Ransomware attacks rose to record highs in 2023, with dramatic increases in severity and frequency of incidents and notable targeting of the healthcare sector. Cybersecurity firms warned of new tactics, including dual ransomware attacks, designed to exert more pressure on victims to pay. The threat landscape shifted from data encryption to pure data extortion. However, law enforcement made some inroads, with the FBI seizing websites linked to the Alphv/BlackCat ransomware gang. Major victims in 2023 included Lehigh Valley Health Network, U.S. Marshals Service, Dish Network, Western Digital, the City of Dallas, Prospect Medical Holdings, MGM Resorts, Boeing, Henry Schein, and Ardent Health Services.
US healthcare company, Change Healthcare, has been targeted by the hacker collective ALPHV/Blackcat, which claimed to have stolen sensitive health data of millions of Americans.