Siemens Healthineers confirm ransomware attack of Varian, no details available

Siemens Healthineers, a prominent healthcare technology company, is grappling with a potential ransomware incident that has targeted one of its subsidiaries. Responsibility for the attack is claimed by the LockBit ransomware group. They have published data from Varian, a company specializing in radiation oncology treatments and software, which had been acquired by Siemens Healthineers two years prior.

A spokesperson for Siemens Healthineers acknowledged that data purportedly related to the Varian business segment was published on the LockBit site. This acknowledgment has triggered the activation of an incident response protocol within the organization. To address the incident comprehensively, Siemens Healthineers assembled a dedicated taskforce comprised of both internal and external cybersecurity experts.

The exact extent of the breach remains uncertain, including the potential ransom demanded by the LockBit group. No details are available about the nature of the attack nor the number of affected individuals.

Cybersecurity analysts raise questions about the operational strength of the LockBit ransomware group because LockBit's leadership had temporarily vanished, which led to disruptions in their operational activities. The group's ability to publish stolen data has been hampered by backend infrastructure issues and limited available bandwidth. This has prompted concerns about their capacity to deliver on ransom demands and maintain their reputation as a prolific ransomware group.