Friday, September 18, 2020

A death from a ransomware attack

If you're looking for my pandemic posts, go here.

Kevin Perry today forwarded me this article that tells how a patient died due to a ransomware attack on a major hospital in Dusseldorf. Because 30 servers at the hospital had been encrypted in the attack, a woman who needed urgent admission couldn’t be admitted, and she died on her way to another hospital.

Ironically, it seems the attackers thought they’d attacked the university with which the hospital is affiliated. When the contact listed on the extortion note was told that they’d actually attacked a hospital, they immediately provided the encryption key. But it was too late for the woman.

 

Any opinions expressed in this blog post are strictly mine and are not necessarily shared by any of the clients of Tom Alrich LLC. If you would like to comment on what you have read here, I would love to hear from you. Please email me at tom@tomalrich.com.

Are you wondering if you’ve forgotten something for the 10/1 deadline for CIP-013 compliance? This post describes three important tasks you need to make sure you address. I’ll be glad to discuss this with you as well – just email me and we’ll set up a time to talk.

No comments:

Post a Comment