Hackers Demand $3.6 Million From Hollywood Hospital Following Cyber-Attack (softpedia.com)

← Back to Stories (view on slashdot.org)

Hackers Demand $3.6 Million From Hollywood Hospital Following Cyber-Attack (softpedia.com)

Posted by timothy on Monday February 15, 2016 @11:07AM from the little-things-like-that dept.

An anonymous reader writes: The Hollywood Presbyterian Medical Center has been hit by a cyber-attack and its systems are now being held hostage by hackers that are demanding a ransom of 9,000 Bitcoin, which is about $3.6 million (€3.2 million) in today's currency. Management has forbidden staff to turn on their computers, fearing the attack might spread, and the Radiation and Oncology departments have been completely shut down because they can't use their equipment." The staff were also forced to use fax machines rather than email, and to write down patient data on paper; patients had had to come in in person for results.

212 comments

Min score:

Reason:

Sort:

No need to upgrade systems by Anonymous Coward · 2016-02-15 11:16 · Score: 0, Interesting

because you can always blame the hackers for their inscrutable sophistication
1. Re: No need to upgrade systems by Anonymous Coward · 2016-02-16 02:55 · Score: 0
  
  Interesting, blame the user, not the attacker. Hope they involved the police. Hope they can find out who. And it would be nice if they prosecuted and did more then a handslap. Including the it that allowed it to happen.
2. Re: No need to upgrade systems by Zaowulf · 2016-02-16 03:57 · Score: 1
  
  Why not? Having worked in healthcare for over 10 years I can tell you the systems are astonishingly insecure and outdated. A couple years before I left the industry (2014) we "upgraded" to a "new" system from the late '80's to handle all of our patient billing.
3. Re: No need to upgrade systems by Anonymous Coward · 2016-02-17 19:02 · Score: 0
  
  I see what you mean. Its a situation that might be classified as "asking for it", depending on the details. I do understand it is a heist and that the perpetrators are the bad guys and I do hope they will get caught. Still the issue of neglect might be there. The payment of the ransom might also mean more neglect. That is if they just payed and will not invest in a real, continued, system security. Still it all depends on the details.
Restore from backup by hawguy · 2016-02-15 11:18 · Score: 4, Insightful

Isn't this what backups are for? Wipe the infected computers and restore from backup. A few days of lost data seems less disruptive than weeks of no computers at all.
1. Re:Restore from backup by Antique+Geekmeister · 2016-02-15 11:26 · Score: 4, Insightful
  
  If you get re-infected within moments by other infected machines, the backups don't help much. I've seen a partner infested this way, and it was horrible.
2. Re:Restore from backup by Antique+Geekmeister · 2016-02-15 11:30 · Score: 4, Insightful
  
  If you don't have the list of softwarekeys, or the licenses, to reinstall from scratch, and if you don't have the staff with the tools to re-image systems swiftly, rebuilding the systems from scratch is a herculean job and you *wiall* lose vital patient data. If you don't have the tools, the systems *will* get re-infected while you're reinstalling them. Been there, done that, it's why i never,run the basic backup systems on Windows.
3. Re:Restore from backup by Anonymous Coward · 2016-02-15 11:31 · Score: 3, Insightful
  
  Most likely ransomware (which can be very pervasive) and has spread to hospital equipment that was never secured or backed up, no-one thinks to backup data on a pain-pump or a smart-bed, all have software so theoretically can be infected or at least be a hiding place.
  Backups may not be enough, might have to do a full wipe of everything connected, while the patient files should be ok so much will be lost because no-one though it would happen. (assuming they have a good backup system, or have practiced an emergency data restore, from experience, managers look at you like your a fool when you mention you need to have a crisis data restore drill and training)
4. Re:Restore from backup by MrKrillls · 2016-02-15 11:43 · Score: 1
  
  Is it not possible to wipe a machine totally clean? And thus all the hospital's machines? Or just get new machines and trash all old storage?
  
  --
  Don't step on the baby.
5. Re:Restore from backup by Anonymous Coward · 2016-02-15 11:43 · Score: 0
  
  Unfortunately, these days, the infection can be in the BIOS/Firmware and restoring the OS and system/user data from backup has no effect.
6. Re:Restore from backup by hawguy · 2016-02-15 11:49 · Score: 1
  
  If you don't have the list of softwarekeys, or the licenses, to reinstall from scratch, and if you don't have the staff with the tools to re-image systems swiftly, rebuilding the systems from scratch is a herculean job and you *wiall* lose vital patient data. If you don't have the tools, the systems *will* get re-infected while you're reinstalling them. Been there, done that, it's why i never,run the basic backup systems on Windows.
  It's not really a backup if it can't be used to restore what needs to be restored. I should hope that a hospital is not relying on the backup backup systems of Windows. Data Protection Manager is a bear to set up and configure, but once it's running, they should be able to do bare metal restores without losing anything. The only thing more expensive than an enterprise backup system is not having backups when you need them.
  And even if they do lose vital patient data in the restore, they've *already* lost vital patient data because it's locked up with ransomware so it hardly sounds worse than the alternative of pissing around millions of dollars in ransom with no assurance that they'll get all (or even any) of their data back.
7. Re:Restore from backup by Nethemas+the+Great · 2016-02-15 11:57 · Score: 4, Interesting
  
  Hospital IT are far less organized and far less competent on average than you would expect given the nature of the business they're charged with safeguarding. The regulatory environment also disincentivizes timely patching of security vulnerabilities within devices under the stricter regulatory classes. That is to say--in a simplified nutshell--anything involved in the treatment and/or diagnosis of patients.
  
  --
  Two of my imaginary friends reproduced once ... with negative results.
8. Re:Restore from backup by Anonymous Coward · 2016-02-15 12:13 · Score: 0
  
  Having worked in hospital before I would say "far less competent" is giving them much more credit for their skills they have. But while all the vendors and hospital admin say you can not patch your system that is just not true. The FDA has been sending out memos for years saying that patching system is not only allowed but encouraged. I once had to get my CIO at a hospital on the phone withe the FDA official who told her patching was allowed and encouraged before she would allow me to patch anything. After about 6 month there I decided to go work in finance with much less stupidity and a 4X pay increase.
9. Re:Restore from backup by Anonymous Coward · 2016-02-15 12:14 · Score: 0
  
  By definition, a backup allows you to restore. If you cannot restore, then you have not made a backup, and the IT managers need to be fired for gross incompetence. (I don't say the low level workers because they probably objected to the bad decisions in the first place but were overruled). Especially when dealing with people's health records, there is NO excuse for the kind of incompetence that (1) lets hackers gain access to them, and (2) doesn't have a way to recover from that situation with no more than minimal data loss from the period since the last backup.
10. Re:Restore from backup by Anonymous Coward · 2016-02-15 12:14 · Score: 1
  
  Unfortunately, with some modern attacks, no.
  In many , but not all cases, the only option is to remove all hardware including network infrastructure, printers etc, and rebuild the entire site from scratch.
  This shit can be like laser printer toner - it gets into everything, at a firmware level, and can be virtually impossible to eradicate.
11. Re:Restore from backup by Antique+Geekmeister · 2016-02-15 12:21 · Score: 4, Insightful
  
  Yes. It is. Starting with a copy of "dban", downloaded on a Linux laptop in a local coffee house and applied to to our disks, or using a slimple live Debian or CentOS or even OpenBSD DVD image, can be a start. But getting anything _alive_ that can handle patient data, however, can be pretty iffy. Windows machines can be re-infected in the process of re-installatiion in an infested local environment. Dealing with several hundred such systems that handle doctor's schedules, patients care plans, or handle prescriptions and billing and correspondence and mortgages and health insurance records is an absolute nightmare.
  Can you burn your own home to the ground and rebuild from scratch? Certainly. Can you do this with a hospital without kill anyone who regularly scheduled kidney medicine, who is scheduled for surgery on Tuesday, or who needs immunization records or simply needs allergy records before transferring schools? That is a nightmare.
12. Re:Restore from backup by KGIII · 2016-02-15 12:25 · Score: 5, Insightful
  
