US Agencies Warn of Surging Interlock Ransomware Attacks Targeting Healthcare, Businesses

Federal agencies warn of rising Interlock ransomware attacks targeting healthcare and critical sectors using double extortion and advanced social engineering.

Four major U.S. agencies have issued a joint cybersecurity alert warning about the escalating threat posed by the Interlock ransomware operation, which has increasingly targeted businesses, healthcare providers, and critical infrastructure entities across North America and Europe. The Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), Department of Health and Human Services (HHS), and the Multi-State Information Sharing and Analysis Center (MS-ISAC) released the alert Tuesday as part of the #StopRansomware initiative. The agencies emphasized Interlock’s rapid evolution and its focus on high-impact sectors, particularly healthcare.

According to the advisory, Interlock emerged in September 2024 and has since launched financially motivated ransomware campaigns. The group employs a double-extortion model that involves both encrypting the victim’s system and stealing data, threatening to publish the stolen ...