British NHS Hospital Trust Under Cyber Attack

Uploaded on 2017-01-27 in NEWS-News Analysis, FREE TO VIEW, BUSINESS-Services-Health & Welfare

The largest NHS hospital trust in England has been infected with a virus affecting thousands of sensitive files.

A message sent to staff at Barts Health Trust recently warns that the Trust’s four hospitals are experiencing a “ransomware virus attack.” The victims of blackmail ransomware usually receive phishing messages in an attempt to elicit money in order to restore access to the computer system.

The Trust said it was making “every effort” to avoid disruption to patients treated at its four hospitals in east London: The Royal London, St Bartholomew’s, Whipps Cross and Newham.

A source at the trust told Health Service Journal that the attack had affected thousands of files on the trust’s Windows XP operating system, and the trust’s file sharing system between departments has been turned off while an investigation takes place.

A Trust spokesman said: “We are urgently investigating this matter and have taken a number of drives offline as a precautionary measure. We have tried and tested contingency plans in place and are making every effort to ensure that patient care will not be affected.”

The incident follows Northern Lincolnshire and Goole Foundation trust being hit by a ransomware attack in October, from a virus which made files inaccessible.

At the Lincolnshire trust the attack began as a result of phishing emails, which contain malicious website links or attachments that release a virus once activated.

The trust did not pay any ransom as a result of the attack but it did have to cancel 2,800 patient appointments during 48 hours when it shut down systems.

In October,  the Government warned that the NHS was at risk of cyber-attacks,  saying that hacking is "no longer the stuff of spy thrillers and action movies" but a clear and present threat.

Ben Gummer, a Health minister, said "large quantities of sensitive data" held by the NHS and the Government is being targeted by hackers. He warned that cyber attackers, including those working for foreign states, could try to "disrupt" Britain's energy, water and transport networks.

Telegraph:              Healthcare Data Breaches In 2017 Will Get Worse:

 

« Defence Research Agency To Create Secure Data-Sharing Tech
UK Bank Fraud Landmark: TSB Repays Victim & Admits Giving Criminals Bank Accounts »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Clayden Law

Clayden Law

Clayden Law are experts in information technology, data privacy and cybersecurity law.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Bob's Business

Bob's Business

Bob's Business adopts a fresh approach to information security awareness and compliance training, delivering key information through the use of short animated movies.

Packet Ninjas

Packet Ninjas

Packet Ninjas is a niche cyber security agency with specialized expertise in the use of digital intelligence to strengthen cyber security.

Pradeo

Pradeo

Pradeo Security offers a complete, automatic and seamless protection to mobile devices and applications, aligned with your organization security policy while preserving business agility.

SailPoint

SailPoint

SailPoint provides identity governance solutions with on-premises and cloud-based identity management software for the most complex challenges.

DirectDefense

DirectDefense

DirectDefense is an information security services and managed services provider.

Magix Security

Magix Security

Magix Security assesses the cyber threat, gives you visibility of how vulnerable your business is to attack, and provides cybercrime detection and prevention services.

Atonomi

Atonomi

Atonomi provides IoT developers and manufacturers with an embedded solution to secure devices with blockchain-based immutable identity and reputation tracking.

Parameter Security

Parameter Security

Parameter Security is a provider of ethical hacking and information security services.

VeriClouds

VeriClouds

VeriClouds is a password verification service that helps organizations detect compromised passwords and stop account takeover attacks.

Netpoleon Group

Netpoleon Group

Netpoleon is a leading provider of integrated security, networking solutions and value added services.

Resolvo Systems

Resolvo Systems

Resolvo is provides comprehensive security assessment and testing services in Asia.

Araali Networks

Araali Networks

Araali is a proactive risk mitigation solution for cloud workloads. With Araali, you can enforce explicit policies for "who can do what" in your virtual private cloud.

Encova Insurance

Encova Insurance

Encova’s cyber liability coverage protects you and your customers in case of a security breach in your company's data.

NXM Labs

NXM Labs

NXM is a leader in a leader in advanced cybersecurity software for connected devices.

Appdetex

Appdetex

Appdetex is a global leader in securing your brand’s digital footprint. We are a full-service brand protection company in the online and mobile brand protection space.

Banyax

Banyax

Banyax provides 24×7 real-time Cyber Defense Center Services using the latest technology tools to provide state-of-the-art defense.