  I lost data once and only once. Well, a significant amount of data. I've had crashes with not-yet-saved documents that took out trivial amounts but that doesn't even happen any more. You're not only correct, you're spot on.
  One other thing to add - without verifying your backup - you have no backup at all. That includes a restoration strategy, that's part of the verification process. That includes having the ability to put a fresh system up, while the system is down, and have it isolated to access tools for recovery (such as updated patches).
  My loss of data was infuriating and bizarre. I've been very anal about keeping backups ever since. To this day, even for my personal data, I keep regular updates at disparate locations and provision the same services for my friends. It's all fairly automated at this point but I still test the recovery often enough to know that I shouldn't ever lose any valuable data ever again.
  Hardware, software, and bandwidth are cheap. They're cheap enough to be considered ubiquitous and there's no excuse for me to not do this. It is not expensive and doesn't even require physically moving the data on a regular basis. With a little bit of initiative, you can even automate a good portion of it. (I've not really found a good way to do the verification completely automatically from within the OS. I've not yet found one that I can really be certain of so I do verifications on my own.)
  
  --
  "So long and thanks for all the fish."
13. Re:Restore from backup by silas_moeckel · 2016-02-15 12:47 · Score: 1
  
  Why in hell is a printer sitting on the end of an ethernet jack somewhere in any position to compromise anything?
  
  --
  No sir I dont like it.
14. Re:Restore from backup by sentiblue · 2016-02-15 13:02 · Score: 2
  
  Anything with some kind of operating instructions can be compromised and instructed to do things beyond its operations scope... so yes, a stupid printer can be used as a hacking tool.
  
  Now my opinion about the hackers: They should go steal shit from somewhere else like the bank where there's lots of money. Disrupting a hospital can lead to patient deaths... and when these hackers get caught, they should ALL get death sentences regardless if there has been any patient fatalities.
15. Re:Restore from backup by cranky_chemist · 2016-02-15 13:17 · Score: 4, Insightful
  
  ... when these hackers get caught, they should ALL get death sentences regardless if there has been any patient fatalities.
  This was an ill-conceived attack on the hackers' part.
  If any patient dies in connection with this attack, then it puts murder charges on the table. And the thing about murder is that there's no statute of limitations. Thus, these guys will be looking over their shoulders for the rest of their lives.
  All for MAYBE $3.6 million in Bitcoin.
16. Re:Restore from backup by rtb61 · 2016-02-15 13:59 · Score: 1
  
  It is real easy to clean and machine and get it going, it takes a little time but no problem as long as the bios is intact. The problem is the network must be shut down and all computers taken off. Then the servers are redone and once they are up and tested they go back on the network. Each computer is checked, rebuilt if neccesary and put on the network. Do it in hours, if you have the bodies to do it (one skilled person per computer device on the network), fewer people more hours, days or even weeks of downtime. This is a job for a consolidated FCC and FBI department (sort of a flying squad https://en.wikipedia.org/wiki/...) and as they carry out the repair, pulling some devices even servers permanently off the network as evidence, the build computer forensic information to pursue prosecution, regardless of where in the world the source of the attack was from (either the country pays that penalty or that country pursues the individuals themselves). Fuck with a hospital in that manner and you are in deep, real deep, there ain't no coming back from that ever, you become a lifer.
  
  --
  Chaos - everything, everywhere, everywhen
17. Re:Restore from backup by silas_moeckel · 2016-02-15 14:19 · Score: 1
  
  As I said why in hell is a printer in a position to be used as a jumping off board into anything? A printer needs to talk to a well defined set of hosts and only those hosts generally the print/scan servers and not much else.
  
  --
  No sir I dont like it.
18. Re:Restore from backup by Anonymous Coward · 2016-02-15 14:24 · Score: 0
  
  Isn't this what backups are for? Wipe the infected computers and restore from backup. A few days of lost data seems less disruptive than weeks of no computers at all.
  You also have to consider that its not just workstations that are infected. A server is often just as easily infected once the ransomware is in the domain.
  If this reaches the database, and ends up encrypting database files, you could very well be hooped. Its not easy restoring a database at a hospital, when all your backups are connected to the same system that is infected, and thus potentially vulnerable and/or infected already.
  Its also easy to underestimate the scope of remediation - an entire hospital network might consist of hundreds of workstations that may or may not have up to date or adequate backup systems. Most of the time, sys admins at hospitals have very little budget to do things properly, as the scope of applications they must maintain and the number of systems they must be maintained on is astronomical.
19. Re:Restore from backup by Ol+Olsoc · 2016-02-15 14:27 · Score: 1
  
  Most likely ransomware (which can be very pervasive) and has spread to hospital equipment that was never secured or backed up, no-one thinks to backup data on a pain-pump or a smart-bed, all have software so theoretically can be infected or at least be a hiding place.
  Freaky, Just yesterday, I wrote a Hypothetical bit about hackers Breaking and entering an Insulin pump and demanding bitcoin for not having it over-pump, send a person into insulin shock and kill the patient. While it was reviled then, little did I know my only error was in magnitude. I wrote of one person, here the bastards pulled their stunt on an entire hospital.
  I dunno - it seems like the exact reason the internet of things is a disaster waiting to happen. Oh wait... it has happened
  
  --
  The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
20. Re:Restore from backup by hawguy · 2016-02-15 14:55 · Score: 1
  
  Isn't this what backups are for? Wipe the infected computers and restore from backup. A few days of lost data seems less disruptive than weeks of no computers at all.
  You also have to consider that its not just workstations that are infected. A server is often just as easily infected once the ransomware is in the domain.
  If this reaches the database, and ends up encrypting database files, you could very well be hooped. Its not easy restoring a database at a hospital, when all your backups are connected to the same system that is infected, and thus potentially vulnerable and/or infected already.
  Why is restoring a database backup any harder at a hospital compared to any other site? I can restore my SqlServer and Oracle DB's to any point in time from 6 months ago to 6 seconds ago. I can also restore from up to 3 years back, but older backups are meant as point-in-time snapshots and aren't guaranteed to have transaction log chains to bring them up to the current date. Those backups are stored on a mix of on-prem storage (with NAS enforced snapshot that Malware can't touch unless it hacks the NAS), cloud based off-site storage (write-only), and off-site tape rotation.
  
  Its also easy to underestimate the scope of remediation - an entire hospital network might consist of hundreds of workstations that may or may not have up to date or adequate backup systems.
  
  They've already shut down their network, sounds like they have all the time they need.
  
  Most of the time, sys admins at hospitals have very little budget to do things properly, as the scope of applications they must maintain and the number of systems they must be maintained on is astronomical.
  Then the hospital administrators should be fired and/or fined for not protecting their data. Missing or corrupt data can cost lives so should be treated as such.
  Backups are easier today than ever and there's no excuse for not having them, if you don't want to build your own backup infrastructure then use a cloud service (and yes, with encryption and proper controls even PHI data can be backed up to the cloud under HIPAA)
21. Re:Restore from backup by Anonymous Coward · 2016-02-15 15:03 · Score: 0
  
  Please get off the Internet at the nearest exit.
  Thank you.
22. Re: Restore from backup by Anonymous Coward · 2016-02-15 15:20 · Score: 0
  
  The printer? That's what I fucking thought...
23. Re:Restore from backup by MobileTatsu-NJG · 2016-02-15 15:31 · Score: 1
  
  I'm pretty sure the 'printer toner' reference was in spilling it, not that a toner cartridge was infecting the network. Toner is the office equivalent of glitter.
  
