The cyberinfrastructure at hospitals across England has come under a massive cyber attack locking out the staff from their computers and diverting emergency patients. According to The Guardian, National Health Service (NHS) hospitals in the country have been hit with an attack displaying popups on the system demanding ransom money.
Doctors have taken the issue on Twitter posting screenshots of their systems showing a ransom note demanding a $300 worth of bitcoin. According to the note:
- Your important files are encrypted. Many of your documents, photos, videos, database and other files are no longer accessible because they have been encrypted. Maybe you are busy looking for a way to recover your files but do not waste your time. Nobody can recover your file without our decryption service.”
The note also shows that the system has been infected with WannaCry ransomware decryptor Virus, a dangerous cryptovirus spotted by security researchers a couple of months ago. It is unclear how this virus got into the hospitals’ systems; quite possibly it is as a result of someone falling foul of a phishing scam and may have executed a file infected whatever came its way.
Currently, the affected hospitals include Barts Health in London, East, and North Hertfordshire NHS Trust, Blackpool teaching hospital NHS foundation trust and Essex Partnership University NHS trusts.
We are aware of a major IT secure system attack. All IT systems have been temporarily shut down. More information will be available shortly
— DCHS NHS FT (@DCHStrust) May 12, 2017
We apologise but we are having issues with our computer systems. Please don’t attend A&E unless it’s an emergency. Thanks for your patience
— Blackpool Hospitals (@BlackpoolHosp) May 12, 2017
A screenshot of an instant message conversation circulated by one doctor says: “So our hospital is down … We got a message saying your computers are now under their control and pay a certain amount of money. And now everything is gone.”
Why would you cyber attack a hospital and hold it for ransom? The state of the world ? pic.twitter.com/e6h6yNrBBB
— If.ra (@asystoly) May 12, 2017
“Immediately on the discovery of the problem, the trust acted to protect its IT systems by shutting them down; it also meant that the trust’s telephone system is not able to accept incoming calls.
“The trust is postponing all non-urgent activity for today and is asking people not to come to A&E.”
Someone as hacked into the computer network at Royal Blackburn Hospital!! Can’t give out prescriptions to anyone!!!!
— Chris Lofthouse (@lofty316) May 12, 2017
An NHS source told the Evening Standard the attack “seems to be growing” with more incidents of hospitals across Britain facing IT problems being reported.
NW hospital computer systems under cyber attack 4 ransom… Sitting in front of a blank screen & can’t do any work. Criminal Poor patients?
— Tim Dawson ?? (@doctpd) May 12, 2017
“At approximately 12:30 pm we experienced a problem with our email servers crashing. Following this a lot of our clinical systems and patient systems were reported to have gone down,” an NHS IT worker said in a message to a Guardian reporter.
“A bitcoin pop-up message had been introduced onto the network asking users to pay $300 to be able to access their PCs. You cannot get past this screen.
“This followed an internal major incident being declared and advised all staff to shut down all PCs in the trust and await further instructions.”
This is not the first time when a healthcare system has come under a ransomware attack. In fact, the healthcare industry is being regularly targeted by cybercriminals all over the world. Last year, Hollywood HealthCare Facility had its system compromised and to unlock the system hackers demanded $3.6M (9000 BTC) as ransom.