Ransomware Attack on Betances Health Center by Hunters International

Overview of Betances Health Center

Betances Health Center, founded in 1970 by Paul Ramos and colleagues, is a federally qualified health center located in the Lower East Side of Manhattan, New York. The center serves over 6,000 patients annually and employs between 51 to 200 staff members. Betances Health Center offers a wide array of services, including primary care, dental care, mental health services, and complementary therapies. The center is recognized for its integrated approach to healthcare, combining traditional Western medicine with holistic treatments. Betances Health Center is committed to providing accessible healthcare services to underserved communities, promoting the belief that quality healthcare is a basic right for all individuals, regardless of their ability to pay.

Details of the Ransomware Attack

On July 25, 2024, Betances Health Center fell victim to a ransomware attack orchestrated by the threat actor group known as Hunters International. The cybercriminals managed to exfiltrate a substantial amount of data, totaling 124.7GB. This breach has resulted in significant operational and reputational challenges for the healthcare provider, which generates an annual revenue of $5 million. The attack has raised concerns about the vulnerabilities in the center's cybersecurity measures, particularly given its critical role in providing healthcare services to underserved communities.

About Hunters International

Hunters International is a Ransomware-as-a-Service (RaaS) group that emerged in Q3 of 2023, shortly after the disruption of the notorious Hive ransomware group by law enforcement agencies. The group's ransomware code contains approximately 60% overlap with samples of Hive ransomware version 61, indicating a shared technical lineage. Hunters International's primary objective is to exfiltrate target data and subsequently extort victims with a ransom demand in exchange for the return of the stolen data. The group has been detected targeting victims across various regions, including the US, UK, Germany, and Namibia.

Penetration and Impact

The exact method by which Hunters International penetrated Betances Health Center's systems remains unclear. However, the group's techniques and operational strategies resemble those of the Hive ransomware, suggesting they may have used similar encryption methods and tactics. The attack has resulted in significant data breaches, financial losses, and reputational damage to Betances Health Center. The healthcare provider now faces the daunting task of recovering from this breach while maintaining its commitment to providing quality and affordable healthcare services to its community.

Sources

• Betances Health Center
• SOCRadar - Dark Web Profile: Hunters International
• Quorum Cyber - Hunters International Ransomware Report
• Netenrich - Hunters International Group DLS Identity Exposure
• Global Security Mag - Hive Ransomware's Offspring: Hunters International Takes the Stage