  --
  
  "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)
24. Re:Restore from backup by EzInKy · 2016-02-15 15:51 · Score: 1
  
  Hospitals are under severe pressure to decrease the cost of providing effective healthcare. Keeping parasites such as pharmaceutical companies profitable really does exact a cost on society.
  
  --
  Time is what keeps everything from happening all at once.
25. Re:Restore from backup by ColdWetDog · 2016-02-15 16:15 · Score: 2
  
  I keep telling you people. Trying to make an analogy without using automobiles as a reference point is like trying to fry a fish with a tape recorder.
  
  --
  Faster! Faster! Faster would be better!
26. Re:Restore from backup by ColdWetDog · 2016-02-15 16:32 · Score: 1
  
  No they don't. The reason that we don't patch as much as we should is crappy programming on the vendor's part. Half the systems crash at various patch levels. We can't use Firefox for much these days because it changes so much. We're stuck on three different versions of IE on different machinery. Sucks? Yep. Can it be prevented? Possibly - if you got to build a hospital from scratch. But there is so much tech thrown about in corners and in rooms that were never designed to work with each other and whose designers like the idea of standards because there are so many to choose from. And are too expensive to toss and replace with something that 'is supposed to work'.
  It's really amazing that this house of cards actually runs at all.
  But the FDA regs have nothing to do with this.
  
  --
  Faster! Faster! Faster would be better!
27. Re:Restore from backup by Anonymous Coward · 2016-02-15 17:23 · Score: 0
  
  Are you willing to spend a couple hundred bucks per printer plus the man-hours to firewall it off and maintain access lists? Even if you are, any competent business manager would decline that request. Some risks should be accepted after cost-benefit have been weighed. The unlucky ones make the news but the other 99.9% stay within budget.
28. Re:Restore from backup by hawguy · 2016-02-15 17:35 · Score: 1
  
  Are you willing to spend a couple hundred bucks per printer plus the man-hours to firewall it off and maintain access lists? Even if you are, any competent business manager would decline that request. Some risks should be accepted after cost-benefit have been weighed. The unlucky ones make the news but the other 99.9% stay within budget.
  Just supplying a port to the printer costs more that that in any b cigompany, so yeah, spend a few bucks to put it on its own isolated VLAN that only the print servers can talk to. No modern IT department should let their printers on the same subnet as their office computers because there are tons of vulnerabilities in them. We're a pretty small shop (~100 users) and our printers are on their own VLAN because it only took us 10 minutes to do so.
29. Re:Restore from backup by sjames · 2016-02-15 17:36 · Score: 1
  
  Even moreso, it's probably easier to get inter-department cooperation and if necessary extradition for murder.
30. Re:Restore from backup by hawguy · 2016-02-15 17:38 · Score: 1
  
  No they don't. The reason that we don't patch as much as we should is crappy programming on the vendor's part. Half the systems crash at various patch levels.
  
  Then stop buying the crap - the only reason vendors can get away with selling crap software is because hospitals are buying it. Someone has to step up and say "We're not buying unsupportable crap, either support your software through operating system upgrades, or we're not buying it".
31. Re:Restore from backup by Applehu+Akbar · 2016-02-15 17:48 · Score: 2, Insightful
  
  "If any patient dies in connection with this attack, then it puts murder charges on the table. And the thing about murder is that there's no statute of limitations. Thus, these guys will be looking over their shoulders for the rest of their lives."
  I've said it before: If the NSA is as good at mass surveillance as is being claimed, why aren't we seeing them finding ransomware purveyors and strangling them with their own intestines? It would give them the positive publicity they have been waiting for.
32. Re:Restore from backup by Anonymous Coward · 2016-02-15 17:52 · Score: 0
  
  As I said why in hell is a printer in a position to be used as a jumping off board into anything?
  Ever heard of the PostScript programming language? There was a time when printers supported running programs written in this language which was surprisingly powerful, or so I've heard. If you can combine that with network communications you have a hacking platform.
33. Re:Restore from backup by guruevi · 2016-02-15 18:27 · Score: 1
  
  That's why you make sure you have an up-to-date image and use an OS that doesn't default to open.
  
  --
  Custom electronics and digital signage for your business: www.evcircuits.com
34. Re:Restore from backup by hvdh · 2016-02-15 19:51 · Score: 1
  
  DICOM Printers for digital X-ray images need a lot of code for the network protocols and actual printing. I've seen some older models which contain a PC inside running Windows NT with software to convert between DICOM on the outside and the actual printer's native interface. Of couse, that machine is on the network, because all the X-ray machines need to print X-rays.
35. Re: Restore from backup by Anonymous Coward · 2016-02-15 20:21 · Score: 0
  
  that is why u got 802.x + a whole host of other networks tool that will automate and autonegate this type of threath. and a few hundred bucks per printer... in any competent CIOs budget thats peanuts to ensure network security... seriously peanuts noy worth counting... if youre competent and hire competent people
36. Re:Restore from backup by SeaFox · 2016-02-15 20:45 · Score: 1
  
  Trying to make an analogy without using automobiles as a reference point is like trying to fry a fish with a tape recorder.
  It's not hard to do if your aquarium full of betas.
37. Re:Restore from backup by jandersen · 2016-02-15 22:24 · Score: 1
  
  Isn't this what backups are for? Wipe the infected computers and restore from backup. A few days of lost data seems less disruptive than weeks of no computers at all.
  Speaking as somebody who has worked for far too long with this kind of issues: backups can be a help, but rarely if we're talking a complete wipeout of all systems. For that, you need to have prepared a disaster recovery plan, and if you have done it properly, you can be back in business in a matter of anything down to minutes, depending on how much you invested in this.
  But apart from that - we are talking about serious crime here. On one hand there is the obvious crime of endangering the lives of patients for whatever reason, which in my personal view amounts to something more like terrorism; but there is also the question of whether there is (or ought to be) criminal responsibility on the part of the hospital management for not being prepared for a situation like this, when the danger is as well known as it is, and the solution is well understood.
38. Re:Restore from backup by Antique+Geekmeister · 2016-02-15 22:35 · Score: 1
  
  That's great, if you've been permitted the resources to set up PXE boot and keep track of assets to install the images only where you have licenses. Unfortunately, getting all the doctor's laptops and home machines that come in via VPN connections updated can be a nightmare. And if the patch isn't already in the image, you can be re-infected by within minutes after re-activation. I'm not trying to say that it's an insoluble problem: Isolating such an infected network and setting up "DMZ's" or "demilitarized zones" for introducing and re-activating isolated services is a good start. But it's not something you can just flip a switch and recover from.
  This is also where a good manager hides their network and systems people in a room and guards the door to keep upset staff off their backs while they clean up the mess. It's also where that manager publishes the progress and keeps the staff from being harassed every five minutes with people screaming "My 12 year old can do better than this!" and opening up big security holes just to get their particular task done.
39. Re:Restore from backup by mwvdlee · 2016-02-15 22:46 · Score: 1
  
  Because of IT budgets
  
  --
  Slashdot social media options: AIM, ICQ, Yahoo, Jabber and Mobile Text. Why no MySpace?
40. Re:Restore from backup by Anonymous Coward · 2016-02-16 01:08 · Score: 0
  
  Divide and conquer. Define VLANs, and keep things separated into red/green/blue/black nets. Use packet inspection at key points. Don't enable the spread of crapware in your network routers. This isn't rocket surgery.
41. Re: Restore from backup by Anonymous Coward · 2016-02-16 01:13 · Score: 0
  
  Insulin pump ransom isn't the best way to extort money. I mean you get contacted, you take it off, start injecting with needles. It would certainly be a real pain. As a side note since insulin in the US is so expensive T1D people would be unlikely to afford any large sum of ransom anyways.
42. Re: Restore from backup by Anonymous Coward · 2016-02-16 01:52 · Score: 1
  
  Probably because they don't have jurisdiction outside the US.
  Damn, that was an easy question. Got anymore dummy?
43. Re:Restore from backup by silas_moeckel · 2016-02-16 02:08 · Score: 1
  
  Na was specific to replace the printers to be safe. A printer should not be in a position to compromise anything. All it needs is inbound sessions from a print server. That's a very small exposure window of some sort of exploit.
  
