top of page
ad cnp.png

DoppelPaymer Gang Deploys A Ransomware Attack Against Boyce Technologies Amidst COVID-19 Pandemic

The DoppelPaymer gang deployed a ransomware attack against Boyce Technologies, the FDA-approved coronavirus ventilator manufacturer, amidst the COVID-19 pandemic.

It has been reported that the gang lists example files of the data stolen during the attack, including sales and purchase orders, assignment forms, among others.

However, the cybercriminals have threatened that more information will be disclosed next week through the site if an undisclosed crypto ransom is not paid by the firm.

Boyce Technologies is well-known for its work in designing and manufacturing FDA-approved low-cost ventilators in just 30 days during the first months of the COVID-19 pandemic, amidst the big demand for the machines across New York hospitals.

DoppelPaymer ransomware has been deployed against Boyce Technologies, threatening the production of life-saving ventilators, reports @conexiondigicol — Cointelegraph (@Cointelegraph) August 7, 2020

It has been analyzed that before the attack, the company was making 300 units a day with the help of the robots built by the company.

Brett Callow, the threat analyst and ransomware expert at malware lab Emsisoft, warns that such attacks on hospitals, medical testing labs, and medical device manufacturers may not only cost money, “they may cost lives as well.”

He adds:

“Unfortunately, ransomware will continue to be a problem for as long as ransoms continue to be paid, and this is something organizations should keep this in mind. If they choose to pay, they’re helping to ensure that other organizations will be hit in future, and those organizations may be ones that provide critically important services.”

As per the report, Boyce Technologies has not issued an official statement addressing the ransomware attack, nor additional information on what extent the attack has impacted their operations.

Microsoft’s security team revealed more details in May about DoppelPaymer as ransomware deployed in human-operated attacks.

Thus, it uses “brute force” against a target company’s systems management server, and mainly has targeted the healthcare sector amid the COVID-19 crisis.



bottom of page