Notorious ransomware group claims responsibility for attacks roiling US pharmacies | CyberScoop<\/title> <meta name=\"description\" content=\"The group known as ALPHV said it was behind an attack that has disrupted a service used by healthcare providers to process payments.\"> <link rel=\"canonical\" href=\"https:\/\/cyberscoop.com\/ransomware-alphv-healthcare-pharmacies\/\"> <meta property=\"og:locale\" content=\"en_US\"> <meta property=\"og:type\" content=\"article\"> <meta property=\"og:title\" content=\"Notorious ransomware group claims responsibility for attacks roiling US pharmacies\"> <meta property=\"og:description\" content=\"The group known as ALPHV said it was behind an attack that has disrupted a service used by healthcare providers to process payments.\"> <meta property=\"og:url\" content=\"https:\/\/cyberscoop.com\/ransomware-alphv-healthcare-pharmacies\/\"> <meta property=\"og:site_name\" content=\"CyberScoop\"> <meta property=\"article:published_time\" content=\"2024-02-28T22:12:54+00:00\"> <meta property=\"og:image\" content=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/02\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies-2.jpg\"> <meta property=\"og:image:width\" content=\"1920\"> <meta property=\"og:image:height\" content=\"1280\"> <meta property=\"og:image:type\" content=\"image\/jpeg\"> <meta name=\"author\" content=\"AJ Vicens\"> <meta name=\"twitter:card\" content=\"summary_large_image\"> <meta name=\"twitter:creator\" content=\"@AJVicens\">  <link rel=\"dns-prefetch\" href=\"\/\/securepubads.g.doubleclick.net\">\n<link rel=\"dns-prefetch\" href=\"\/\/use.typekit.net\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Feed\" href=\"https:\/\/cyberscoop.com\/feed\/\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Comments Feed\" href=\"https:\/\/cyberscoop.com\/comments\/feed\/\"> <link rel=\"stylesheet\" id=\"all-css-2\" href=\"https:\/\/cyberscoop.com\/wp-includes\/css\/dist\/block-library\/style.min.css?m=1706643139g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-6\" href=\"https:\/\/cyberscoop.com\/_static\/??\/wp-content\/mu-plugins\/search\/elasticpress-next\/dist\/css\/related-posts-block-styles.min.css,\/wp-content\/plugins\/embedpress\/Gutenberg\/dist\/blocks.style.build.css?m=1708982929\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-8\" href=\"https:\/\/cyberscoop.com\/_static\/??\/wp-content\/plugins\/embedpress\/assets\/css\/embedpress.css,\/wp-content\/themes\/scoopnewsgroup\/dist\/css\/frontend.css?m=1708982930\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"typekit-css\" href=\"https:\/\/use.typekit.net\/itk2qbh.css?ver=17ca7a1ec36db7d13744\" media=\"all\">\n<link rel=\"stylesheet\" id=\"all-css-10\" href=\"https:\/\/cyberscoop.com\/_static\/??\/wp-includes\/css\/dashicons.min.css,\/wp-content\/plugins\/embedpress\/assets\/css\/plyr.css?m=1708982929\" type=\"text\/css\" media=\"all\"> <link rel=\"https:\/\/api.w.org\/\" href=\"https:\/\/cyberscoop.com\/wp-json\/\"><link rel=\"alternate\" type=\"application\/json\" href=\"https:\/\/cyberscoop.com\/wp-json\/wp\/v2\/posts\/79529\"><link rel=\"EditURI\" type=\"application\/rsd+xml\" title=\"RSD\" href=\"https:\/\/cyberscoop.com\/xmlrpc.php?rsd\">\n<meta name=\"generator\" content=\"WordPress 6.4.3\">\n<link rel=\"shortlink\" href=\"https:\/\/cyberscoop.com\/?p=79529\">\n<link rel=\"alternate\" type=\"application\/json+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fransomware-alphv-healthcare-pharmacies%2F\">\n<link rel=\"alternate\" type=\"text\/xml+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fransomware-alphv-healthcare-pharmacies%2F&format=xml\">   <link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=32\" sizes=\"32x32\">\n<link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=192\" sizes=\"192x192\">\n<link rel=\"apple-touch-icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=180\">\n<meta name=\"msapplication-TileImage\" content=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=270\"> <\/head><body class=\"post-template-default single single-post postid-79529 single-format-standard\" id=\"readabilityBody\"> <a href=\"https:\/\/cyberscoop.com\/ransomware-alphv-healthcare-pharmacies\/#main\" class=\"skip-to-content-link visually-hidden-focusable\">Skip to main content<\/a> <\/p>\n<div class=\"ad ad--top ad--top-desktop\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p> <main id=\"main\" role=\"main\" tabindex=\"-1\"> <\/p>\n<div class=\"ad ad--top ad--top-mobile\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<section id=\"stickybar\" class=\"stickybar stickybar--newsletter js-stickybar\" readability=\"0.82\"> <button class=\"stickybar__close js-stickybar-close\" aria-controls=\"stickybar\"> <svg class=\"icon icon--close\" width=\"21\" height=\"22\" viewBox=\"0 0 21 22\" fill=\"none\"><path