  --
  No sir I dont like it.
44. Re: Restore from backup by Anonymous Coward · 2016-02-16 02:12 · Score: 0
  
  Call Sony... The have the experience.
45. Re:Restore from backup by silas_moeckel · 2016-02-16 02:16 · Score: 1
  
  Yes it's on the network but a network should not be a flat thing security wise. Modern gear (ok anything enterprise grade made in the last decade) is perfectly capable of basic ACL's at the port level vlans etc. Modern network security is more than capable of configuring all those layers in an automated fashion. Being on the network and only being able to talk to the xray machines via some specific ports is not much of a risk.
  
  --
  No sir I dont like it.
46. Re:Restore from backup by silas_moeckel · 2016-02-16 02:18 · Score: 1
  
  Pretty sad that HIPPA has less security requirements and teeth than PCI.
  
  --
  No sir I dont like it.
47. Re:Restore from backup by Anonymous Coward · 2016-02-16 02:34 · Score: 0
  
  I agree with the sentiment - and furthermore, instead of even trying to be as good at mass surveillance as they claim they want to be, put your fucking efforts into stopping actual current cyber terrorism (like this). And yes, as you said, get themselves some positive publicity.
48. Re:Restore from backup by Rogue974 · 2016-02-16 02:41 · Score: 1
  
  That doesn't work well when you are in the medical field or controls field (like I am) or some other fields as well and have legacy systems in place. You don't have an unlimited number of vendors that can do what you are doing as well. Combine that with huge installed base and you can't simply migrate away.
  One of the biggest things I deal with is I have hardware that is running systems that go down once a year or once ever few years for maintenance. Some of the hardware is 40+ years old (we have an upgrade path forward and are updating a lot of it), but the hardware was never designed with network security in mind and the only option for security is upgrade.
  The newer offerings by the vendors are better, but the old legacy systems are not so I have to harden my system against the outside world, but if the outside gets in, the hardware is easily compromised.
  It will take us about 7 years to upgrade all of our systems because of man power and cost constraints, but until then we have to beef up security as best we can to keep stuff from getting in.
49. Re: Restore from backup by Anonymous Coward · 2016-02-16 03:06 · Score: 0
  
  But, then you have to add all the devices one at a time, including all of the guest devices to the net. Remember for each staff member, including guest doctors, and nurses. Each has their own familiar device and programs for a purpose. Plus their own phone, with its own limitations, where the initial vector may have been...
50. Re:Restore from backup by gstoddart · 2016-02-16 03:10 · Score: 1
  
  And, of course, one could argue that hacking into a hospital and endangering lives/causing death could fall under the purview of people who investigate terrorism.
  And then it becomes something entirely different in terms of the scope of who is coming after you.
  
  --
  Lost at C:>. Found at C.
51. Re:Restore from backup by Krojack · 2016-02-16 03:44 · Score: 1
  
  What if the malware was in the systems for months just sitting dormant thus making the backups tainted as well.
52. Re:Restore from backup by Impy+the+Impiuos+Imp · 2016-02-16 03:51 · Score: 1
  
  I wonder if there are any Ultra-level discussions within the NSA, ala Turing, as to whether they should "accidentally" stumble across other info on who the hackers are, or will they let the convoy get hit to not reveal their hand in how deeply they have cracked networks and Bitcoin.
  
  --
  (-1: Post disagrees with my already-settled worldview) is not a valid mod option.
53. Re:Restore from backup by Zaowulf · 2016-02-16 04:00 · Score: 1
  
  Because "National security"
54. Re:Restore from backup by Anonymous Coward · 2016-02-16 04:12 · Score: 0
  
  Attacking a hospital should be considered "national security" no matter if the hospital is 'free for all' or 'paid only'. It's a HOSPITAL, it's even off limit during war (if ppl only would follow those rules).
55. Re:Restore from backup by Anonymous Coward · 2016-02-16 04:14 · Score: 0
  
  is like trying to fry a fish with a tape recorder.
  That's easy, I just play my super hot mix tape and lay the fish on top.
  
  Sorry.. that was horrible.
56. Re:Restore from backup by MobileTatsu-NJG · 2016-02-16 07:28 · Score: 1
  
  Again, I don't think the original post was about the printer being an infection point.
  
  --
  
  "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)
57. Re: Restore from backup by slashdotwannabe · 2016-02-16 07:54 · Score: 1
  
  Wrong. The NSA has jurisdiction primarily outside of the USA; it is only relatively recently that they have been authorized to conduct domestic operations.
  
  --
  This comment is my opinion and does not represent an official position of Donald Trump or others I do not work for
58. Re:Restore from backup by Nethemas+the+Great · 2016-02-16 07:58 · Score: 1
  
  The disincentive comes from the requirements of the FDA for medical device manufacture's whenever they makes updates to their product. In theory filing a 510K for security patches is usually not required. However, given the perceived ambiguity that separates needing to vs. not needing to and the tendency towards being skiddish around the FDA and the punitive club they wield the assumption is usually made that a 510K will be required. This is generally considered an expensive PITA with the net result being that updates are made rather infrequently, and only when a business case can be made to do so.
  
  --
  Two of my imaginary friends reproduced once ... with negative results.
59. Re:Restore from backup by Nethemas+the+Great · 2016-02-16 08:05 · Score: 1
  
  Unfortunately its not as simple as you would like to believe, particularly so for infected modalities. Setting CTs, MRIs, and such aside, malware isn't restricted to the file system. BIOS and other firmware are increasingly becoming targets that present their own rather unique challenges.
  
  --
  Two of my imaginary friends reproduced once ... with negative results.
60. Re:Restore from backup by Anonymous Coward · 2016-02-16 09:52 · Score: 0
  
  I'm pretty sure the 'printer toner' reference was in spilling it, not that a toner cartridge was infecting the network. Toner is the office equivalent of glitter.
  Yes, but since modern laser printers are most likely sophisticated computers running Linux, they could be a malware reservoir and constant source of re-infection, if the criminals were savvy enough. (But they probably aren't.)
61. Re:Restore from backup by MobileTatsu-NJG · 2016-02-16 10:00 · Score: 1
  
  I'll buy that. Although I don't know what you'd do to secure a printer that you wouldn't do with any other device on the network. It has to transmit and receive.
  
  --
  
  "I like to lick butts!" by MobileTatsu-NJG (#32700246) (Score:5, Informative)
62. Re:Restore from backup by MrKrillls · 2016-02-16 10:28 · Score: 1
  
  I was guessing it had to follow a scheme like that (not a network guy here.) Labor intensive, a vast and expensive pain in the neck, but doable.
  As long as data is backed up. And maybe a bit less painful if IT has a plan for such issues.
  
