Verticals Targeted: Healthcare, Children’s Hospitals
Regions Targeted: US, Europe, Canada
Related Threat Actors: Iranian Threat Actors, Vanilla Tempest, Vice Society
Related Families: Rhysida, LockBit, INC
Executive Summary
Children's hospitals face a unique convergence of cyber risks involving ransomware, data theft, identity fraud, and emotionally motivated targeting. Unlike adult healthcare records, compromised pediatric identities may retain criminal value for decades, supporting synthetic identity fraud, financial abuse, and long-term impersonation. At the same time, children's hospitals operate in highly sensitive environments where disruptions can directly impact patient care and generate significant public pressure. Documented incidents demonstrate that pediatric healthcare organizations remain attractive targets for ransomware groups, nation-state actors, and hacktivists seeking operational, financial, or ideological objectives.