Nearly 40 ransomware operators have attacked hospitals, health systems and other providers since January 2020, according to a recent analysis from the CyberPeace Institute.
For the report, CyberPeace mapped ransomware attacks against healthcare providers across 27 countries between Jan. 6, 2020, and Nov. 15, 2021. The CyberPeace Institute is an independent, nongovernmental organization focused on cybersecurity research and initiatives.
Here are the names of the groups, listed by the numbers of ransomware attacks they have orchestrated on one or more healthcare organizations over the past 18 months.
More than 15 attacks on healthcare:
1. Conti
2. Pysa
Between five and 14 attacks on healthcare:
3. REvil
4. Maze
5. Ryuk
6. Netwalker
7. Hive
8. LockBit
9. DoppelPaymer
10. Avaddon
11. Babuk
12. Vice Society
Under five attacks on healthcare:
13. BlackMatter
14. Prometheus
15. Groove
16. Clop
17. Nefilim
18. SunCrypt
19. AtomSilo
20. Egregor
21. Ragnar Locker
22. BlackByte
23. Cuba
24. Ragnarok
25. Haron
26. Mount Locker
27. Everest
28. AvosLocker
29. Astro Team
30. Grief
31. CoomingProject
32. Lorenz
33. N3tw0rm
34. LV
35. Spook
36. Xing Locker
37. Macaw
38. Phobos