  --
  Don't step on the baby.
63. Re:Restore from backup by hawguy · 2016-02-16 10:30 · Score: 1
  
  Pretty sad that HIPPA has less security requirements and teeth than PCI.
  Even sadder if a hospital is counting on HIPAA guidelines to secure their network. "Great, we've done the minimum required by HIPAA, a data privacy standard', so surely that means our network is safe!"
64. Re: Restore from backup by Applehu+Akbar · 2016-02-16 10:41 · Score: 1
  
  Federal agents claim jurisdiction outside the US when someone on the Internet somewhere plays on a poker site. The NSA, which already has a worldwide remit to look for information it wants, would have no trouble getting a hospital attack classified as a national security case, worthy of special ops. Classify it as terrorism, and we could nuke Mars.
65. Re:Restore from backup by Anonymous Coward · 2016-02-16 11:09 · Score: 0
  
  [...]skiddish[...]
  Skittish.
66. Re:Restore from backup by LordWabbit2 · 2016-02-16 18:55 · Score: 1
  
  That comes with hefty yearly maintenance fees and service contracts. I have never worked on hospital software, but I do work on logistics systems and some of them are so old that they can't get them running on Windows 7 (yes even in compatibility mode). So they might upgrade the hardware, but they have to install Windows XP to get the software to run. Get a new version from the Vendor? Vendor's gone, retired and the company no longer exists. I am busy rewriting part of the system that was home grown because they "lost" the source code about 10 years ago and the system limped on for that long before they decided to spend money rewriting it so they could add functionality and get it working on up to date operating systems. The deciding factor to keep it in house, was that it would be more expensive to buy off the shelf, plus they would have to change the way the business works to fit the off the shelf software (retrain people etc.)
  
  --
  There are three kinds of falsehood: the first is a 'fib,' the second is a downright lie, and the third is statistics.
67. Re:Restore from backup by edis · 2016-02-18 00:05 · Score: 1
  
  So reasonable. Unless guys are not from a civilized part of the world, no need seen to restate namely.
  And this is why they do what they do with more courage, than you can yourself imagine.
  
  --
  Servant of karma
68. Re:Restore from backup by rtb61 · 2016-02-21 19:11 · Score: 1
  
  Not a job for contractors, really a job for a government agency due to the need to conduct computer forensics whilst conducting the repair (this cost is build into the bill for the hackers). Basically they can create the number of professionals on stand by, waiting to do this work, on a regular basis. Network reconstruction and forensics.
  
  --
  Chaos - everything, everywhere, everywhen
Take 'em out by Anonymous Coward · 2016-02-15 11:20 · Score: 0

I have no problem with government entities using CIA/FSB level violence against these assholes no matter where they are.
#DroneStrikeTour2016
1. Re:Take 'em out by Anonymous Coward · 2016-02-15 12:12 · Score: 2
  
  Who? The execs who cut IT budgets?
2. Re:Take 'em out by Anonymous Coward · 2016-02-15 14:16 · Score: 0
  
  No, your mother, asswhole.
3. Re:Take 'em out by mwvdlee · 2016-02-15 22:51 · Score: 2
  
  Incompetent people should get fired.
  Malicious people should get a entire firing squad.
  
  --
  Slashdot social media options: AIM, ICQ, Yahoo, Jabber and Mobile Text. Why no MySpace?
4. Re:Take 'em out by dcw3 · 2016-02-16 02:45 · Score: 1
  
  Incompetent people should get fired.
  I suspect you didn't really mean it that way. Competent people weren't always. People don't come out of the box competent. Now, if they've had sufficient time and training, and failed to become so, then fire their asses.
  As for "Malicious people should get a entire firing squad.", I'd be happy to pull the trigger on these asshats.
  
  --
  Just another day in Paradise
Wait by symes · 2016-02-15 11:25 · Score: 4, Funny

So wait until next week when that 9000 BTC is worth $1.50, but not until the week after when it will be worth three times that.
1. Re:Wait by 0100010001010011 · 2016-02-15 11:33 · Score: 1
  
  Find me the last time 9000 BTC was worth $1.50.
2. Re:Wait by Dr_Barnowl · 2016-02-15 11:37 · Score: 1
  
  Wish someone would take me back to the time even 1BTC was $1.50
3. Re:Wait by Anonymous Coward · 2016-02-15 11:47 · Score: 0
  
  Have no fear! Aspergers Man is here!!
4. Re:Wait by Anonymous Coward · 2016-02-15 12:52 · Score: 0
  
  Our binary friend is both stupid and pedantic.
  He spreads the shit that spews from his mouth all over this site.
5. Re:Wait by U2xhc2hkb3QgU3Vja3M · 2016-02-15 17:31 · Score: 1
  
  Beginning of July 2010.
Hackers! by Anonymous Coward · 2016-02-15 11:27 · Score: 0

Hackers hacker hackers!
Sorry by Anonymous Coward · 2016-02-15 11:27 · Score: 1

These guys are super assholes for putting patient lives in danger for a few bucks. If there was a reason for extraordinary rendition, this is it.
1. Re:Sorry by Nethemas+the+Great · 2016-02-15 11:59 · Score: 1
  
  Don't worry, it's a hospital for the 1%'ers. Eat the rich!
  
  --
  Two of my imaginary friends reproduced once ... with negative results.
2. Re:Sorry by Barny · 2016-02-15 12:12 · Score: 4, Insightful
  
  Interesting point, but you do realise that to the rest of the world, America is the "1%"?
  
  --
  ...
  /me sighs
3. Re:Sorry by Anonymous Coward · 2016-02-15 12:14 · Score: 0
  
  You're right. Maybe they should have appropriated more funding to create a competent network security department. Otherwise, some script kiddies could go in and shut down the hospital for lulz.
4. Re:Sorry by turbidostato · 2016-02-15 12:17 · Score: 1, Interesting
  
  "These guys are super assholes for putting patient lives in danger for a few bucks."
  In fact yes.
  How that hospital's management dared to have their IT forgotten, without proper budget, training, auditing and support for their staff, putting that way patient lives in danger just to save a few bucks?
5. Re:Sorry by Anonymous Coward · 2016-02-15 13:02 · Score: 0
  
  I seriously hope you're just being flippant. Putting someone's life at risk, regardless of their wealth, is a heinous act.
6. Re:Sorry by Anonymous Coward · 2016-02-15 13:22 · Score: 0
  
  Why is it that the victims of an attack take all the blame for an attack such as this one? You have absolutely no proof that the IT budget or the IT department in general were the cause of this problem. Maybe you think that you could have prevented this attack if you were on the IT staff?
  Throw some of your angst at the fuckers that actually hacked the system. And when theses guys get caught and end up getting lengthy prison sentences don't start bitching about the penalty being excessive because the attackers were really just uncovering weaknesses so the hospital could secure their systems.
7. Re:Sorry by Kohath · 2016-02-15 13:39 · Score: 1
  
  Not to be a mathhole or anything, but we have 300 million people. Out of 7 billion, that's well over 4%.
8. Re:Sorry by Barny · 2016-02-15 13:48 · Score: 1
  
  Hence the quotes :)
  You are right though, but it is easy for the rest of the world to look at America and see not the poor and unemployed, but the rich and upper-classes.
  
  --
  ...
  /me sighs
9. Re:Sorry by lgw · 2016-02-15 14:08 · Score: 2
  
  Why is it that the victims of an attack take all the blame for an attack such as this one?
  If you're just walking along, minding your own business and get attacked by surprise, your attacker takes all the blame.
  If you're a military sentry waling your patrol and get attacked by surprise, you are to blame, because alertness is your entire job.
  If you operate key infrastructure, you're somewhere in between these cases, and some blame attaches to you if you're successfully attacked.
  
