Anubis RaaS Emerges as a Threat to Healthcare Sector with Encryption-Focused Attacks

The Anubis ransomware-as-a-service (RaaS) group has recently targeted Mid South Pulmonary & Sleep Specialists (MSPS), a Tennessee-based healthcare provider, highlighting a growing threat to the medical sector. Unlike many contemporary ransomware operators that employ double extortion tactics—encrypting data and exfiltrating it for additional leverage—Anubis appears to focus primarily on data encryption. While the initial access vector remains unspecified, the attack underscores the persistent risk of ransomware disrupting healthcare operations and compromising sensitive patient data. Healthcare organizations are particularly vulnerable due to the critical nature of their services and the regulatory implications of data breaches under the Health Insurance Portability and Accountability Act (HIPAA). This incident serves as a reminder of the importance of robust cybersecurity measures, including regular data backups, endpoint protection, and employee training to mitigate phishing risks. The healthcare sector must prioritize cybersecurity resilience to counter evolving ransomware threats, especially from lesser-known but capable groups like Anubis RaaS.