Monday, March 07, 2016

DATA SECURITY - Ransom of LA Hospital

"Ransomware attack takes down LA hospital for hours" PBS NewsHour 2/29/2016

This highlights the need to use good Anti-Virus utility AND do an image backup your entire system AFTER running a virus scan (the only backup you can use to recover your entire system).  I do my backup monthly using O&O DiskImage to an External USB drive that I disconnect after backup.


SUMMARY:  One of the greatest threats to private cybersecurity today is ransomware -- a cyberattack that blocks access to a computer until the hacker is paid a ransom.  The problem recently took on new urgency when a hospital in Los Angeles had its entire network shut down for hours, putting hundreds at risk; another high-profile breach hit L.A.’s health department last week.  William Brangham reports.

GWEN IFILL (NewsHour):  But, first, a look at what’s become the latest threat to our cyber-security.

The problem took on new urgency recently when a hospital in Los Angeles had its entire computer network, including all its digital medical records, locked up by hackers.  They demanded a ransom before they’d release the computers.  It was the second such attack this month.  L.A.’s Health Department was hit last week.

These types of computer attacks, which usually target individual computer users, are on the rise.

The “NewsHour's” William Brangham reported on this threat last year, and now he brings us an update.

WILLIAM BRANGHAM (NewsHour):  Inna Simone is retired.  She’s a mother and grandmother from Russia who now lives outside of Boston.  In the fall of 2014, her home computer started acting strangely.

INNA SIMONE, Retiree:  My computer was working terribly.  It was not working.  I mean, it was so slow.

WILLIAM BRANGHAM:  A few days later, while searching through her computer files, Inna saw dozens of these messages — they were all the same.  They read: “Your files are encrypted.  To get the key to decrypt them, you have to pay $500.”

Her exact deadline, December 2 at 12:48 p.m., was just a few days away.

All her files were locked , tax returns, financial papers, letters, even the precious photos of her granddaughter Zoe.  Inna couldn’t open any of them.

INNA SIMONE:  It says, “If you won’t pay, your fine will double.  If you won’t pay by then, all your files will be deleted and you will lose them forever and never will get back.”

WILLIAM BRANGHAM:  Inna Simone, like thousands of others, had been victimized by what’s known as a ransomware attack.  Hackers — who law enforcement believe come mainly from Eastern Europe or Russia — manage to implant malicious software onto your computer, usually when you mistakenly open an infected e-mail attachment, or visit a compromised Web site.

That software then allows the hackers to lock up your files, or your entire computer, until you pay them a ransom to give it back.

Justin Cappos is a computer security expert at New York University.

JUSTIN CAPPOS, New York University:  It will actually lock you out of the files, the data on your computer.

So, you’d be able to use the computer but those files have been encrypted by the attacker with a key that only they possess.  It’s frustrating because you know the data is there.  You know the files are there.  You know your photos and everything is there and could be accessible to you.  But you have no way of being able to get at it because of this encryption that the attackers are using.

WILLIAM BRANGHAM:  This is exactly what happened at Hollywood Presbyterian Hospital in Los Angeles.  According to officials, about a month ago, their computerized medical records were locked up by one of these malicious programs, and a hacker demanded $17,000 in ransom to unlock them.

During this time, medical staff were forced to use paper and pen for their record-keeping, but they say no patient files were compromised.  The hospital decided to pay the ransom.  Their computers were unlocked, and the FBI is now investigating.

No comments: