Ransomware Attack On 16 NHS Hospitals

Xiphos

Well-Known Member
Joined
17 Feb 2017
Messages
1,555
Criminal hackers have hacked into 16 hospitals computers in a cyber attack and are demanding £415,000 not to wipe their files, hospitals in chaos
When they catch them jail them and throw the keys away, c****
 
What does ransomware note say?

It tells staff that important files are encrypted and are no longer accessible.

The message tells users not to waste their time and to use the decryption service immediately by paying $300 worth of Bitcoin within three days.

They are warned that this price will double afterwards, and their files will be deleted forever if no ransom is paid within a week.

 
What is Wanna Decryptor?

This is the malicious software that appears to be affecting NHS IT systems.

It encrypts files on computers, blocks them from view and threatens to delete them unless a payment is made.

The virus is usually covertly installed on to computers by being hidden within innocent-looking emails containing links.

Ransoms are typically demanded via Bitcoin, as these transactions are usually harder to trace.

It is possible to remove ransomware such as Wanna Decryptor without payment by using advanced anti-malware software.

The malware can also be removed manually with a computer in "safe mode", however security experts warn this runs the risk of damage to a PC as users must go through sensitive system files in order to find and isolate files created by the Wanna Decryptor software.
 
Well it will be a staff member going on a dodgy infected page or similar. Utorrent has has a nasty ad trying to install viruses the last 24hrs, it would not surprise me if someone had utorrent running on an nhs network linked machine with bad anti virus or even non.
 
What does ransomware note say?

It tells staff that important files are encrypted and are no longer accessible.

The message tells users not to waste their time and to use the decryption service immediately by paying $300 worth of Bitcoin within three days.

They are warned that this price will double afterwards, and their files will be deleted forever if no ransom is paid within a week.

Scum of the earth messing with patients lives
 
Those responsible are sick, and will be doing it for money. But from a professional point of view (working in Information Security) it's incredibly easy to prevent, lax controls and legacy systems is probably the root cause but surely any clinical systems should have relevant controls in place to stop this happening. Hopefully those affected have a recent backup to restore systems to with minimal or no loss of service
 

Don't have an account? Register now and see fewer ads!

SIGN UP
Back
Top
  AdBlock Detected
Bluemoon relies on advertising to pay our hosting fees. Please support the site by disabling your ad blocking software to help keep the forum sustainable. Thanks.