert cryptocurrency into fiat currency, the Justice Department said.

"Not only did this allow us to recover their ransom payment as well as a ransom paid by previously unknown victims, but we were also able to identify a previously unidentified ransomware strain," Monaco said.

Advertisement

One previously unknown victim was a Colorado-based hospital, according to court documents. The unidentified hospital made a ransom payment of about $120,000 (roughly Rs. 96 lakh) into one of the cybercriminals' two cryptocurrency accounts in April 2022, court documents show.

In recent years, ransomware attacks have grown in frequency, with cybercriminals attacking schools, hospitals and local governments, among other victims.

Advertisement

In its latest annual threat assessment, the US intelligence community warned in February that cyber criminals "are increasing the number, scale, and sophistication of ransomware attacks, fueling a virtual ecosystem that threatens to cause greater disruptions of critical services worldwide.


Noise co-founder Amit Khatri joins Orbital, the Gadgets 360 podcast, for a special episode. Orbital is available on Spotify, Gaana, JioSaavn, Google Podcasts, Apple Podcasts, Amazon Music and wherever you get your podcasts.
Affiliate links may be automatically generated - see our ethics statement for details.
 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Advertisement

Related Stories

Popular Mobile Brands
  1. Best Mobiles Under Rs. 40,000 in India
  2. Best Water-Resistant Smartphones You Can Buy in India
  1. Samsung Galaxy Z Flip 8 Roundup: Launch Date, Expected Price, Specifications
  2. Redmi Note 17 Pro Global Variant Reportedly Appears on NBD Database Alongside Poco Model
  3. Google Pixel 11a Codename Reportedly Spotted in Phone App
  4. Huawei Mate XT 2 Leaked Patent Reveals New Tri-Fold Design and Folding Mechanism
  5. Airtel Unlimited 5G Data Subscribers Reportedly Cannot Share 5G Data via Mobile Hotspot: Here's What We Know So Far
  6. Lenovo Legion C700 Teased as a Cloud Gaming Handheld Ahead of August Launch
  7. Marvel's Wolverine Gets New Trailer That Will Play Ahead of Christopher Nolan's The Odyssey in Select Theatres
  8. Airtel Quietly Removes Rs. 549 Individual Postpaid Plan in India; Rs. 699 Plan Becomes Next Upgrade
  9. Poco M8 Power, Poco X8 India Launch Timeline Tipped; Could Arrive as Rebranded Redmi Note 17 Series
  10. Samsung Galaxy S25 Series Could Get Galaxy S26’s Horizontal Lock Camera Feature With One UI 9 Update
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.