Hospitals must be prepared for ransomware attacks

hospital
Credit: CC0 Public Domain

Hospitals need to be prepared for ransomware attacks, warns a doctor in The BMJ today.

Dr Krishna Chinthapalli, a neurology registrar at the National Hospital for Neurology and Neurosurgery in London, describes how a virus - or "" - infected and locked computers at the Hollywood Presbyterian Medical Center in Los Angeles hospital in February 2016.

Rumours surfaced that the hospital was being held to ransom for $3.4m (£2.6m; €3.1m), though the hospital denied this. After 10 days the hospital paid a smaller ransom of about $17,000 to regain use of its computers.

Hollywood Presbyterian was the first to admit paying a ransom, writes Chinthapalli, but other US hospitals, in California, Indiana, Kentucky, Maryland, and Texas, were targeted in 2016.

He points out that the number of ransomware attacks rose fourfold from 2015 to 2016, and so did the amount of money paid to hackers, to $1bn, according to the FBI.

In the UK, a third of NHS trusts have reported a ransomware attack, he adds.

Chinthapalli argues that hospitals are ideal targets for ransomware companies. For instance, many use proprietary software that runs on ancient operating systems - and hold confidential patient information that can be sold to other criminals. As such, hospitals are probably more willing than other organisations to pay for quick recovery of their data.

So what can hospitals and their workers do, he asks?

Digital hygiene - that is, keeping hardware and software as secure as possible - is essential, while frequent backups are also important. And when do occur, the IT department must be informed quickly to isolate infected computers, he says.

"We should be prepared: more hospitals will almost certainly be shut down by ransomware this year," he concludes.


Explore further

FBI probing virus behind outage at MedStar Health facilities

More information: The hackers holding hospitals to ransom, The BMJ www.bmj.com/content/356/bmj.j2214
Citation: Hospitals must be prepared for ransomware attacks (2017, May 10) retrieved 21 October 2019 from https://medicalxpress.com/news/2017-05-hospitals-ransomware.html
This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no part may be reproduced without the written permission. The content is provided for information purposes only.
4 shares

Feedback to editors

User comments

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more