Breaking: UK NHS Hit by Ransomware Attack

Posted by Simon Bell on 12-May-2017

Hospitals in England are diverting patients because of an ongoing cyber attack (the guardian reports). With a number of hospitals hit by the "Simultaneous" attack, some are suspending emergency services and telling patients not to go to their A&E departments. 

C_n7v4BWsAAi8Sb.jpg

One twitter user posted a photo of an infected machine stating "Ooops, your files have been encrypted!" (Tweet)

 

NHS Statement

A statement released by the East and North Hertfordshire NHS trust said: "Today (Friday, 12 May 2017), the trust has experienced a major IT problem, believed to be caused by a cyber attack.

“Immediately on discovery of the problem, the trust acted to protect its IT systems by shutting them down; it also meant that the trust’s telephone system is not able to accept incoming calls.

“The trust is postponing all non-urgent activity for today and is asking people not to come to A&E - please ring NHS111 for urgent medical advice or 999 if it is a life-threatening emergency.

“To ensure that all back-up processes and procedures were put in place quickly, the trust declared a major internal incident to make sure that patients already in the trust’s hospitals continued to receive the care they need.”

 

Ransomware Has Evolved

Cylance, a leading artifical inteligence antivirus software explains: 

"Today’s ransomware campaigns are very different from what we have seen in the past. On the one hand, ransomware can be easily obtained and used successfully by criminals that have little to no hacking skills, often referred to as Ransomware as a Service (RaaS).

"On the other hand, we are seeing ransomware being used for much more than just ransoms. In some cases, we have seen it used as a diversion; first harvesting credentials for later use, and then encrypting the drive to keep IT staff occupied while the attacker covers their tracks and accomplishes even more nefarious objectives."

Continue Reading....

 

Analysis

Although very little is known about the current attack on the NHS IT infrastructure, it is evident that procedures were in place to protect their systems. Shutting down computers and network connections to protect their digital assets. 

As reports of this cyber attack in the NHS network come through, other hospitals may have to take their own preventative measures until the threat has subsided. 

For more information about Ransomware, see this infographic '10 things you need to know about randsomware.'

 

The incident is ongoing, for updates please check your local news organisation. 

Recent Posts

Posts by Topic

see all

Securing The Future

Cyber Insights

Stay up to date on the latest developments in cybersecurity with the Cognosec blog. 

Remember:

  • We help organizations reduce cyber risks and become resilient to attacks by assessing their processes, procedures and systems for non-compliance and vulnerabilities. 

  • We assess, design, implement and manage solutions that protect critical IT infrastructure and data assets.

  • We are a NASDAQ-listed, agile EMEA company operating across the public and private sectors.

Subscribe to Cognosec News

Need /help/

Cognosec provides integrated and evolutive solutions for big and small Businesses

Subscribe Now

Sign up to receive the latest security news and trends from Cognosec.

Click Here