BlackCat Hacked The Healthcare Industry
HTML-код
- Опубликовано: 4 мар 2024
- in this video I discuss how blackcat/AlphV hacked the healthcare industry as revenge for the FBI seizing their site on the darkweb and how they received a ransomware payment of 22 million in Bitcoin
My merch is available at
based.win/
Subscribe to me on Odysee.com
odysee.com/@AlphaNerd:8
₿💰💵💲Help Support the Channel by Donating Crypto💲💵💰₿
Monero
45F2bNHVcRzXVBsvZ5giyvKGAgm6LFhMsjUUVPTEtdgJJ5SNyxzSNUmFSBR5qCCWLpjiUjYMkmZoX9b3cChNjvxR7kvh436
Bitcoin
3MMKHXPQrGHEsmdHaAGD59FWhKFGeUsAxV
Ethereum
0xeA4DA3F9BAb091Eb86921CA6E41712438f4E5079
Litecoin
MBfrxLJMuw26hbVi2MjCVDFkkExz8rYvUF 
Наука
LOL. That "[title]_files" folder is what you get when you right click and save the website, they just downloaded it from the older domain.
Funny how the federal government was against these healthcare merging because this could happen and it happened exactly as the Feds warned them 😅😂😅😂
Agreed, but fuck the feds.
@@tass2001why, they want to save the childrens
@@moioyoyo848I hate kids, so f the feds
@@moioyoyo848MONEY🦀MONEY🦀MONEY🦀
@@moioyoyo848true
I often bring up my Rust experience in job interviews but for some reason employers aren’t impressed that I 1v5’d some kids at launch.
Yeah its odd when I tell my employer that I oftentimes stay up until the wee hours of the night grinding sulfur to raid chinese zergs, I thought he would be impressed with my dedication to Rust
to be fair, god forbid people be able to get healthcare without some billionaire insurance company getting paid. 🙄
Pox on insurance of all kinds. They exist purely to pump prices up
Yeah... God forbid that thing... what a tarnation would that be! 👁🐽👁
To be fair, to be fair, tax is just insurance, to be fair.
Yeah only if you are from muritard land
@hoovysimulator2518 Hey, if you enjoy being robbed, why not keep on keeping on? You can get superior healthcare in Asia for what you pay in tax every month, let that sink in.
When the hacker's customer service is more responsive than silicon valley's
Lmao
Silicon Valley doesn't post cats as much as hackers, hell this group has a cute cat mascot! Kinda hard to get mad at cute cats, huh?
Healthcare. Where they pay for a “solution” that has a completely separate software and system independent to everything else on the network, while also being given access to everything. Usually with very poorly ran IT departments. This is going to get far worse. I’m genuinely glad some of that money being extorted from “clients” is going into someone else’s pockets.
Sometimes it is poor IT management, sometimes laziness, and sometimes bean counters don't want to spend money on things that they cannot justify (why replace the spark plugs on the car when the car runs? Wait until it stops working).
They prob copied that data and sold it to be used to scam those clients too.
@@Yor_gamma_ix_bae tell me something that isn’t new. Life is a scam.
I remember the days of the fake Indian tech support scammers locking your PC with a BIOS password. That is the original ransomware.
I remember the days where loan shark kidnaps your wife and tells you to meet them out in the desert with your life’s savings
@@robyee3325Rodney Dangerfield voice: "And I sent them the money with a note telling them to keep her"
@@robyee3325 LMFAOOOOOOOOOOOOOOO
@@robyee3325 simpler times.
That was the smoothest segue to merch I have ever seen.
@@whitewolf262 I don't know what your talking about.
@@bananaman9869 my job here is done
@shiver.01ok
Little tip I've thought of, maybe I'm wrong, but I think it's a bad idea to give your video thumbnails a red border. It makes people think they've already seen the video because it looks like the red "previously played" bar on youtube thumbnails
Fair critique
funny, i made the same comment. lets see if mental outlaw notices :)
An evil RUclipsr could put a partial red line to say “hey, you’ve already clicked this one before, why not finish it?”
Yeah I was confused by it thinking it's some youtube thing "marking" videos.
@@jamesarthurkimbellYeah, I've legitimately contemplated doing something like this for thumbnails before, but it just feels kind of scummy.
Bros are moving the money, soon you'll see the group renamed and active again. Too much heat.