d=\"m.822.518-.805.805L9.695 11 .017 20.678l.805.805 9.678-9.678 9.677 9.678.806-.805L11.305 11l9.678-9.677-.806-.805-9.677 9.677L.822.518Z\" fill=\"currentColor\" \/><\/svg> <span class=\"visually-hidden\">Close<\/span> <\/button> <\/section>\n<article class=\"single-article content\">\n<div class=\"single-article__container js-single-article-content\">\n<header class=\"single-article__header \" readability=\"24.757785467128\">\n<div class=\"single-article__header-content\" readability=\"30.560311284047\">\n<ul class=\"single-article__eyebrow\">\n<li class=\"single-article__category\"> <a class=\"single-article__category-link\" href=\"https:\/\/cyberscoop.com\/news\/threats\/cybercrime\/\"> <span>Cybercrime<\/span> <\/a> <\/li>\n<\/ul>\n<p> The group known as ALPHV said it was behind an attack that has disrupted a service used by healthcare providers to process payments. <\/p>\n<\/p><\/div>\n<div class=\"single-article__cover-wrap\">\n<figure class=\"single-article__cover\"> <img data-recalc-dims=\"1\" fetchpriority=\"high\" width=\"640\" height=\"426\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/02\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies.jpg?resize=640%2C426&ssl=1\" class=\"single-article__cover-image wp-post-image\" alt decoding=\"async\" fetchpriority=\"high\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/02\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies-2.jpg 1920w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/02\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies-2.jpg?resize=300,200 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/02\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies-2.jpg?resize=768,512 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/02\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies-2.jpg?resize=1024,683 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/02\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies-2.jpg?resize=1536,1024 1536w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/02\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies-2.jpg?resize=600,400 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/02\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies-2.jpg?resize=252,168 252w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/02\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies-2.jpg?resize=506,337 506w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/02\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies-2.jpg?resize=1013,675 1013w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2024\/02\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies-2.jpg?resize=1265,843 1265w\" sizes=\"(max-width: 1013px) 100vw, 1013px\"><figcaption> (Willie B. Thomas\/Getty Images) <\/figcaption><\/figure>\n<\/p><\/div>\n<\/header>\n<div class=\"single-article__content\">\n<div class=\"single-article__content-inner has-drop-cap\"> <html readability=\"57.900635039223\"><body readability=\"116.89001956947\"><\/p>\n<p>A notorious ransomware and extortion group tied to dozens of cyberattacks against health care entities claimed responsibility Wednesday for an ongoing attack that\u2019s disrupting payment processing at pharmacies and other care-related entities across the country.<\/p>\n<p><a href=\"https:\/\/cyberscoop.com\/tag\/alphv\/\">ALPHV<\/a>, also known as BlackCat, first claimed responsibility to <a href=\"https:\/\/www.databreaches.net\/yes-change-healthcare-breach-was-us-blackcat\/\">DataBreaches.net<\/a> on Tuesday for the attack on Change Healthcare, a subsidiary UnitedHealth Group. On Wednesday, ALPHV \u2014 perhaps best known for its role in <a href=\"https:\/\/cyberscoop.com\/com-scattered-spider-tradecraft\/\">last year\u2019s breaches of Las Vegas casinos<\/a> \u2014 posted a statement to its website that accused UnitedHealth Group of lying about the group behind the attack and the scope of affected parties.<\/p>\n<p>Reuters, citing sources familiar with the investigation, <a href=\"https:\/\/www.reuters.com\/technology\/cybersecurity\/cyber-security-outage-change-healthcare-continues-sixth-straight-day-2024-02-26\/\">reported Monday<\/a> that the group was involved.<\/p>\n<p>UnitedHealth Group did not immediately respond to a request for comment.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>Change Healthcare \u2014 a platform used by 70,000 pharmacies and health care providers to process payments and provide other data-related services \u2014 initially disclosed an issue with \u201csome applications\u201d in a <a href=\"https:\/\/status.changehealthcare.com\/incidents\/hqpjz25fn3n7\">notice to its website posted Feb. 21<\/a>. The notice was updated several hours later to add that the \u201cnetwork interruption\u201d was \u201crelated to a cyber security issue.