The hackers behind the Waikato District Health Board (DHB) attack last week have sent key data from the organisation's systems to media outlets while the organisation continues to try and repair its IT systems.
"We are aware that the media have received what appears to be personal and patient information from Waikato DHB information systems. Media outlets have confirmed they will not make this information public and have referred it to the police," the Waikato DHB said in a statement.
The organisation is working closely with the National Cyber Security Centre, Government Communications Security Bureau, The Privacy Commission and the NZ Police to "respond, remediate and recover from this incident".
Kevin Snee, the Waikato DHB chief executive, added that the situation would not be resolved quickly.
"Our staff are pulling together as a team and working collaboratively with our partners to restore services, but disruptions are to be expected as workarounds are put in place," he said.
Full manual processes have been implemented across the DHB and work continues to determine how best to support the backlog of patients whose care has been deferred. Patients are being asked to bring their appointment letter and any other information from their GP as the DHB still doesn't have access to its clinic booking information.
RELATED RESOURCE
Furthermore, the DHB is working with cancer care providers to ensure patients receive appropriate and uninterrupted treatment, and develop a process for recently referred patients and new referrals. As Australia and New Zealand have a long-standing arrangement to transfer patients for treatment, the DHB disclosed that sending patients to Australia will be a last resort.
"This is a criminal investigation and we have every confidence that it is being dealt with by NZ Police and cyber security experts. Care and safety of patients remains our highest priority, and we must concentrate on health services and supporting our staff to do their job," Snee said.
The cyber attack brought down the Waikato DHB's complete IT network last week which resulted in some appointments being cancelled. Staff were working to restore the infected systems and had the theory that the initial incursion was made via an email attachment.
The DHB confirmed it had received communication from the supposed hackers and was still determining the nature of the attack.
-
What does modern security success look like for financial services?Sponsored As financial institutions grapple with evolving cyber threats, intensifying regulations, and the limitations of ageing IT infrastructure, the need for a resilient and forward-thinking security strategy has never been greater
-
Yes, legal AI. But what can you actually do with it? Let’s take a look…Sponsored Legal AI is a knowledge multiplier that can accelerate research, sharpen insights, and organize information, provided legal teams have confidence in its transparent and auditable application
-
Volkswagen confirms security ‘incident’ amid ransomware breach claimsNews Volkswagen has confirmed a security "incident" has occurred, but insists no IT systems have been compromised.
-
The number of ransomware groups rockets as new, smaller players emergeNews The good news is that the number of victims remains steady
-
Teens arrested over nursery chain Kido hacknews The ransom attack caused widespread shock when the hackers published children's personal data
-
NCA confirms arrest after airport cyber disruptionNews Disruption is easing across Europe following the ransomware incident
-
Cyber professionals are losing sleep over late night attacksNews Hackers are biding their time and launching attacks when businesses can’t respond
-
Prolific ransomware operator added to Europe’s Most Wanted list as US dangles $10 million rewardNews The US Department of Justice is offering a reward of up to $10 million for information leading to the arrest of Volodymyr Viktorovych Tymoshchuk, an alleged ransomware criminal.
-
Jaguar Land Rover “did the right thing” shutting down systems to thwart cyber attackNews The attack on Jaguar Land Rover highlights the growing attractiveness of the automotive sector
-
Ransomware attack on IT supplier disrupts hundreds of Swedish municipalitiesNews The attack on IT systems supplier Miljödata has impacted public sector services across the country
