The LockBit ransomware group has issued a grave threat, claiming to have infiltrated Varian Medical Systems, a prominent healthcare company specializing in cancer treatment solutions. The group asserts that it possesses stolen medical data of cancer patients and intends to leak it. Varian Medical Systems, a key player in the field, offers a range of medical devices and software products for cancer treatment, functioning through its Oncology Systems and Imaging Components segments. The company, valued with revenues of 3 billion dollars, falls under the ownership of Siemens Healthineers.
The LockBit gang has brazenly announced its success in exfiltrating patient data, boldly asserting their intent to publish the acquired databases on their TOR leak site. The ransomware group has set a strict deadline for a ransom payment by August 17, 2023.
If this cyber incident is confirmed, it could spell a dire impact on the privacy and security of cancer patients. Varian Medical Systems is yet to provide any official disclosure regarding this security breach.
The incident underscores a wider trend of cyber threats targeting companies owned by Siemens. Earlier this year, Siemens Metaverse, a virtual environment replicating complex systems, suffered a breach that exposed sensitive information, including office plans and IoT devices.
In a similar vein, the Clop ransomware group added victims of MOVEit attacks, including industry giants Schneider Electric and Siemens Energy, to their dark web leak site. These incidents highlight the growing vulnerability of critical national infrastructure systems to cyber threats.