Israeli hospital targeted by ransomware attack

• Author: TZVI JOFFRE
• Published date: 13 October 2021
• Publication title: Jerusalem Post, The: Web Edition Articles (Israel)

Since the attack, which occurred without any prior warning, the hospital has been using alternate systems while treating patients, and has been writing patients' information down by hand. The hospital is operating as normal, except for elective, nonurgent operations. All critical equipment is working as it should, including CT and MRI scanners.

In the meantime, Laniado Medical Center in Netanya is prepared to accept patients who cannot be treated at Hillel Yaffe due to the cyberattack. Hillel Yaffe has asked Magen David Adom and the Health Ministry to bring patients who don't need urgent care to other hospitals.

The incident has been reported to the ministry and National Cyber Directorate and is being handled by the best experts in the field, according to the hospital. The ministry has updated other hospitals about the incident as a preventive measure.

The attack was perpetrated by a new group of hackers that is also responsible for an attack on a hospital in the US, The Jerusalem Post's sister publication Maariv reported.

Health Ministry Director-General Prof. Nachman Ash asked hospitals and HMOs to practice maximum alertness amid concerns that there could be further attacks on additional hospitals or clinics, according to N12. Ash also asked that hospitals and HMOs ensure that they have backups that can be used to ensure the continuity of treatment if further attacks take place.

Amit Spitzer, chief information security officer at Cato Networks, stated that the incident "raises questions about the fate of the personal medical information of many patients at the hospital."

Spitzer stressed that in similar cases, the ransom payment didn't help, and the information was eventually leaked or deleted permanently.

"The prevailing assumption is that the attack was carried out by a hostile party who wants to harm, and the ransom demand is here only ostensibly," said Spitzer.

"Ransomware attacks are no longer a localized problem of one organization or another, but a global scourge that indiscriminately hits critical infrastructure, medical institutes and many businesses around the world," said Yossi Rachman, director of security research at Cybereason, in response to the attack.

"When it comes to a targeted attack on hospitals, attackers know to expect a quick response from the attacked organization, due to delays in performing critical medical processes...