Nah its probably just money laundering, whenever money is transfered for this kind of thing, the money had to be laundered
The group aka the FBI
AlphV wrote ransomware in rust around the same time that the white house endorsed rust, coincidence?
Russians and US both endorse Rust!
Time for me to learn rust then lol @@MentalOutlaw
Vanilla or modded 10x? Or do you mean the movie?
@@MacGuffin1the programming language
@@MentalOutlawRussia does it in the form of t32s
Finally, some memory-safe ransomware
truly the best kind of ransomware
lol
Wouldn't it make sense the possibility that they themselfs fake "seized" the site? That way they could have a reason for going after institutions that are frowned upon in the hacker/ransonware communities.
Also, never heard of that tug of war with seized and unseizeing. Its all too suspicious
Probably
We’re in a world war, it just doesn’t feel like it yet. Cyber war started heavy in Ukraine a while ago, further with info ops and further yet with influence ops. It’s a weird ass world of there.
I suspect it's all a made up story and these could be direct attacks from agencies our government wants to brush under the rug as hackers.
Maybe they seized their own website like putting a fake ticket on your car so you don't get a real ticket
@Durkhead this is more like putting up a fake parking ticket so you have an excuse for killing the next cop you see 😂
Ive been unable to get my medication because of this hack. Incompetent healthcare system has been unable to fix itself...
Friendly reminder, you wouldn't have that issue if these hackers weren't throwing a hissy fit and attacking critical infrastructure
@@lotarion you wouldn't have that issue if "healthcare" wasn't a cover for slavery and extortion
Slavery?
Well either way you’re both right, healthcare is shit with poor backup/downtime plans AND hackers are having a hissy fit.
@@lotarion Why is this "infrastructure" not protected properly if it's "critical"?
@@ra2enjoyer708 Heck if I knew, it should be, but that's no excuse to directly attack it
Maybe, just maybe, these big corporations will start upgrading and taking their network security seriously instead of using Windows XP...
is it really in the interest of the public that large corporations be more secure?
Hey! I just quit working at OptumRX (united health care) about a month ago. We used Windows 7! lol
Do you really think they will be more secure using a spyware OS like W10/11?
@@abrokenpalatleast they get security updates
@@abrokenpal haha I thought the same thing. they better not upgrade to win 10 or 11. spyware is probably even the smaller issue, I don‘t wanna know how many security issues are in these systems when they can‘t even get basic functionalities to work at all
Company I work for got ransomwareed. Thinking it might have been these guys. Shut them down for a month and even months later their system was broken. Can't believe they didn't have backups!!!
It's a good thing in some ways. A real wake up call to the IT guys (or guy depending on how stingy your company is)
this is why i got a letter saying my data may have been compromised from an ophthalmologist. you're the only one talking about this
Thank you, Mental Outlaw, for great content. I hope you live a happy life!
I wish you the same!
So many ransomware hackers I can't keep up...
I guess you could say when it comes to cybersecurity these big companies are getting...
Rusty 😂
"This website has been unseized" hahahaha. These dudes are fucking hilarious lmao xD
in soviet Russia website seize you
it’s crazy how these Russians do ransomware like there’s no tomorrow
There's not much else to do there besides doom
@@SprDrumio64 comrade, bring computer to LAN party, we play Unreal Tournament 99 like men.
yeh cuz ha hah they are still communits aha hah and U$A kniows their stoopid and never killed 905 OF gERMANS ON THIER OWN OR GOT NUCLEAR WEAPONS OF SUPERIOS FIGHTERS OR OUTSMARTED kAPITALIST CUZ THEY EAT BEETS AND BAF VODKA AND DON'T HAVE KULTURE LIKE u$a CLUB
ah yes, the evil russians...
@@markm0000underrated comment.
I work in a healthcare helpdesk and have for the past year. Its been hellish.
@@ceciliacole5098 yeah honestly. Management is brain dead, the users even dumber which makes me lose faith in the healthcare system, I make like 20 a hour but some people on the team make 22 or as little as 16. That and how micromanagey it is. I could honestly deal with most of it if it wasn’t like an adversarial thing with leadership
@@minecraftkid50978lie on resumes and start serving/bartending
@@minecraftkid5097820 an hour for help desk even entry level is terrible. Take your skills elsewhere… should be making 25-30 minimum with entry level certs and experience
I feel for you, most of the calls you get must be from stressed and desperate people, can't imagine they are often polite to you
This has been really frustrating for me. Literally had to switch to a cheaper (and worse) medication because I would lose all my money buying the current one without insurance.
