Compromiseseverity: Critical2022-05-31

Hive ransomware compromises Costa Rican Social Security Fund

published by Caja Costarricense de Seguro Social

Actor

Hive?? · UnknownRansomware

Russian-speaking ransomware-as-a-service operation active from mid-2021 through January 2023. Best known publicly for the May 2022 compromise of the Costa Rican government — which prompted Costa Rica…

Summary

Hive operators encrypted systems at the Caja Costarricense de Seguro Social (CCSS), Costa Rica's social-security fund, weeks after the Conti ransomware-driven national-emergency declaration. CCSS shut down critical systems including the Unified Digital Health File and Centralized Collection System; medical services across hospitals and clinics were disrupted for weeks. The compounding Conti + Hive impacts made Costa Rica a textbook case study in ransomware national-level disruption.

Primary source

en.wikipedia.org

Other Hive events

2023-01-26DOJ/FBI/Europol disrupt Hive ransomware; seize site + decryptors

Summary

Tags

Primary source

Other Hive events