  --
  Socialism: a lie told by totalitarians and believed by fools.
10. Re:Sorry by turbidostato · 2016-02-15 14:23 · Score: 1
  
  "Why is it that the victims of an attack take all the blame for an attack such as this one?"
  In two words: Due Diligence
  "You have absolutely no proof that the IT budget or the IT department in general were the cause of this problem."
  Yes, I do: "Management has forbidden staff to turn on their computers, fearing the attack might spread"
  No ability to segregate their networks by security/functional realms, no ability to bootstrap their systems in case of catastrophic or widespread failure, no clear disaster recovery plan == incompetence, be it for lack of founding, mismanagement or whatever. We are not talking here about a pop'n mom shop but an important medical center with duties towards their community. Which points us back to above: Due Diligence.
11. Re:Sorry by Anonymous Coward · 2016-02-15 14:29 · Score: 0
  
  Actually, you only need to make above 34,000$ per annum to be in the top 1% of the world. Google it.
12. Re:Sorry by Anonymous Coward · 2016-02-15 15:38 · Score: 0
  
  That would be a very comfortable salary where I live, and I live in a place where you can get a proper 120mbps Internet connection for less than $30/month (you can get up to 500mbps, but that's more expensive). Americans in general have a _ton_ of disposable wealth that they either just don't care about, or squander away on loans, leases and mortgages. That's in addition to how ridiculously expensive a few specific categories of things are in the US (most notably, getting injured or sick is not related to your financials in most of the world, even the poor countries, whereas it can even put a medium-income family on their asses in the USA). If you view it as a machine, the US is like the 1940s gas guzzler sitting in the backyard: it contains an abundance of fuel, but it's remarkably inefficient at everything it does with it.
13. Re: Sorry by Anonymous Coward · 2016-02-15 15:55 · Score: 0
  
  Hollywood Pres. (Formerly Queen of Angels) is hardly a hospital for the 1%ers. It is well known in LA as one of the worst hospitals in a shiity area of Hollywood that you'd rather not find yourself at. If you are ever in LA and find yourself in need of 911 medical attention, tell the ambo to take you to Cedars-Sinai. Or, if you have Kaiser, go across the street to the Kaiser hospital.
14. Re:Sorry by aaarrrgggh · 2016-02-15 16:03 · Score: 1
  
  When you need to replace a $Million machine because the system you have only works with XP, you have a very difficult starting point. When doctors demand remote access to these systems, things get nearly impossible very quickly.
  You really need a system designed from the ground up around security rather than Medicare billing codes.
15. Re:Sorry by murkwood7 · 2016-02-15 17:11 · Score: 1
  
  How dare those IT guys fail, seriously FAIL, to protect against every single, fucking danger there IS! Obviously, they have an UNLIMITED budget, holy f*ck! How dare they.
  News for YOU buddy! They, the IT people, didn't cause the problem. Criminal P'sOS did.
  How's this for a proposal: If you are caught endangering the health system in an egregious manner and are found guilty, YOU, your immediate ancestors(2, 3 or more parents), AND ALL of your descendants are put to death.
  I can support that.
  
  --
  - X/Y -
16. Re:Sorry by Anonymous Coward · 2016-02-15 17:18 · Score: 0
  
  Largely because the great masses never have the money to go on a local vacation let alone go abroad. Hell, anywhere that the super-rich don't want to live is called flyover country and is ignored.
17. Re: Sorry by Anonymous Coward · 2016-02-15 18:16 · Score: 0
  
  :potd:
18. Re:Sorry by mwvdlee · 2016-02-15 22:58 · Score: 1
  
  It's impossible to build an unhackable IT system.
  Especially so for any even remotely sane budget.
  
  --
  Slashdot social media options: AIM, ICQ, Yahoo, Jabber and Mobile Text. Why no MySpace?
19. Re:Sorry by turbidostato · 2016-02-16 00:23 · Score: 1
  
  "When you need to replace a $Million machine because the system you have only works with XP"
  Yes, that's what happens: incompetence accumulates over time.
  "You really need a system designed from the ground up around security rather than Medicare billing codes."
  But that's not true either: systems need to be designed around their required function. It's only that their security levels are also part of their required function, not an afterthought.
  But, as one of the first posters already said, why should you take proper care of your systems when you can always blame the hackers for their inscrutable sophistication?
20. Re:Sorry by turbidostato · 2016-02-16 00:32 · Score: 1
  
  "It's impossible to build an unhackable IT system.
  Especially so for any even remotely sane budget"
  Maybe that's right, but that's tad far from "so, why even try?"
  In this case, how many of these computers need to offer services to the network? I bet barely no one. But then, how is it that they are afraid to turn off their computers -even if they are -gasp! older versions of Microsoft products that any sane mind would have banned in that environment to start with? Because incompetence.
  Oh, but the doctors! IT staff have no saying on which kind of scalpel the surgeon uses, doctors have no saying on which IT infrastructure gets to be deployed.
  Oh, but then you would be promptly fired because of the doctors! There's a thing called professionalism. Tell the surgeon what scalpel he's going to use and see how fast he's looking for another hospital. That's because he's proud of his profession, the training it took ,and his efforts to achieve his competence level. You do the same or accept your problem is incompetence and lack of professionalism.
21. Re:Sorry by Anonymous Coward · 2016-02-16 01:15 · Score: 0
  
  If you have a million dollar machine and you cannot afford to spend a few thousand dollars on a proper router with VLANs and port to port security and a packet filter to isolate the machine and its controller while allowing only data through on one specific port, then you have a management problem.
22. Re:Sorry by dcw3 · 2016-02-16 02:49 · Score: 1
  
  Don't worry, it's a hospital for the 1%'ers. Eat the rich!
  I've been on /. for quite a few years, and can't recall a more asinine comment than this. Congratulations jackass.
  
  --
  Just another day in Paradise
23. Re:Sorry by mwvdlee · 2016-02-16 02:55 · Score: 1
  
  Why do you assume they don't even try?
  
  --
  Slashdot social media options: AIM, ICQ, Yahoo, Jabber and Mobile Text. Why no MySpace?
24. Re:Sorry by turbidostato · 2016-02-16 04:28 · Score: 1
  
  "Why do you assume they don't even try?"
  Because I'm a nice guy.
  The alternative is that they failed miserably showing utter incompetence against what seems not much more than a bunch of script kiddies with some internal knowledge.
Come in in by Anonymous Coward · 2016-02-15 11:30 · Score: 0

In in into my wonderful world of typos, misspellings and summaries that are out of this world! - Timothy
1. Re:Come in in by Anonymous Coward · 2016-02-15 12:58 · Score: 0
  
  Timothy is not a real person anymore, he is a bot that the interns are using to post all of the stories.
Who handles their IT? by beheaderaswp · 2016-02-15 11:35 · Score: 4, Informative

I'd like to know who handles their IT?
Contractor? Imports? If they cannot turn their computers on.... are they pulling the drive to access the data on clean airgapped computers?
I'd bet they have a marginal IT staff and a bunch of managers. Would be typical.

--
Another consultant who stuck it out.

