Hospitals Close Doors Due to Ransomware Attacks
ANOTHER DAY ANOTHER RANSOMWARE ATTACK
Reports this week have announced that computers at the DCH medical centres have been infected with ransomware. Three hospitals that make up the group in Alabama were closed to new patients as the attack paralysed the health network’s computer system.
DCH released a quote:
“The cyber incident, which was uncovered on Monday, has blocked access to several systems by the infiltration of ransomware, including financial management,” according to a Tuesday release by the Department of Premier and Cabinet. “A number of servers across the state have been impacted. Investigations are still taking place on the full extent of the impact. At this time, there is no suggestion that personal patient information has been accessed.”
“Our hospitals have implemented our emergency procedures to ensure safe and efficient operations in the event technology dependent on computers is not available,” according to the release. “That said, we feel it is in the best interest of patient safety that DCH Regional Medical Center, Northport Medical Center and Fayette Medical Center are closed to all but the most critical new patients. Our staff is caring for the patients who are currently in the hospital, and we have no plans to transfer current patients.”
Details of the specific ransomware have not yet been released. However, it rings similar to the WannaCry ransom cryptoworm over two years ago, where we saw over 200,000 infections worldwide.
AVR’s Security Consultant, Alistair Russell, speculates that “The breach could have happened in several ways but it highlights that the traditional approach of detecting threats and attacks by the assumption that they are signature or file-based is outdated. With the recent rise of Next-Gen AV companies can easily detect, protect and remediate from diverse modes of attacks with confidence.”
In another report on Monday, 7 Australian hospitals were also under attack, major hospitals were locked down for more than 24 hours after a ransomware attack shut booking systems and delayed surgeries.
“The cyber incident, which was uncovered on Monday, has blocked access to several systems by the infiltration of ransomware, including financial management,” says Victoria’s Department of Premier and Cabinet. “At this time, there is no suggestion that personal patient information has been accessed.” See full statement here
This problem isn’t going away and we see more frequent and larger attacks. If you’re not arming your business with the correct Cyber Security tools then it could be you next.
Rob comes with over 25 years’ experience of working with start-ups in the cyber security space, having held leadership and business development roles in his fruitful career. He brings a combination of technical and business aptitude to resolving customer challenges.
A recent BBC report highlights the importance of defending mobile devices that can access corporate data from not just obviously rogue apps (e.g. blocking sideloading) but also seemingly ‘good’ apps that may contain recycled code.