Bonatra Hit by KillSec Ransomware, Patient Data Compromised

Incident Date:

August 7, 2024

World map

Overview

Title

Bonatra Hit by KillSec Ransomware, Patient Data Compromised

Victim

Bonatra

Attacker

Killsec

Location

Bengaluru, India

, India

First Reported

August 7, 2024

Ransomware Attack on Bonatra by KillSec

Bonatra, a holistic healthcare company specializing in managing and reversing chronic diseases through the integration of medical science, data science, and technology, has recently fallen victim to a ransomware attack by the cybercriminal group KillSec. The attack has compromised sensitive patient data, and the attackers are demanding a ransom of 4,000 euros to restore access.

About Bonatra

Bonatra operates in the healthcare services sector, focusing on personalized treatment plans for chronic diseases such as diabetes and hypertension. The company employs between 11 to 50 individuals and has garnered positive feedback from over 2,300 satisfied customers. Bonatra's innovative approach includes the use of Continuous Glucose Monitoring (CGM) technology and AI-driven health management plans, making it a standout in the industry.

Vulnerabilities and Attack Overview

Despite its technological advancements, Bonatra's reliance on digital health data and real-time monitoring systems makes it a prime target for ransomware attacks. The recent breach by KillSec highlights the vulnerabilities in Bonatra's cybersecurity measures. The attackers have specifically targeted patient data, compromising sensitive information and demanding a ransom for its release.

About KillSec

KillSec, also known as Kill Security, is a notorious ransomware group that has targeted various industries, including healthcare, government, and finance. The group is known for its use of multiple communication channels and crypto wallets, primarily Monero (XMR), to conduct its operations. KillSec has been active in several countries, including India, the United States, and the United Kingdom, demanding extortion amounts ranging from 1,500 to 10,000 euros.

Penetration Methods

While the exact method of penetration in Bonatra's case is not disclosed, KillSec typically employs phishing attacks, exploiting software vulnerabilities, and leveraging weak security protocols to infiltrate systems. The group's sophisticated tactics and the absence of a decryptor for their ransomware make them a formidable threat to organizations lacking robust cybersecurity defenses.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.