A resurgence of the so-called UNC 1878 hacking group has emerged, most recently linked to a string of ransomware attacks on hospitals. (Source: FBI)

The so-called UNC 1878 hacking group, which is reportedly behind a string of ransomware attacks on hospitals, seems to have risen from the dead, again using its malware family of choice, Ryuk.

Reuters reported Wednesday that the FBI is investigating a wave of ransomware attacks currently underway against hospitals across the U.S. and other countries that are tied to UNC 1878. This news came the same day as research from Mandiant, stating one out of every five ransomware attacks the company responds to are from Ryuk malware family, while one out of every five of those attacks was carried out by UNC 1878.

Please register to continue.

Already registered? Log in.

Once you register, you'll receive:

  • News analysis

    The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.

  • Archives

    Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.

  • Daily Newswire

    SC Media’s essential morning briefing for cybersecurity professionals.

  • Learning Express

    One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.