Security researchers identified a new ransomware variant dubbed "RedScalpel" that has successfully encrypted systems at 14 regional hospitals over the past two weeks.
The malware exploits unpatched VPN appliances to gain initial access before moving laterally to encrypt EHR systems and medical imaging archives.
