vicesociety attacks Medical University of Innsbruck

Incident Date:

June 26, 2022

World map

Overview

Title

vicesociety attacks Medical University of Innsbruck

Victim

Medical University of Innsbruck

Attacker

Vicesociety

Location

Innrain, Austria

Innsbruck, Austria

First Reported

June 26, 2022

Vice Society Targets Medical University of Innsbruck

The ransomware group Vice Society has claimed responsibility for a cyberattack on the Medical University of Innsbruck, which was first reported on June 20, 2022. The attack caused severe IT service disruption and allegedly resulted in the theft of data from the university. The Medical University of Innsbruck is a research university with 3,400 students and 2,200 employees, offering extensive medical care services, including surgeries.

The university disclosed an IT outage on June 20, 2022, restricting access to online servers and computer systems. In the days that followed, the university gradually restored its online services and returned operations to its main site, which had previously been taken offline. However, the university has only mentioned that they were attacked but did not provide any further details in their published statements.

Vice Society added the Medical University of Innsbruck to its data leak site, leaking an extensive list of documents allegedly stolen during the cyberattack. A limited review of the leaked data confirms that they appear genuine and have the university's letterhead, lecturer signatures, and other authenticity elements. The group typically uses a countdown timer to extort a newly announced victim before publishing files, but in this case, the hackers posted all data a full week after the attack occurred, which could mean that the negotiations for a ransom payment have reached a dead end or never took place.

Vice Society has been targeting European organizations lately, focusing specifically on state/public entities and educational institutes. The group has also victimized a college in the UK and a hospital in Italy. The Medical University of Innsbruck is the fifth disclosed European victim of Vice Society in the past month.

The Medical University of Innsbruck is a significant player in the healthcare sector, with a strong focus on research and medical care services. The university's vulnerabilities in being targeted by threat actors are not explicitly mentioned in the available sources. However, the attack highlights the importance of robust cybersecurity measures to protect sensitive data and maintain IT services in the healthcare sector.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.