Reply to post: Ugly

Doppelpaymer ransomware crew fingered for attack on German hospital that caused death of a patient

RM Myers Silver badge
Unhappy

Ugly

This doesn't sound like the simple phishing attack the commentards assumed on the original article. Even patching the original Citrix vulnerability wouldn't have helped, since the loader was already on the network. It would be interesting to know what further vulnerability was exploited when the malware payload was downloaded by the loader. Also, I wonder whether they waited to make recovery from backups harder, or because they needed an additional vulnerability that the network didn't have when the loader was dropped.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2021