{"id":673499,"date":"2025-06-04T22:25:14","date_gmt":"2025-06-04T19:25:14","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/ransomware-gang-claims-responsibility-for-kettering-health-hack\/"},"modified":"2025-06-04T22:25:14","modified_gmt":"2025-06-04T19:25:14","slug":"ransomware-gang-claims-responsibility-for-kettering-health-hack","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/ransomware-gang-claims-responsibility-for-kettering-health-hack\/","title":{"rendered":"Ransomware gang claims responsibility for Kettering Health hack"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a2f8943b98a7\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a2f8943b98a7\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/ransomware-gang-claims-responsibility-for-kettering-health-hack\/#Contact_Us\" >Contact Us<\/a><\/li><\/ul><\/nav><\/div>\n<div>\n<p id=\"speakable-summary\" class=\"wp-block-paragraph\">A ransomware gang claimed responsibility for the hack on Kettering Health, a network of hospitals, clinics, and medical centers in Ohio. The healthcare system is still recovering two weeks after the ransomware attack forced it to shut down all its computer systems.\u00a0<\/p>\n<p class=\"wp-block-paragraph\">Interlock, a relatively new ransomware group that <a rel=\"nofollow\" target=\"_blank\" rel=\"nofollow\" href=\"https:\/\/www.hipaajournal.com\/interlock-ransomware-healthcare\/\">has targeted healthcare organizations in the U.S.<\/a> since September 2024, published a post on its official dark web site, claiming to have stolen more than 940 gigabytes of data from Kettering Health.<\/p>\n<p class=\"wp-block-paragraph\"><a rel=\"nofollow\" target=\"_blank\" rel=\"nofollow\" href=\"https:\/\/www.cnn.com\/2025\/05\/20\/politics\/ransomware-attack-medical-centers\">CNN first reported<\/a> on May 20 that Interlock was behind the breach on Kettering Health. At the time, however, Interlock had not publicly taken credit. Usually, that can mean the cybercriminals are attempting to extort a ransom from their victims, threatening to release stolen data. The fact that Interlock has now come forward could indicate that the negotiations have gone nowhere.<\/p>\n<div class=\"article-block block--callout block--right has-green-500-background-color\">\n<h4 class=\"block--callout__title\"><span class=\"ez-toc-section\" id=\"Contact_Us\"><\/span>Contact Us<span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>\t\t\tDo you have more information about Kettering Health\u2019s ransomware incident? Or other ransomware attacks? From a non-work device and network, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram and Keybase @lorenzofb, or email.\t\t<\/p><\/div>\n<p class=\"wp-block-paragraph\">Kettering Health\u2019s senior vice president of emergency operations, John Weimer, previously told local <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/social-mediaa\/\" data-internallinksmanager029f6b8e52c=\"1\" title=\"Social Media\" target=\"_blank\" rel=\"noopener\">media<\/a> that the healthcare company had not paid the hackers a ransom.<\/p>\n<p class=\"wp-block-paragraph\">TK, a spokesperson for Kettering Health, did not provide comment when reached by TechCrunch on Wednesday.\u00a0<\/p>\n<p class=\"wp-block-paragraph\">Interlock did not respond to a request for comment sent to an email address listed on its dark web site.<\/p>\n<p class=\"wp-block-paragraph\">A brief review of some of the files Interlock published on its dark web site <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>ears to show the hackers were able to steal an array of data from Kettering Health\u2019s internal network, including: private health information, such as patient names, patient numbers, and clinical summaries written by doctors, which include categories such as mental status, medications, health concerns, and other categories of patient data. Other stolen data includes employee data and the contents of shared drives.\u00a0<\/p>\n<p class=\"wp-block-paragraph\">One of the folders contains documents, such as background files, polygraphs, and other private identifying information of police officers with Kettering Health Police Department.<\/p>\n<p class=\"wp-block-paragraph\">On Monday, Kettering Health <a rel=\"nofollow\" target=\"_blank\" rel=\"nofollow\" href=\"https:\/\/ketteringhealth.org\/system-wide-technology-outage\/\">published an update<\/a> on the cyberattack, saying the company was able to restore \u201ccore components\u201d of its electronic health record system, which is provided by Epic, a healthcare software company. The company said this was \u201ca major milestone in our broader restoration efforts and a vital step toward returning to normal operations,\u201d that allows it to \u201cto update and access electronic health records, facilitate communication across care teams, and coordinate patient care with greater speed and clarity.\u201d<\/p>\n<\/div>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMN63nwsw68G3Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more like this article, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/category\/technology\/\" target=\"_blank\" >Technology<\/a><\/span> category.<\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/techcrunch.com\/2025\/06\/04\/ransomware-gang-claims-responsibility-for-kettering-health-hack\/\" target=\"_blank\" >Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A ransomware gang claimed responsibility for the hack on Kettering Health, a network of hospitals, clinics, and medical centers in Ohio. The healthcare system is still recovering two weeks after the ransomware attack forced it to shut down all its computer systems.\u00a0 Interlock, a relatively new ransomware group that has targeted healthcare organizations in the&#8230;<\/p>\n","protected":false},"author":1,"featured_media":673500,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/techcrunch.com\/wp-content\/uploads\/2025\/06\/kettering-health-stock.jpg?resize=1200,849","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[76978,70375,70944,70513,80445,156875,156876,124271,72020,73240,72287],"class_list":["post-673499","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology","tag-cybercrime","tag-cybersecurity","tag-hackers","tag-hacking","tag-healthcare","tag-interlock","tag-kettering-health","tag-medical","tag-ohio","tag-ransomware","tag-security"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/673499","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=673499"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/673499\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/673500"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=673499"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=673499"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=673499"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}