Ransomware Attack Hits Romanian Healthcare Facilities
Over a hundred healthcare facilities in Romania have experienced a devastating ransomware attack, causing disruptions to critical operations and compromising patient care. The attack targeted a widely used medical information system, rendering computer systems inaccessible and forcing doctors and staff to resort to pen and paper. Romanian cyber officials have responded quickly, reporting that recent data backups have helped mitigate the impact of the attack. The Ministry of Health is working with IT specialists and cyber security experts to investigate the incident and identify the perpetrators.
Ransomware Attack Forces Hospitals Offline
The initial target of the attack was the Pitesti Paediatric Hospital, followed by 25 other hospitals. Children’s and emergency facilities were among those affected, with additional medical centers choosing to go offline as a precautionary measure. As investigations continue, 79 more healthcare facilities have taken their systems offline to determine if they have been compromised. The cyber extortionists behind the attack have demanded a ransom of 3.5 Bitcoin (over £130,000) to unlock the encrypted files.
Impact on Patients and Similar Incidents
Hospitals with recent data backups are expected to recover relatively quickly, but patients may face significant repercussions. Some hospitals have disconnected internet-connected devices as a precaution, potentially affecting booking, record-keeping, and essential medical equipment like MRI scanners. This incident recalls a similar ransomware attack in the United Kingdom in 2017 when numerous hospital trusts were disrupted, leading to appointment cancellations and rescheduling.
Frequency of Ransomware Attacks
Ransomware attacks demanding Bitcoin payments are not uncommon. In September, the UK’s National Cyber Security Centre (NCSC) and National Crime Agency (NCA) published a report highlighting the increasing frequency of such attacks. The NHS also faced a major ransomware threat in 2017 with the “WannaCry” attack. Although the malware used in the Romanian attack has been identified, the responsible group remains unknown. The ransom demand only includes an email address, providing limited leads for authorities to pursue.
The Need for Robust Cybersecurity Measures
A report by Immunefi revealed that the top ten ransom payments globally amounted to nearly $70 million in Bitcoin. Russian hacking collectives were found to be primarily responsible for deploying such malware. However, no entity has claimed credit for the ransomware attack on Romanian hospitals. This incident serves as a reminder of the constant threat posed by cybercriminals and emphasizes the critical importance of strong cybersecurity measures to protect sensitive information and vital infrastructure.
By
By
By