New Zealand health service hackers send stolen data to press
Local media have confirmed they won’t make the information public and have referred it to the police
The hackers behind the Waikato District Health Board (DHB) attack last week have sent key data from the organisation's systems to media outlets while the organisation continues to try and repair its IT systems.
"We are aware that the media have received what appears to be personal and patient information from Waikato DHB information systems. Media outlets have confirmed they will not make this information public and have referred it to the police," the Waikato DHB said in a statement.
The organisation is working closely with the National Cyber Security Centre, Government Communications Security Bureau, The Privacy Commission and the NZ Police to "respond, remediate and recover from this incident".
Kevin Snee, the Waikato DHB chief executive, added that the situation would not be resolved quickly.
"Our staff are pulling together as a team and working collaboratively with our partners to restore services, but disruptions are to be expected as workarounds are put in place," he said.
Full manual processes have been implemented across the DHB and work continues to determine how best to support the backlog of patients whose care has been deferred. Patients are being asked to bring their appointment letter and any other information from their GP as the DHB still doesn't have access to its clinic booking information.
RELATED RESOURCE
Furthermore, the DHB is working with cancer care providers to ensure patients receive appropriate and uninterrupted treatment, and develop a process for recently referred patients and new referrals. As Australia and New Zealand have a long-standing arrangement to transfer patients for treatment, the DHB disclosed that sending patients to Australia will be a last resort.
"This is a criminal investigation and we have every confidence that it is being dealt with by NZ Police and cyber security experts. Care and safety of patients remains our highest priority, and we must concentrate on health services and supporting our staff to do their job," Snee said.
The cyber attack brought down the Waikato DHB's complete IT network last week which resulted in some appointments being cancelled. Staff were working to restore the infected systems and had the theory that the initial incursion was made via an email attachment.
The DHB confirmed it had received communication from the supposed hackers and was still determining the nature of the attack.
-
Apple’s Siri overhaul is a ‘watershed moment’ in its long-awaited AI pushNews The revamped Siri AI could put to rest questions over its lackluster approach to AI, providing it nails the roll-out
-
AMD chief exec Lisa Su touts UK’s AI potential as firm eyes £2bn investmentNews The deal will see a new AI supercomputer built in Cambridge and partnerships with Imperial College London and Oriole Networks
-
Ransomware cartels are fragmenting into volatile splinter groups, warns Met Police cyber chiefNews Commoditized "cyber crime bazaars" and AI data mining are forcing law enforcement to rewrite its playbook
-
New ransomware threat group, The Gentlemen, has become one of the most active ransomware operators, accounting for 10% of all attacksNews NTT researchers warn that the RaaS group is leveraging SystemBC malware to establish covert tunnelling, evade detection, and support rapid lateral movement across enterprise environments
-
Instructure chose to a pay ransom following the Canvas cyber attack – research shows more than half of security leaders would follow suitAnalysis Opting to pay ransoms creates huge risks for enterprises – you’re relying on the word of criminals
-
Ransomware negotiator sentenced for role in major cyber crime groupNews Deniss Zolotarjovs was a key player in a group associated with Conti
-
Threat actors ditch ‘spray and pray’ attacks in shift to targeted exploitationNews A dip in ransomware volumes points to a more targeted approach focused on vulnerability exploitation
-
Security leaders overconfident about ransomware recovery
News Few manage to recover all their data, and many experience business disruption
-
German authorities want your help finding the hackers behind GandCrab and REvilNews Daniil Maksimovich Shchukin and Anatoly Sergeevitsch Kravchuk are believed to have made millions from ransomware as a service schemes
-
The rise of teen hackers ‘makes for a good headline’, but cyber crime activities peak later in life
News With family responsibilities and mortgages to pay, it's not teenagers dishing out malware or carrying out cyber extortion
