Ransomware cyber

Dubai Hospital

Jul 31, 2025 1 min read
Dubai Hospital

In May 2025, the Gunra ransomware group allegedly leaked 40 terabytes of sensitive data from a Dubai hospital, highlighting their willingness to target critical healthcare infrastructure. This attack not only compromised patient data but also disrupted the hospital's operations, putting patient care at risk. The sophisticated nature of the ransomware, with its multi-threading capability and hybrid encryption scheme, made it particularly challenging to mitigate.

Source: https://cybersecuritynews.com/gunra-ransomware-new-linux-variant/

TPRM report: https://scoringcyber.rankiteo.com/company/american-hospital-dubai

"id": "ame245073125",
"linkid": "american-hospital-dubai",
"type": "Ransomware",
"date": "7/2025",
"severity": "100",
"impact": "",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Healthcare',
                        'location': 'Dubai',
                        'name': 'Dubai hospital',
                        'type': 'Healthcare'},
                       {'industry': ['Manufacturing',
                                     'Healthcare',
                                     'Information Technology',
                                     'Agriculture',
                                     'Law',
                                     'Consulting services'],
                        'location': ['Brazil',
                                     'Japan',
                                     'Canada',
                                     'Turkey',
                                     'South Korea',
                                     'Taiwan',
                                     'United States']}],
 'attack_vector': 'Linux systems',
 'data_breach': {'data_encryption': True,
                 'data_exfiltration': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Sensitive data']},
 'date_detected': 'April 2025',
 'description': 'A sophisticated new Linux variant of Gunra ransomware has '
                'emerged, marking a significant escalation in the threat '
                'group’s cross-platform capabilities since its initial '
                'discovery in April 2025. The ransomware, which drew '
                'inspiration from the notorious Conti ransomware techniques, '
                'has rapidly expanded its operational scope beyond Windows '
                'systems to target Linux environments, demonstrating the '
                'group’s strategic evolution toward comprehensive enterprise '
                'network compromise.',
 'impact': {'data_compromised': ['40 terabytes of sensitive data from a Dubai '
                                 'hospital'],
            'systems_affected': ['Linux environments', 'Windows systems']},
 'motivation': 'Financial gain, data exfiltration',
 'ransomware': {'data_encryption': True,
                'data_exfiltration': True,
                'ransomware_strain': 'Gunra'},
 'references': [{'source': 'Trend Micro'}],
 'threat_actor': 'Gunra ransomware group',
 'title': 'Gunra Ransomware Linux Variant',
 'type': 'Ransomware'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.