"We are the Priests, of the Temples of Syrinx..."
1. Re:Who handles their IT? by Anonymous Coward · 2016-02-15 11:49 · Score: 0
  
  Fire them and replace them with H1Bs.
2. Re:Who handles their IT? by ark1 · 2016-02-15 13:08 · Score: 1
  
  In a hospital, Doctors are stars and everything else is a cost center. One exec after another will show up and squeeze those costs further and further.
3. Re:Who handles their IT? by rsmith-mac · 2016-02-15 15:11 · Score: 1
  
  Hospital IT is its own kind of hell. Between your normal IT concerns, HIPAA regulations, the fact that most systems aren't modernized, and doctors who are frequently overworked as it is without dealing with the latest IT boondoggle as well, and it makes for a very difficult environment. That they need a better IT organization I don't think is in doubt, but I don't think I could do any better at the job given the environment.
4. Re:Who handles their IT? by guruevi · 2016-02-15 18:33 · Score: 1
  
  It actually isn't all that bad for most systems, the worst part of it is that hospitals always tend to 'buy' solutions from "vendors" (aka sales people) in the healthcare space and they manage to screw every single rule, contract and regulation up. HIPAA isn't actually all that bad, it's relatively easy to conform to and consists mainly of out of best practices, the problem is when the FDA gets involved and says you can't update your machine without another round of approval. At that point, you can see why Windows XP, Solaris and old Linux (2.2) are still being ran everywhere.
  
  --
  Custom electronics and digital signage for your business: www.evcircuits.com
5. Re:Who handles their IT? by mwvdlee · 2016-02-15 22:59 · Score: 1
  
  "Air gap"... is that the thing Wifi signals use to travel?
  
  --
  Slashdot social media options: AIM, ICQ, Yahoo, Jabber and Mobile Text. Why no MySpace?
6. Re:Who handles their IT? by reverseclipse · 2016-02-16 02:58 · Score: 1
  
  Yup, Say IT wants to improve core functionality, but medical wants a new shiny feature. Medical gets the new software on aging servers because "it effects patient care."
7. Re:Who handles their IT? by Pascoea · 2016-02-16 04:00 · Score: 1
  
  Good thing they sell computers without WiFi hardware in them.
The staff were also forced to use fax machines by Anonymous Coward · 2016-02-15 11:42 · Score: 0

Oh, the horror![/sarcasm]
1. Re:The staff were also forced to use fax machines by wjcofkc · 2016-02-15 12:00 · Score: 0
  
  Sarcasm? Not so much. Every office I have ever worked in has a once in a year or two event where a fax not only needs to be sent, it needs sent right away.
  
  Stage one: People in the office scramble trying to figure out which device in the office is doubling as a working fax machine.
  
  Stage two: After a probable device is identified, you have a group of people hovering over it trying to figure out how it works.
  
  Stage three: They call me over to figure it out.
  
  Stage four: I identify that the phone line is not plugged in.
  
  Stage five: I identify that the CEO decided to save a few bucks by making the fax line a shared line with his. The CEO is behind closed doors on an all afternoon call and is not to be disturbed.
  
  Stage five: I turn and walk away with a sardonic smirk, not because I am happy about it. I just can't help it.
  
  --
  Brought to you by Carl's Junior.
2. Re:The staff were also forced to use fax machines by Nethemas+the+Great · 2016-02-15 12:02 · Score: 1
  
  FAX machines are routinely employed in the clinical environment, e.g. lab results, prescriptions, diagnostic reports, etc.. The most often cited reason (I don't make this stuff up) security.
  
  --
  Two of my imaginary friends reproduced once ... with negative results.
3. Re:The staff were also forced to use fax machines by Anonymous Coward · 2016-02-15 13:29 · Score: 0
  
  My local car rental agency still uses a fax machine ... mostly because they don't have anything resembling a modern computer capable of scanning or emailing. Their terminals are black and green text mainframe looking jobbies, and their printers are 30+ year old dot matrix numbers with the little holes along the side of the paper.
  If it ain't broke ...
4. Re:The staff were also forced to use fax machines by Known+Nutter · 2016-02-15 14:59 · Score: 1
  
  Typical IT drone...stuck on stage five.
  
  --
  Beware of the Leopard.
5. Re:The staff were also forced to use fax machines by ihtoit · 2016-02-15 15:29 · Score: 1
  
  They're also routinely employed in the legal field. Documents sent to the ICJ or the ICJ at The Hague or the ECHR are REQUIRED to be sent by Fax.
  It's only recently (the last six years) that the RCJ in London has been accepting documents by email attachment (pretty much since my first visit as an Advocate, where I produced a netbook with the entire casefile on it and after much discussion with the Judge, got him round to the idea that a scanned bitmap compiled into a PDF was pretty much identical to a scanned bitmap used to make a photocopy of a signature).
  Source: been there, worn the t-shirt. Several times.
  
  --
  Political debates have me rolling my eyes so much I think I got optical whiplash. I should sue. - Foamy The Squirrel
6. Re:The staff were also forced to use fax machines by murkwood7 · 2016-02-15 17:19 · Score: 1
  
  Don't forget to pat your ass on the back, there!
  
  --
  - X/Y -
They don't have a good track record by Anonymous Coward · 2016-02-15 11:43 · Score: 0

Before this, they dumped a paraplegic patient on skid row.
1. Re:They don't have a good track record by Anonymous Coward · 2016-02-15 12:18 · Score: 0
  
  Same hospital?
  Niiice.
Someone Has Been Watching... by mlauzon · 2016-02-15 11:49 · Score: 1

"CSI: Cyber"

Because this is similar to season 2 episode 5 entitled "Hack E.R."....

--
Michael
http://s1.sfgame.us/index.php?rec=58163
1. Re:Someone Has Been Watching... by dfsmith · 2016-02-16 13:41 · Score: 1
  
  "CSI: Cyber" is the best comedy on TV at the moment. Just send %random_deranged_guy to the hospital and he'll find the rogue Smart TV!
Hmmm.. by Anonymous Coward · 2016-02-15 11:50 · Score: 0

Things like that sounds like industrial worker's strike actions. Since there isn't a factory of shoes... There's a bit to move and screw everything. Bush administration perhaps?
Upgrading by techno-vampire · 2016-02-15 11:54 · Score: 1

TFA didn't say what OS the hospital was using, or if it'd been kept properly updated. I hope, however, that they'll use this as an opportunity to either update all of the computers during the reinstall, or install a more recent version of whatever OS they're using. The same thing goes, of course, for any anti-virus/anti-malware software involved.

--
Good, inexpensive web hosting
1. Re:Upgrading by Kjella · 2016-02-15 12:31 · Score: 1
  
  TFA didn't say what OS the hospital was using, or if it'd been kept properly updated. I hope, however, that they'll use this as an opportunity to either update all of the computers during the reinstall, or install a more recent version of whatever OS they're using. The same thing goes, of course, for any anti-virus/anti-malware software involved.
  Ahahahaha yeah right, it's not the actual upgrade that is the problem. It's all the medical equipment and niche software that won't work right - or at least isn't certified to work right - if you do that. And they certainly won't rush that process in a crisis. This will be a mad scramble to find and isolate the cause, clean the network and restore systems as best they can to exactly how they were.
  
  --
  Live today, because you never know what tomorrow brings
2. Re:Upgrading by Anonymous Coward · 2016-02-15 12:51 · Score: 0
  
  They are probably using Impac Multi-Access running on Windows XP.
3. Re:Upgrading by HiThere · 2016-02-15 12:53 · Score: 1
  
  You can be rather certain that the OS is MSWind, and not just MSWind, but multiple different versions of MSWind, with different machines demanding that only some particular version be used. By now they've probably replaced all the MSWind95 and MSWind98 machines, but don't bet they don't have some MSWindNT and MSWind2000 machines. They may even have some DOS machines (which likely aren't restricted to only MSDOS, but could be if they depend on particular RAM locations).
  IIUC when they buy an expensive machine, it comes certified to work with a particular version of an OS, and the OS us usually MSWind. But certification is expensive, so they don't get the same model of the machine certified when a new release comes out. And the machines are expensive, so the machines aren't replaced just because a new model is being sold by the manufacturer.
  And I know that everytime I've been able to determine which OS was running in a doctor's office, it has been some version of MSWind.
  
