Meow ransomware gang claims Memorial Sloan Kettering Cancer Center (MSKCC), a prestigious New York City-based institution, as their victim on their dark leak site. MSKCC, one of the world’s largest private cancer centers, could potentially expose sensitive personal information of hundreds of thousands of patients and donors, including health and financial records, if Meow’s claims are accurate. The Meow ransomware group, also known as MeowCorp, gained attention earlier in 2022, and this incident marks their recent activity after dropping off the radar in February 2023. The group, labeled an Anti-Russian Extortion Group, utilizes the “.MEOW” file extension and encrypts victim files using ChaCha20 and RSA-4096.
The cybercriminals behind the Meow ransomware are relatively new, having first appeared in August 2022. The group is associated with the Conti v2 variant and has been referred to as MeowCorp or MeowCorp2022. Notably, the Conti v2 variant was leaked by a Ukrainian hacker in retaliation for the group’s public support for Russia during the 2022 invasion of Ukraine. The ransomware encrypts files using a combination of ChaCha20 and RSA-4096, and victims are directed to contact the gang through provided email addresses and Telegram handles. The dark leak site indicates 10 other victims, with posts dating back to September, November, and the beginning of December. Some entries suggest attacks that occurred in February 2023.
Memorial Sloan Kettering Cancer Center (MSKCC), recognized as one of the top two cancer hospitals in the US, has become the latest victim claimed by the Meow ransomware gang. The cybercriminals, associated with anti-Russian sentiments, could potentially access highly sensitive information from MSKCC, a globally renowned institution serving over 800,000 patients annually. This incident highlights the growing threat of ransomware attacks on critical healthcare infrastructure and the potential for extensive data breaches impacting both patients and donors.
The Meow ransomware group’s claim on MSKCC raises concerns about the security of sensitive health and financial records belonging to hundreds of thousands of patients and donors. MSKCC, one of the world’s oldest and largest private cancer centers, is facing the consequences of a ransomware attack orchestrated by the relatively new Meow ransomware gang. The incident sheds light on the ongoing challenges faced by healthcare institutions in safeguarding critical data and the evolving tactics employed by cybercriminals to exploit vulnerabilities in the healthcare sector. As the Meow group gains notoriety, this attack underscores the need for robust cybersecurity measures to protect sensitive information in healthcare organizations facing an increasing threat landscape.
