{"id":7304,"date":"2018-07-24T11:25:41","date_gmt":"2018-07-24T11:25:41","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/"},"modified":"2018-07-24T11:25:41","modified_gmt":"2018-07-24T11:25:41","slug":"mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/","title":{"rendered":"Mega medical tester pester: It smacked a big one, that malware scam, if indeed it was SamSam"},"content":{"rendered":"<p><strong class=\"trailer\">Analysis<\/strong> One of the largest clinical testing specialists in the US, LabCorp Diagnostics, is coming out of recovery mode a week after being hit with ransomware \u2013 reportedly SamSam, the same malware that brought the US <a target=\"_blank\" href=\"https:\/\/www.theregister.co.uk\/2018\/03\/22\/atlanta_pwned_by_ransomware_attack\/\">city of Atlanta<\/a> to a standstill earlier this year.<\/p>\n<p>LabCorp has not confirmed that the malware was SamSam, but <a target=\"_blank\" href=\"https:\/\/www.wsj.com\/articles\/medical-testing-giant-labcorp-hit-by-ransomware-attack-1532001600\">several<\/a> reports have cited &#8220;people familiar with the matter&#8221; saying it was.<\/p>\n<p>News of the attack <a target=\"_blank\" href=\"https:\/\/www.theregister.co.uk\/2018\/07\/17\/labcorp_security_concern\/\">emerged<\/a> when the company made a public statement and filed a Securities and Exchange Commission (SEC) <a target=\"_blank\" href=\"https:\/\/www.sec.gov\/Archives\/edgar\/data\/920148\/000092014818000088\/form8-kpr71618.htm\">report<\/a> describing the fact of the attack \u2013 and little more \u2013 on 16 July.<\/p>\n<p>It has since been reported that the attack, which struck around 14 July, may have been more serious than the notification suggested.<\/p>\n<div class=\"promo_article\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/regmedia.co.uk\/2018\/03\/22\/atlanta.jpg?x=174&amp;y=115&amp;crop=1\" width=\"174\" height=\"115\" alt=\"Atlanta\"\/><\/p>\n<h2 title=\"Data gone with the wind as attacker goes full Sherman\">City of Atlanta&#8217;s IT gear thoroughly pwned by ransomware nasty<\/h2>\n<p><a href=\"https:\/\/www.theregister.co.uk\/2018\/03\/22\/atlanta_pwned_by_ransomware_attack\/\"><span>READ MORE<\/span><\/a><\/div>\n<p>Quoting unnamed sources familiar with the probe, <a target=\"_blank\" href=\"https:\/\/www.csoonline.com\/article\/3291617\/security\/samsam-infected-thousands-of-labcorp-systems-via-brute-force-rdp.html\">CSO Online reported<\/a> that the attackers had gained access to the network by brute-forcing credentials on a resource accessible via Remote Desktop Protocol (RDP), after which the first server was encrypted.<\/p>\n<p>LabCorp&#8217;s Security Operations Centre reportedly contained the spread of the malware in less than an hour. However, despite this, in that short window the malware is alleged to have managed to reach thousands of systems and servers, including hundreds of production servers important for day-to-day operations.<\/p>\n<p>Patient data was not thought to have been breached in an attack.<\/p>\n<p>&#8220;Work has been ongoing to restore full system functionality as quickly as possible, testing operations have substantially resumed, and we are working to restore additional systems and functions over the next several days,&#8221; <a target=\"_blank\" href=\"https:\/\/www.labcorp.com\/content\/labcorp-it-security-information\">LabCorp said<\/a> in a follow-up statement to journalists.<\/p>\n<p>&#8220;As part of our in-depth and ongoing investigation into this incident, LabCorp has engaged outside security experts and is working with authorities, including law enforcement. Our investigation has found no evidence of theft or misuse of data.&#8221;<\/p>\n<p>If the reports are true and the ransomware was SamSam, several elements of this attack stand out, starting with the unusual aggressiveness of its spread even once it had been detected \u2013 clearly, defenders don&#8217;t have minutes to mitigate, they have seconds.<\/p>\n<p>This has been noticed in previous SamSam attacks as a feature of its design, in which the payload is decrypted manually at runtime by a remote attacker with a password. This makes it hard to detect, let alone analyse forensically, when it has deleted traces of itself.<\/p>\n<p>A second is the consistent targeting of RDP and VNC in which the attackers hunt for and compromise remote access gateways that are protected by weak credentials.<\/p>\n<p>In the case of <a target=\"_blank\" href=\"https:\/\/www.theregister.co.uk\/2018\/01\/16\/us_hospital_ransomware_bitcoin\/\">Hancock Health hospital in Indiana<\/a>, criminals broke in after finding a box with an exploitable RDP server before injecting their ransomware into connected computers.<\/p>\n<p>Finding open ports or outdated software versions isn&#8217;t hard to do using public tools such as <a target=\"_blank\" href=\"https:\/\/www.theregister.co.uk\/Tag\/shodan\">Shodan<\/a>, which raises the question of why defenders don&#8217;t comb their own networks for open ports in a similar fashion.