British NHS Hospital Trust Under Cyber Attack

Uploaded on 2017-01-27 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-Health & Welfare

The largest NHS hospital trust in England has been infected with a virus affecting thousands of sensitive files.

A message sent to staff at Barts Health Trust recently warns that the Trust’s four hospitals are experiencing a “ransomware virus attack.” The victims of blackmail ransomware usually receive phishing messages in an attempt to elicit money in order to restore access to the computer system.

The Trust said it was making “every effort” to avoid disruption to patients treated at its four hospitals in east London: The Royal London, St Bartholomew’s, Whipps Cross and Newham.

A source at the trust told Health Service Journal that the attack had affected thousands of files on the trust’s Windows XP operating system, and the trust’s file sharing system between departments has been turned off while an investigation takes place.

A Trust spokesman said: “We are urgently investigating this matter and have taken a number of drives offline as a precautionary measure. We have tried and tested contingency plans in place and are making every effort to ensure that patient care will not be affected.”

The incident follows Northern Lincolnshire and Goole Foundation trust being hit by a ransomware attack in October, from a virus which made files inaccessible.

At the Lincolnshire trust the attack began as a result of phishing emails, which contain malicious website links or attachments that release a virus once activated.

The trust did not pay any ransom as a result of the attack but it did have to cancel 2,800 patient appointments during 48 hours when it shut down systems.

In October,  the Government warned that the NHS was at risk of cyber-attacks,  saying that hacking is "no longer the stuff of spy thrillers and action movies" but a clear and present threat.

Ben Gummer, a Health minister, said "large quantities of sensitive data" held by the NHS and the Government is being targeted by hackers. He warned that cyber attackers, including those working for foreign states, could try to "disrupt" Britain's energy, water and transport networks.

Telegraph:              Healthcare Data Breaches In 2017 Will Get Worse:

 

« Defence Research Agency To Create Secure Data-Sharing Tech
UK Bank Fraud Landmark: TSB Repays Victim & Admits Giving Criminals Bank Accounts »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

A-SIT Secure Information Technology Center

A-SIT Secure Information Technology Center

A-SIT was founded in 1999 as a registered nonprofit association and is established as a competence center for IT-Security.

Kount

Kount

Kount's “decision engine” platform is ideal for managing fraud in online/telephone channels that process payments and onboard new customers.

ComCode

ComCode

ComCode provides consulting services and solutions in the area of digitization and cyber security for mid-sized and big businesses.

Riskified

Riskified

Riskified is a leading eCommerce fraud-prevention company, trusted by hundreds of global brands – from luxury fashion houses and retail chains, to gift card and ticket marketplaces.

DTS Solution

DTS Solution

DTS Solution delivers advanced cyber security solutions through is technology partnerships with industry leading security vendors and advanced consulting services.

TrainACE

TrainACE

TrainACE, is a professional computer training school offering courses in information technology with a focus on Advanced Security training.

42Gears

42Gears

42Gears is a leading Unified Endpoint Management provider. Secure, monitor and manage tablets, phones, desktops and wearables.

GoCyber

GoCyber

GoCyber is a new, highly innovative cyber security training app that uses action based learning to significantly improve the online behaviour of all employees in less than a month.

Global Cybersecurity Forum (GCF)

Global Cybersecurity Forum (GCF)

Global Cybersecurity Forum is a catalyst platform designed to create a more resilient and better cyberworld for all.

Sovereign Intelligence

Sovereign Intelligence

Sovereign Intelligence provides automated insight into the relative intensity of hidden Cyber, Brand, and Financial Risks to your company.

Diaplous Group

Diaplous Group

Diaplous Group is a leading Maritime Risk Management (MRM) provider, delivering specialized services to an ever-broadening portfolio of shipping, oil & gas, energy and construction industries.

PSafe

PSafe

PSafe is a leading provider of mobile privacy, security, and performance apps. We deliver innovative products that protect your freedom to safely connect, share, play, express and explore online.

Tide Foundation

Tide Foundation

Tide's breakthrough multi-party-cryptography enables TRUE-zero-trust technology that unlocks cyber-herd immunity.

Data#3 Limited (DTL)

Data#3 Limited (DTL)

Data#3 Limited (DTL) is a leading Australian IT services and solutions provider.

RB42

RB42

RB42 (formerly Nexa Technologies) provide cyber defense solutions and cyber defense consultancy service.

Gogolook

Gogolook

Gogolook is a leading TrustTech company. With "Build for Trust" as its core value, it aims to create an AI- and data-driven global anti-fraud network as well as Risk Management as a Service.