\u201d<\/p>\n<p>In a <a href=\"https:\/\/www.sec.gov\/Archives\/edgar\/data\/731766\/000073176624000045\/unh-20240221.htm\">Securities and Exchange Commission filing<\/a> the same day, the company said a \u201cnation-state associated cyber security threat actor\u201d had gained access to its IT systems, and that the company had \u201cproactively isolated the impacted systems from other connecting systems\u201d to protect patients and its corporate partners.<\/p>\n<p>To date, there have been no clear links established between ALPHV and any government.<\/p>\n<p>Health care professionals across the country are struggling to get paid and the situation is causing major disruptions in the health care industry, <a href=\"https:\/\/www.cnn.com\/2024\/02\/28\/tech\/cyberattack-health-insurance-doctors-therapists\/index.html\">CNN reported Wednesday<\/a>.<\/p>\n<p>In late December, FBI, Department of Justice and a range of international agencies <a href=\"https:\/\/cyberscoop.com\/fbi-seizes-alphv-leak-website-hours-later-ransomware-gang-claims-it-unseized-it\/\">seized<\/a> some of the technical infrastructure associated with ALPHV. A short time later, the group said it was back up and running, underscoring the difficulty of shutting down ransomware extortion gangs without arrests.<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>Since then, health care-related entities have made up a large portion of ALPHV\u2019s nearly 70 publicly known victims, the FBI and the Cybersecurity and Infrastructure Security Agency said in an <a href=\"https:\/\/www.cisa.gov\/news-events\/cybersecurity-advisories\/aa23-353a\">advisory published Tuesday<\/a>. The <a href=\"https:\/\/www.state.gov\/reward-for-information-alphv-blackcat-ransomware-as-a-service\/\">U.S. State Department earlier this month<\/a> offered up to $15 million for information leading to the identification or location of senior ALPHV members or affiliates participating in ALPHV attacks.<\/p>\n<p>Alexander Leslie, an intelligence analyst at Recorded Future, said that according to data collected by his firm, ALPHV has claimed responsibility for attacks on at least eight health care organizations since the takedown targeting the group. That figure represents 11% of the group\u2019s victims since December and makes health care its most targeted sector, Leslie said. <\/p>\n<p>\u201cSince that operational disruption in December 2023, we\u2019ve identified a significant and disproportionate increase in the victimization of healthcare by ALPHV,\u201d Leslie said. \u201cThe attack on Change Healthcare further demonstrates that ransomware must be framed as a national security and public health crisis, due to its cascading effects on the healthcare sector nationwide.\u201d <\/p>\n<p>ALPHV\u2019s targeting of the health care sector is \u201clikely\u201d a response to the FBI operation, according to Tuesday\u2019s advisory. Other observers, <a href=\"https:\/\/www.aha.org\/news\/headline\/2023-12-20-doj-disrupts-alphvblackcat-ransomware-group\">including the American Hospital Association<\/a>, have said the group has always targeted health care entities and have advised caution in evaluating the group\u2019s claims.<\/p>\n<p>\u201cAt this point, it\u2019s impossible to assess the accuracy of Alphv\u2019s claims,\u201d Brett Callow, a threat analyst with Emsisoft, said in an online message. \u201cAlphv are untrustworthy bad faith actors and their claims should not be assumed to be accurate. In fact, they should be viewed with extreme cynicism.\u201d<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>The incident underscores the \u201clack of resilience in the health care sector and its supply chain,\u201d Callow added, noting that \u201cfragility\u201d that exists in other sectors as well.<\/p>\n<p>The group\u2019s statement Wednesday, which was removed from the group\u2019s website shortly after it was posted, said that UnitedHealth Group\u2019s claims that it had been attacked by a \u201cnation-state associated\u201d group and that the attack was limited to Change Healthcare were both \u201clies.\u201d<\/p>\n<p>ALPHV was able to \u201cexfiltrate \u2026 \u201cmore than 6 [terabytes] of highly selective data,\u201d the group claimed. \u201cThe data relates to all Change Health clients that have sensitive data being processed by the company.\u201d<\/p>\n<p>The data include active U.S. military personally identifiable information, dental records, payment information, claims information, phone numbers, addresses, social security numbers, source code for Change Healthcare products and insurance records, the group claimed.<\/p>\n<p>Change Healthcare \u201cchose to play a very risky game,\u201d the note read, along with a threat to UnitedHealth: \u201c[You] are walking on a very thin line be careful you just might fall over.