everest attacks The Johns Hopkins

Incident Date:

October 11, 2022

World map



everest attacks The Johns Hopkins


The Johns Hopkins




Rockville, USA

Maryland, USA

First Reported

October 11, 2022

Everest Ransomware Attacks The Johns Hopkins Hospital

The Johns Hopkins Hospital, a top-ranked medical facility in the United States, has been targeted by the Everest ransomware group. The attack was announced on the group's dark web leak site, claiming to have compromised the hospital's network and encrypted their files. The Johns Hopkins Hospital operates in the Healthcare Services sector and is known for its high-quality medical care and research.

Company Size and Industry Standout

The Johns Hopkins Hospital is a large medical institution with a significant presence in the healthcare sector. It is consistently ranked among the top hospitals in the nation by U.S. News & World Report. The hospital is renowned for its patient care, research, and education, making it a standout in the industry.

Vulnerabilities and Targeting

The Everest ransomware group has been active since December 2020 and has targeted organizations across various industries and regions. The group is known for its data exfiltration capabilities and often demands a ransom in exchange for not leaking sensitive information, a tactic known as double extortion. The attack on The Johns Hopkins Hospital highlights the vulnerabilities of healthcare institutions to cyber threats, as they often store sensitive patient data and rely on technology for critical operations.

The Everest ransomware attack on The Johns Hopkins Hospital underscores the importance of robust cybersecurity measures in the healthcare sector. As healthcare institutions continue to rely on technology for patient care and research, they must remain vigilant against cyber threats.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.