Do think a site like "CostPlusDrugs" would have the medication you need?
Guarantee you that even with this ransomeware attack, the medication you're buying actually costs like $0.000000001 per dose. US Healthcare is a scam.
This explains why, when I went to the Dr. the other day, they couldn't talk to my insurance provider at all.
Fun fact: AlphV's owner also doesn't own a Lamborghini! The FBI totally knows who he is!
What u mean?
Your merch plugs are always funny
the only reasons i could think of for keeping the website intact is that either the hacker group or the agency are still using it for something we arent supposed to see.
if they would seize it and be done with it they always nuke the whole thing because they have no reason to keep the whole website hosted on there servers if all they want to do is show that image.
Unthinkable that the alphabet boys would seize their domain and not have a pre-written press release ready to go.
I didn't think it was a fake seize (alphv doing it themselves) like some comments are saying, but this adds some credence to that, the abc bois have an ego the size of the sun, no way they wouldn't make a public announcement
Ive been watching your videos for a while but "tug of tor" caused a subscription to occur thank you for the quality content
As a pharma bro I applaud this video, it’s been long awaited
You serve the archons
Who needs the cinema when you have stories like these
This video was made just for the Tug-of-TOR pun. Well worth it. 👍
You should look at the actual stats, its actually gone down a ton because companies are storing backups and refusing to pay out the ransom, cheers
Something even weirder about the new site: One of the agencies listed is a local police force in Germany. I don’t wanna claim that they aren’t good, but being involved in two cases of seizure is kinda weird for a local police force
It's not just any local police. It's the police of Göttingen which in 2007 had a big restructuring to be more close to the people, be more effective in communication and problem solving. Espechially because back than they had a huge problem with criminal elders. Nowadays some say jokingly they want to be arrested because the police men are so nice.
Just look up "Die große Polizeireform" and "Das Oma-Problem". They are old reports that showcase the severity of the situation back then with public crime and how they solved most of it.
@@svw1999Interesting!
What cheapskates, got 20M and are refusing to pay their associates 20k. Why making an enemy for practically peanuts at this point?
Its not 20k but 20kk, look more attentively in the chat screenshots
Encryptor ransomware when they realize all I have on my PC are are bizarre edits of my friends
It has been confirmed the second site was done by those bozos. They saved the website from their browser which packages images into that "files" directory
Time for doctors to go back to using paper prescriptions only, this is all due to the laws requiring digital prescriptions.
2:00 Never have I seen a more threatening crab if not for the fact that giving it aKnife is like giving a mosquito a needle: sure, it'll seem like a more punk version of a dangerous animal in the wild, but does it really do much to legitimize its predator status or make them anEdgelord?
The knife gives the crab slashing and stabbing capabilities in addition to crushing attacks with claws
@@MentalOutlaw OwO crab attack ❗❗❗
Hackers who attack multi-billion dollar companies are good people in my book.
As long as they don't scam poor people, i don't care.
isn't this affecting the poor though?
@@TheMinipasilalol imagine targeting an industry that's based on usury and extortion nothing else is in any way bad for the poor
@@TheMinipasilaIt is - for example, many pharmacies have been unable to validate non-insurance prescription discount cards that are near-exclusively used by the poor & underinsured.
@@rusi6219If you are so self centered that you can not see that this can affect other people apart from the actionists of some corpo you are brain dead
Of course it affecting a lot of people. You cant have billion dollar valuation for useless thing, unless wework or something. Being poor doesn't make you morally right anyway
If I'm not wrong that "_files" folder is created when you right click > save on a webpage, assets get stored there.
you're not wrong
tough loss to the cavs tonight but I’m glad you had some fire to drop on yt for us after
Just saw this video and it’s insane how garbage the healthcare industry is. We had to switch clearing houses because Change Healthcare kept giving empty promises about fixing the hack. Without a working clearing house, we literally do not get paid for our work. The worst part about it is that change healthcare is the clearing house that works the best with our EHR (hospital management service). We had to switch to a garbage clearing house that constantly gives issues with our EHR because of course all medical software only works with companies who pay them the most.
Hah it would be wild if they're having some internal struggle over not paying 1% of the bag to that guy
I've paid myself ransom money to drum up business. It's pretty effective!
