Healthcare organizations across the U.S. have been warned by the Department of Health and Human Services regarding Venus ransomware attacks following a recent intrusion against a healthcare provider, BleepingComputer reports.
Despite the attack, no data leak site for the Venus ransomware actors has been found so far, according to a report from the HHS' Health Sector Cybersecurity Coordination Center.
"HC3 is aware of at least one healthcare entity in the United States falling victim to Venus ransomware recently. The operators of Venus ransomware are not believed to operate as a ransomware-as-a-service (RaaS) model and no associated data leak site (DLS) exists at this time," said the report.
Dozens of corporations around the world have already been compromised by Venus ransomware since it's emergence in August. Publicly exposed Remote Desktop services have been hacked by the attackers to facilitate Windows device encryption.
The warning about Venus ransomware attacks against healthcare comes a month after the HHS, Cybersecurity and Infrastructure Security Agency, and FBI warned about Daixin Team ransomware attacks against the sector.
BleepingComputer reports that Knight ransomware was observed by KELA threat analysts to have the third iteration of its source code posted for sale by the operation's representative, Cyclops, on RAMP forums.