<\/p>\n<div class=\"promo_article\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/regmedia.co.uk\/2015\/04\/28\/dr_nick.jpg?x=174&amp;y=115&amp;crop=1\" width=\"174\" height=\"115\" alt=\"Doctor Nick Riviera\"\/><\/p>\n<h2 title=\"Medics say they couldn't wait for backups to be pulled as ransomware ransacked kit\">Hospital injects $60,000 into crims&#8217; coffers to cure malware infection<\/h2>\n<p><a href=\"https:\/\/www.theregister.co.uk\/2018\/01\/16\/us_hospital_ransomware_bitcoin\/\"><span>READ MORE<\/span><\/a><\/div>\n<p>The final part of the SamSam playbook is the targeting of companies in the medical sector. Although the most infamous incident involving this malware was the <a target=\"_blank\" href=\"https:\/\/www.theregister.co.uk\/2018\/03\/22\/atlanta_pwned_by_ransomware_attack\/\">city of Atlanta in March<\/a>, disruptive attacks on medical practice management software provider Allscripts as well as Adams Memorial Hospital, also in Indiana, just a few weeks earlier underlined this targeting preference.<\/p>\n<p>On that score, attackers who use the nasty appear to have achieved a level of success. Ransoms are usually below $50,000, with some victims reportedly paying up, which possibly encourages more attacks.<\/p>\n<p>As LabCorp is doubtless finding out to its cost, the alternative is days or even weeks of disruption. \u00ae<\/p>\n<p class=\"wptl btm\"><span>Sponsored:<\/span> <a href=\"https:\/\/go.theregister.co.uk\/tl\/1787\/-6625\/following-bottomlines-journey-to-the-hybrid-cloud?td=wptl1787\">Following Bottomline\u2019s journey to the Hybrid Cloud<\/a><\/p>\n<p>READ MORE <a href=\"http:\/\/go.theregister.com\/feed\/www.theregister.co.uk\/2018\/07\/24\/labcorp_samsam_ransomware_attack\/\">HERE<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Testing giant LabCorp still recovering Analysis\u00a0 One of the largest clinical testing specialists in the US, LabCorp Diagnostics, is coming out of recovery mode a week after being hit with ransomware \u2013 reportedly SamSam, the same malware that brought the US city of Atlanta to a standstill earlier this year.\u2026 READ MORE HERE&#8230;<\/p>\n","protected":false},"author":2,"featured_media":7305,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_layout":"default_layout","footnotes":""},"categories":[63],"tags":[],"class_list":["post-7304","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-the-register"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.9 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Mega medical tester pester: It smacked a big one, that malware scam, if indeed it was SamSam 2026 | ThreatsHub Cybersecurity News<\/title>\n<meta name=\"description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Mega medical tester pester: It smacked a big one, that malware scam, if indeed it was SamSam 2026 | ThreatsHub Cybersecurity News\" \/>\n<meta property=\"og:description\" content=\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security &amp; Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/\" \/>\n<meta property=\"og:site_name\" content=\"ThreatsHub Cybersecurity News\" \/>\n<meta property=\"article:published_time\" content=\"2018-07-24T11:25:41+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/07\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"174\" \/>\n\t<meta property=\"og:image:height\" content=\"115\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"TH Author\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatshub\" \/>\n<meta name=\"twitter:site\" content=\"@threatshub\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"TH Author\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\\\/\"},\"author\":{\"name\":\"TH Author\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\"},\"headline\":\"Mega medical tester pester: It smacked a big one, that malware scam, if indeed it was SamSam\",\"datePublished\":\"2018-07-24T11:25:41+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\\\/\"},\"wordCount\":636,\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/07\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam.jpg\",\"articleSection\":[\"The Register\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\\\/\",\"name\":\"Mega medical tester pester: It smacked a big one, that malware scam, if indeed it was SamSam 2026 | ThreatsHub Cybersecurity News\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/07\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam.jpg\",\"datePublished\":\"2018-07-24T11:25:41+00:00\",\"description\":\"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/07\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2018\\\/07\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam.jpg\",\"width\":174,\"height\":115},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Mega medical tester pester: It smacked a big one, that malware scam, if indeed it was SamSam\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"name\":\"ThreatsHub Cybersecurity News\",\"description\":\"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\"},\"alternateName\":\"Threatshub.org\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#organization\",\"name\":\"ThreatsHub.org\",\"alternateName\":\"Threatshub.org\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"contentUrl\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/05\\\/Threatshub_Favicon1.jpg\",\"width\":432,\"height\":435,\"caption\":\"ThreatsHub.org\"},\"image\":{\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/threatshub\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.threatshub.org\\\/blog\\\/#\\\/schema\\\/person\\\/12e0a8671ff89a863584f193e7062476\",\"name\":\"TH Author\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g\",\"caption\":\"TH Author\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Mega