Tip: don't give your thumbnail a red border. It makes it seem in my Subscriptions as if I have already watched it.
Yup, they got us bad where I work. Basically can't use anything online, they blocked everything and we have to fax everything to the insurance companies. EMR dead, web portals dead, it's a giant pain in the ass for everyone. Kinda cool, though.
6:53 "Now, this is where stuff gets suspicious, I got 647058 orders for those pullovers."
Hasn't elons hair transplants gone well...
Man, it's really Toradelic these days, ouch! But thank you for clarifying some of these issues..."a tug of Tor", LOL. Cheers...
I love your content keep up the good work ❤
i hope that some disguntled hacker ends up getting the launch codes and thats how the world ends instead of it being some lame ass ai takeover
What's interested of the trailing "_files" is that that's the default folder name Firefox will user to save website assets to if you right click > Save Page As > Complete Webpage
Maybe some FBI intern was assigned to make a site for the newly seized domain and just said "f-it, I'm just gonna copy the old page" lol
Actually on some "seized" web-sites I've seen, the bureau basically saved the old page, commented out the old stuff, added their braggartry and uploaded. You can actually see the old HTML if you view source. It makes sense that a non-critical and frankly boring task like that is pushed down through the bureau layers onto some intern, yeah.
@@olekbeluga314No that’s bs, I bet the dns aren’t even changed
Also, I always wondered why no one had ever attempted a fake Glowie seizure site attempt to rug pull someone. Then this video happened lol
wow, what an unexpected upside of not having insurance fr my nonexistant job 😂
Hey unrelated to this video but i got a question about chickens and i know you have some
So menards has a chicken coop on sale, says it can hold 8 hens, its insulated/heated i think, has the fence bit for them to be in the grass but still safe, etc. like a full on coop. Its $250 as a sale price.
Is that a good price for a pre built one? Or is that kinda sacrelige to get prebuilt? i dont really know how to build a coop anyway and i dont want my mistakes to lead to dead hens. or is that a too good to be true price i should be suspicious of?
Thanks :)
just build your own
@@sutenjarl1162 yeah but idk if that would be more expensive or how complex they actually are y'know? Like if they cost an average of 500 to build, the 250 one might be the best run for the money
It really depends on the square footage and how well insulated it. Is this a coop you'll keep them in full time? You should really consider building your own and think outside the box a bit if you know how to use tools. The great thing about chickens is they don't care much about "home decor" you can use scrap wood, reclaimed wood, all kinds of ways to build a coop. It doesn't have to be straight, plum, or flush just keep them safe from predators and the elements, and of course a place to lay eggs for you :)
Look up joel salatin chicken tractor..
Just go out and price compare. Chicken tractors are movable coops which is useful. Do a bunch of research on homesteading, regenerative agriculture, permaculture. See what you think will work for you. If you are doing a backyard set up you will need something completely different than a bigger space.
6:50 nice plug, made me laugh lmao
How would one safeguard themselves from the effects from this in terms of getting needed meds?
Do you have like discord discussion server or something i really got to know all this info
In conclusion: screw the FBI
the files directory looks like the structure when you save a webpage in the browser and it packages it.
Every Single ransom Attack promotes Linux and bsd technologies, which is Generally a good Thing. Every Single ransomware Attack starts with one infected Windows machine and continues by activedirectory to all other Machines connected to the network. On Linux we have chroot, on bsd jails which encapsulates Users and files which also encapsulates ransom encryptions when they Happen.
thank god the hackers used rust to make sure theyre malware is memory safe, would be a shame if there was a memory leak in the infected computers
At 7:18 that forum post is over 2 years old, when supposedly this attack and the bitcoin transcation took place very recently…?
You where looking at there account registration date?
the underscore files folder implies that someone just did ctrl s on the seized pages then uploaded the result to the new box.
Yea i cant do billing for my private practice because of the ransomware. That means no income for many providers like me. But we still have to serve the pts.
For some more reference, look up the consequences of trying to hack, a pacemaker outside of the regular communication channels defined by that manufacturer. You will be dead.
Man. I want to know where you get your news from. I’m always super behind on these things
Omg is this why I keep getting calls from different people trying to get me to sign up for free healthcare, I received like 50 back to back calls in 3 days
Liked the video for the “tug of tor” joke… 3:58
How long until they hack the wrong target and the ransom money is instead used to put on a hit on them (or otherwise offered as a reward to any information that leads to their arrest) ?
