Ireland’s Health Service Won't Pay Ransom

Ireland's Health Service Executive (HSE) has ruled-out giving in to hackers' ransom demands as the country's healthcare and social services continue to deal with the disruption caused by a significant cyber attack that began last. "Following an initial assessment we know this is a variant of the Conti virus that our security providers had not seen before. A ransom has been sought and won't be paid in line with state policy," the HSE said.

“Work continued today in assessing the impact and beginning to restore HSE IT systems following the criminal ransomware attack... There are serious concerns about the implications for patient care arising from the very limited access to diagnostics, lab services and historical patient records.   

The attack on the HSE uses Conti, a type of ransomware that first emerged this time last year. It's human-operated and appears to have been developed by a cyber crime group based in Eastern Europe called Wizard Spider. Having infiltrated the target network through phishing emails, a firewall vulnerability, or by gaining remote access to a desktop, the attackers gain admin rights and then map the system.

IT systems across the health service remain temporarily shut down for security reasons, and the HSE is working with the Irish National Cyber Security Centre, and with national and international experts including McAfee, to rectify this issue. “Our priority is keeping our patients safe and maintaining essential care and support services.

"The shutdown of our systems is having an impact on some health services and this disruption is very likely to go well into this week” says the HSE.

HSE:       RTE:       ZDNet:      

You Might Also Read:

Healthcare Is The Prize Target For Cyber Criminals:

« Bitcoin Is Bad For The Environment
Russian Hackers Have Updated Their Techniques »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

XenArmor

XenArmor

XenArmor products include NetCertScanner, an enterprise software to scan & manage expired SSL Certificates on your local network or internet.

Phoenix Contact Cyber Security

Phoenix Contact Cyber Security

Phoenix Contact Cyber Security is a leading manufacturer of network security appliances for use in industrial environments.

Center for Identity - University of Texas at Austin

Center for Identity - University of Texas at Austin

The mission of the Center is to deliver the highest-quality discoveries, applications, education, and outreach for excellence in identity management, privacy, and security.

Slovak Security Policy Institute (SSPI)

Slovak Security Policy Institute (SSPI)

Slovak Security Policy Institute is an independent non-governmental organization that focuses on research and analysis of security challenges including defence and cyber security.

Think Cyber Security (ThinkCyber)

Think Cyber Security (ThinkCyber)

ThinkCyber is a Tel Aviv-based Israeli company with a team of cybersecurity professionals who are experts in both information and operations technology.

AKATI Sekurity

AKATI Sekurity

AKATI Sekurity is a security-focused consulting firm providing services specializing in Information Security and Information Forensics.

Navarino

Navarino

Navarino is the maritime industry’s most advanced communications and connectivity company. We develop advanced technologies and innovative IT solutions including cyber security.

Cequence Security

Cequence Security

Cequence, a pioneer in API security and bot management, is the only solution that delivers Unified API Protection (UAP), uniting discovery, compliance, and protection.

certSIGN

certSIGN

certSIGN develop innovative software for information security and information systems protection.

Privakey

Privakey

Transaction Intent Verification. Privakey delivers a secure channel to streamline high risk transactions, enabling digital trust between services and their users.

Bolster

Bolster

Bolster (formerly RedMarlin) is an AI-based cyber-security platform designed to detect phishing and fraudulent sites in real-time.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Valency Networks

Valency Networks

Valency Networks provide cutting edge results in the areas of Vulnerability Assessment and Penetration Testing services for webapps, cloud apps, mobile apps and IT networks.

Darktrace

Darktrace

Darktrace is a global leader in cybersecurity AI, delivering complete AI-powered solutions in its mission to free the world of cyber disruption.

iomart Group

iomart Group

iomart is a cloud computing and IT managed services business providing secure hybrid cloud, network connectivity, data management, and digital workplace capability.

Cloudaeris

Cloudaeris

Cloudaeris is a trusted Microsoft Partner, and we've got what it takes to make your business more efficient and agile.