\u201d<\/p>\n<p><\/body> <\/p>\n<footer class=\"single-article__footer\" readability=\"1.1234567901235\">\n<div class=\"author-card\" readability=\"8\">\n<div class=\"author-card__avatar\">\n<figure class=\"author-card__image-wrap\"> <img data-recalc-dims=\"1\" decoding=\"async\" class=\"author-card__image\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/02\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies-1.jpg?w=640&ssl=1\" alt=\"AJ Vicens\"> <\/figure>\n<\/p><\/div>\n<p><h4 class=\"author-card__name\">Written by AJ Vicens<\/h4>\n<p> AJ covers nation-state threats and cybercrime. He was previously a reporter at Mother Jones. Get in touch via Signal\/WhatsApp: (810-206-9411). <\/p>\n<\/p><\/div>\n<div class=\"single-article__tags-container\">\n<h4 class=\"single-article__tags-title\">In This Story<\/h4>\n<\/p><\/div>\n<\/footer>\n<p> <\/html><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<div class=\"single-article__ads js-single-article-sidebar\">\n<div class=\"ad ad--sidebar js-single-article-sidebar-5 ad--rightrail_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-4 ad--rightrail_2 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-3 ad--rightrail_3 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div><\/div>\n<\/article>\n<div class=\"popular-stories popular-stories--single-post\">\n<div class=\"popular-stories__container\">\n<h2 class=\"popular-stories__title\"> More Scoops <\/h2>\n<p>  <\/div>\n<p>\n<\/div>\n<p> <\/p>\n<section class=\"latest-podcasts\">\n<h2 class=\"latest-podcasts__title\"> Latest Podcasts\t<\/h2>\n<\/section>\n<div class=\"top-categories\">\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Government<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Technology<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Geopolitics<\/h3>\n<\/p><\/div>\n<\/p><\/div>\n<p> <\/main> <\/p>\n<div class=\"ad ad--bottom \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div id=\"interstitial\" class=\"welcome__container\"> <button id=\"close-modal-1\" class=\"welcome__clickable_area\"><\/button> <\/p>\n<div class=\"welcome__ad_wrapper\">\n<p> <button id=\"close-modal-3\" class=\"welcome__continue-button\">Continue to CyberScoop<\/button> <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p>   <\/body> <a href=\"https:\/\/cyberscoop.com\/ransomware-alphv-healthcare-pharmacies\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Notorious ransomware group claims responsibility for attacks roiling US pharmacies<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[950,1603,282,459,46,1604],"tags":[955,1605,286,461,54,1606],"class_list":["post-2627","post","type-post","status-publish","format-standard","hentry","category-alphv","category-change-healthcare","category-cybercrime","category-health-care","category-ransomware","category-unitedhealth-group","tag-alphv","tag-change-healthcare","tag-cybercrime","tag-health-care","tag-ransomware","tag-unitedhealth-group"],"featured_image_urls":{"full":"","thumbnail":"","medium":"","medium_large":"","large":"","1536x1536":"","2048x2048":"","chromenews-featured":"","chromenews-large":"","chromenews-medium":""},"author_info":{"display_name":"Cyber Scoop","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/cyberscoop\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/alphv\/\" rel=\"category tag\">ALPHV<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/change-healthcare\/\" rel=\"category tag\">Change Healthcare<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/cybercrime\/\" rel=\"category tag\">cybercrime<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/health-care\/\" rel=\"category tag\">health care<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/ransomware\/\" rel=\"category tag\">ransomware<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/unitedhealth-group\/\" rel=\"category tag\">UnitedHealth Group<\/a>","tag_info":"UnitedHealth Group","comment_count":"0","jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/2627","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=2627"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/2627\/revisions"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=2627"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=2627"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=2627"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}

{"id":2627,"date":"2024-02-28T22:12:54","date_gmt":"2024-02-28T22:12:54","guid":{"rendered":"https:\/\/cyberscoop.com\/?p=79529"},"modified":"2024-02-28T22:12:54","modified_gmt":"2024-02-28T22:12:54","slug":"notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2024\/02\/28\/notorious-ransomware-group-claims-responsibility-for-attacks-roiling-us-pharmacies\/","title":{"rendered":"Notorious ransomware group claims responsibility for attacks roiling US pharmacies"},"content":{"rendered":"