How do you get such information? I mean not everybody looks into the html and sees "oh the image dir is different lol".
tip, dont do red borders on your thumbnails. i saw this an hour ago but didnt click because the only border i could see was the bottom so it looked like i'd watched it already lmao
Funny, I made the same comment. We'll see if Mental Outlaw notices
DAYUM that was one smooth segway!
Well, this got interesting..... i still dont get whats going on or how stuff will develop.
I love these guys. American Government is so corrupt that it's a good thing hackers are fucking with the FBI😂
4:21 lol that black cat image they use is funny
if its written in rust does it have a 41% of not working?
Is it Alph-V or just Alpha? Since a V is basically an upside down capital A.
More tutorials please!!
long time fan an great video but black cat do not do the hacking themselfs they just create the code and negotiate with the people infected with the ransomware, they use an affiliate program that other hackers use in able to get access to their ransomware and in return black cat get around 10-20% of the ransom , keep up the good work !
Really glad the adversaries are using Rust for their malware, wouldn't want an out-of-bounds read to accidentally leak any of the personal information they exfiltrate. The White House must be really happy that they are so considerate of our privacy.
Imagine they made a fake 'seized' page with a link to a fake snitch form, to find out who the snitches are 🤔💀
Classic Russian tactics: attack indiscriminately the moment they are threatened and steal all the bank from their collaborators
Intellectual property and Central Banking make our lifes 4 times more expensive
My father raised me to always tackel a problem at its root.
There is no free market if you control the supply of money and interest rates and have a monopoly on vital products
Thx Government
Sad i don't have Vote+ like corporations and banks
What forum is that
How does this work. Social engineering attacks aside, how does software which is executable wind up in activation on a target machine outside of the social engineering front? E.G an operating system should by default cover this. Please enlighten me someone.
Supply chain attack. Basically you release a new version of the existing program but with malware embedded and everyone depending on it gets the malware. It's way easier to pull off in a proprietary environment (aka medical field) because in there, especially on windows, it is customary to embed all dependencies in the final binary and therefore the only guarantee from dependency pollution from the vendor is "trust me bro". Past that point only an overly aggressive and intrusive antivirus maybe can help. Windows already has it built-in in the form Windows Defender which, by complete coincidence, acts like a mitm + botnet and requires system-level privilegies.
The trick relies on the fact it is expected for installer to have super user privilegies and make arbitrary http calls, which, in context of turing-complete languages, means you can do absolutely everything during installation/update:
- start up a web server to have back and forth exchange with another web server on the internet. A basis for any botnet.
- add said server as a persistent process to run in the background.
- download/install/uninstall/start/stop any other program in the system, including antiviruses. For this reason Window Defender operates on system-level privilegies, which are a step above super user, and can only be disabled from GUI. I am not even sure it can be even deleted from the system. This is why btw every piracy torrent begs to turn the antivirus off manually.
- can read and write to almost any file and folder on your system, including encryption-related keys. Coupled with a running web server it means it can exfiltrate your credentials.
- run console commands available on the system. A subset of controlling the programs state with important difference is it can interact with them fully. I.e. create a dump of the database, add/remove/change existing users on the system, query all data from system APIs. Obviously requires more complicated code to handle but has an added benefit of getting raw data from otherwise encrypted sources, such as when the program encrypts all sensitive data at rest. This is the basis for any rootkit logic.
- a subset of previous point, when all hope is lost, you can run a memory dump and, coupled with a running webserver, send it over for further analysis. Doubt it is widely practiced in the year of multiple GBs of RAM and therefore instantly raising suspicion when trying to send them over a wire. But it is possible and had an added benefit of exposing secrets without knowing API of every single program in the system.
Red bars on the thumbnail made me think I already watched this.
Do people intentionally call them "Alf V" because it's demeaning or are they confused?
ah yes, memory safe, written in rust malware
Why don't the black cat hackers use monero wallet? To receive ransoms?
Not relevant to the video but could you add a DeEsser to your mic settings? The ‘s’ and ‘c’ are really sharp
New York times posted a article about it.
so there is hope
Oh its united health insurance. Valid and based.
Alfonso needs to share the wealth !
Files sounds like they right clicked -> Save page lol
the red border on your thumbnails makes it seem like I already watched your videos
smooth self-promotion; loved it :D