medical tester pester: It smacked a big one, that malware scam, if indeed it was SamSam 2026 | ThreatsHub Cybersecurity News","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/","og_locale":"en_US","og_type":"article","og_title":"Mega medical tester pester: It smacked a big one, that malware scam, if indeed it was SamSam 2026 | ThreatsHub Cybersecurity News","og_description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","og_url":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/","og_site_name":"ThreatsHub Cybersecurity News","article_published_time":"2018-07-24T11:25:41+00:00","og_image":[{"width":174,"height":115,"url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/07\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam.jpg","type":"image\/jpeg"}],"author":"TH Author","twitter_card":"summary_large_image","twitter_creator":"@threatshub","twitter_site":"@threatshub","twitter_misc":{"Written by":"TH Author","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/#article","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/"},"author":{"name":"TH Author","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476"},"headline":"Mega medical tester pester: It smacked a big one, that malware scam, if indeed it was SamSam","datePublished":"2018-07-24T11:25:41+00:00","mainEntityOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/"},"wordCount":636,"publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/07\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam.jpg","articleSection":["The Register"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/","url":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/","name":"Mega medical tester pester: It smacked a big one, that malware scam, if indeed it was SamSam 2026 | ThreatsHub Cybersecurity News","isPartOf":{"@id":"https:\/\/www.threatshub.org\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/#primaryimage"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/#primaryimage"},"thumbnailUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/07\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam.jpg","datePublished":"2018-07-24T11:25:41+00:00","description":"ThreatsHub Cybersecurity News | ThreatsHub.org | Cloud Security & Cyber Threats Analysis Hub. 100% Free OSINT Threat Intelligent and Cybersecurity News.","breadcrumb":{"@id":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/#primaryimage","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/07\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2018\/07\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam.jpg","width":174,"height":115},{"@type":"BreadcrumbList","@id":"https:\/\/www.threatshub.org\/blog\/mega-medical-tester-pester-it-smacked-a-big-one-that-malware-scam-if-indeed-it-was-samsam\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.threatshub.org\/blog\/"},{"@type":"ListItem","position":2,"name":"Mega medical tester pester: It smacked a big one, that malware scam, if indeed it was SamSam"}]},{"@type":"WebSite","@id":"https:\/\/www.threatshub.org\/blog\/#website","url":"https:\/\/www.threatshub.org\/blog\/","name":"ThreatsHub Cybersecurity News","description":"%%focuskw%% Threat Intel \u2013 Threat Intel Services \u2013 CyberIntelligence \u2013 Cyber Threat Intelligence - Threat Intelligence Feeds - Threat Intelligence Reports - CyberSecurity Report \u2013 Cyber Security PDF \u2013 Cybersecurity Trends - Cloud Sandbox \u2013- Threat IntelligencePortal \u2013 Incident Response \u2013 Threat Hunting \u2013 IOC - Yara - Security Operations Center \u2013 SecurityOperation Center \u2013 Security SOC \u2013 SOC Services - Advanced Threat - Threat Detection - TargetedAttack \u2013 APT \u2013 Anti-APT \u2013 Advanced Protection \u2013 Cyber Security Services \u2013 Cybersecurity Services -Threat Intelligence Platform","publisher":{"@id":"https:\/\/www.threatshub.org\/blog\/#organization"},"alternateName":"Threatshub.org","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.threatshub.org\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.threatshub.org\/blog\/#organization","name":"ThreatsHub.org","alternateName":"Threatshub.org","url":"https:\/\/www.threatshub.org\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","contentUrl":"https:\/\/www.threatshub.org\/blog\/coredata\/uploads\/2025\/05\/Threatshub_Favicon1.jpg","width":432,"height":435,"caption":"ThreatsHub.org"},"image":{"@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/threatshub"]},{"@type":"Person","@id":"https:\/\/www.threatshub.org\/blog\/#\/schema\/person\/12e0a8671ff89a863584f193e7062476","name":"TH Author","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/066276f086d5155df79c850206a779ad368418a844da0182ce43f9cd5b506c3d?s=96&d=mm&r=g","caption":"TH Author"}}]}},"_links":{"self":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/7304","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/comments?post=7304"}],"version-history":[{"count":0,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/posts\/7304\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media\/7305"}],"wp:attachment":[{"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/media?parent=7304"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/categories?post=7304"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.threatshub.org\/blog\/wp-json\/wp\/v2\/tags?post=7304"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}