  --
  
  I think we've pushed this "anyone can grow up to be president" thing too far.
4. Re:Upgrading by Anonymous Coward · 2016-02-15 23:03 · Score: 0
  
  Do you know any other humans that call the OS "MSWind", or are you deliberately trying to be harder to understand?
  Do you call the others "Gnulux", "Applosx" and "Googroid"?
patients had had to come in in person for results by fustakrakich · 2016-02-15 11:56 · Score: 1

No telephones either, eh?

--
“He’s not deformed, he’s just drunk!”
The criminals just made a huge mistake by Harlequin80 · 2016-02-15 11:58 · Score: 4, Insightful

They picked the wrong target. If you hit a small business it's easier to pay. If you hit a large business you pay because you don't want people to find out. You hit a hospital though and people could die and it is very very public.
Right about now there will be a whole lot of resources targeted towards finding these people. They are fucked.
1. Re:The criminals just made a huge mistake by HiThere · 2016-02-15 12:55 · Score: 1
  
  One may hope so. I'm not sure how that would work, though, if they are attacking from, say, Somalia.
  
  --
  
  I think we've pushed this "anyone can grow up to be president" thing too far.
2. Re:The criminals just made a huge mistake by Anonymous Coward · 2016-02-15 13:07 · Score: 0
  
  Right about now there will be a whole lot of resources targeted towards finding these people. They are fucked.
  You're overstating in both sentences. If the perpetrators are in China, Russia, or any number of countries who "don't play well with others", they will probably get away with it.
3. Re:The criminals just made a huge mistake by Harlequin80 · 2016-02-15 13:57 · Score: 1
  
  If that is where they are. But I suspect they are probably somewhere more developed than that and somewhere that the US can exert a fair bit of pressure. It is unlikely to be a state sponsored attack so they won't be getting any support in hiding.
4. Re:The criminals just made a huge mistake by cold+fjord · 2016-02-15 13:58 · Score: 1
  
  Drones fly in Somalia.
  
  --
  much of left-wing thought is a kind of playing with fire by people who don't even know that fire is hot - George Orwell
5. Re:The criminals just made a huge mistake by Anonymous Coward · 2016-02-15 16:52 · Score: 0
  
  I hope they get away with it. I also like that this is happening.
  The fact is, hospitals are absurdly insecure on tech, because the entire set of medical products, with their massive markups and huge costs, just randomly communicate in plaintext and crap, but are hooked up to the net for some reason. This is BOUND to happen- and it happening in a way that gets attention might get things fixed.
  It's good that this is getting press. It's bad that it's happening, of course, but it's good that it's happening in this way instead of in a way that could destroy our ability to practice medicine country wide. Hospitals are a very soft target to actual cyber attackers.
  And why would I hope these guys get away with their shitbaggery? Simple: when people get caught, the natural assumption is that the crime won't happen again. Not among those that know better, of course, but in general- it's a story, bad guys get caught, problem solved. But the problem won't be solved until the tech is fixed.
6. Re:The criminals just made a huge mistake by murkwood7 · 2016-02-15 17:22 · Score: 1
  
  They picked the wrong target. If you hit a small business it's easier to pay. If you hit a large business you pay because you don't want people to find out. You hit a hospital though and people could die and it is very very public.
  Right about now there will be a whole lot of resources targeted towards finding these people. They are fucked.
  One can only hope!!!
  
  --
  - X/Y -
7. Re: The criminals just made a huge mistake by DigiShaman · 2016-02-15 19:20 · Score: 1
  
  Technically, if it's from some KGB endorsed Russian mafia, fuck-all is going to happen. So while it might be an official act of war by Russia to the US, nothing will ever happen in the New Cold War short of a thermonuclear exchange.
  Cyber warfare. Get used to it. There won't be justice.
  
  --
  Life is not for the lazy.
8. Re:The criminals just made a huge mistake by m.alessandrini · 2016-02-16 00:11 · Score: 1
  
  I also don't believe that bitcoins are so completely untrackable, especially if you have NSA and the rest at your side.
9. Re:The criminals just made a huge mistake by houghi · 2016-02-16 00:13 · Score: 1
  
  If they are stupid enough to operate in the same country or one where extraditing from is easy, they are. If they are in China, Russia or somewhere in Africa, they are relative safe.
  
  --
  Don't fight for your country, if your country does not fight for you.
10. Re:The criminals just made a huge mistake by Anonymous Coward · 2016-02-16 01:25 · Score: 0
  
  Yup. I once had my office broken into. The perps made the mistake of breaking into *every* office on the whole building floor - about 12 small businesses in all. That elevated the priority to the point where the city police simply went out and picked up *every* usual suspect on the street and pretty soon, several of them squealed and the case was closed in a matter of hours.
11. Re:The criminals just made a huge mistake by Anonymous Coward · 2016-02-16 02:40 · Score: 0
  
  yup - somalia is one of the worst places they could be. We can execute them at will there and don't need to give any legal recourse at all.
  Russia, as someone said, would be much more difficult.
12. Re:The criminals just made a huge mistake by Anonymous Coward · 2016-02-16 05:24 · Score: 0
  
  Like the NSA would expose such a useful secret to save actual lives. They're probably busy using it to see who's laundering money for the wrong people.
13. Re:The criminals just made a huge mistake by edis · 2016-02-18 00:11 · Score: 1
  
  China people work hard to supply the world with the things, whatever illusionary they happen to be.
  But you must be spot on with the remainder of your statement. Screw terrorists.
  
  --
  Servant of karma
Unintended consequences... by Anonymous Coward · 2016-02-15 12:01 · Score: 0

With organizations slashing budgets and H1B'ing their IT staff, this is going to become a much more frequent problem...
Totally off-topic, english people by holophrastic · 2016-02-15 12:06 · Score: 1

When english fails: "patients had had to come in in person for results".
Could have just said: "patients had to come in person for results". ...and then we actually would have understood it without ten-times the brain power.
1. Re:Totally off-topic, english people by radarskiy · 2016-02-15 15:04 · Score: 1
  
  The latter expresses only obligatory mode and past tense, while the former also conveys perfect aspect, i.e. that the obligation was completed.
2. Re:Totally off-topic, english people by Anonymous Coward · 2016-02-15 18:31 · Score: 0
  
  The actual former is more accurate and correct though. You are basically complaining that people are too dumb to read.
3. Re:Totally off-topic, english people by mwvdlee · 2016-02-15 23:07 · Score: 1
  
  I agree that the original sentence is a bit messy to look at, but it is more correct than your alternative.
  Perhaps something like "Patients have had to come in for results in person" would have been nicer.
  
  --
  Slashdot social media options: AIM, ICQ, Yahoo, Jabber and Mobile Text. Why no MySpace?
4. Re:Totally off-topic, english people by holophrastic · 2016-02-16 02:37 · Score: 1
  
  How about: "patients had to come in".
5. Re:Totally off-topic, english people by mwvdlee · 2016-02-16 02:58 · Score: 1
  
  It does not communicate the same information.
  In fact, that sentence implies an entirely different meaning; as if all patients had to come in, not just if they wanted to obtain results.
  
  --
  Slashdot social media options: AIM, ICQ, Yahoo, Jabber and Mobile Text. Why no MySpace?
6. Re:Totally off-topic, english people by holophrastic · 2016-02-16 03:07 · Score: 1
  
  it doesn't specify "all". you infered that for no reason.
7. Re:Totally off-topic, english people by Anonymous Coward · 2016-02-16 03:52 · Score: 0
  
  Redundantly Redundant. How else would the patient "come in"? The patients had to come in in proxy?
  Better to write "the patients had to come in for results".
Linux by stooo · 2016-02-15 12:09 · Score: 1

Just use Linux :)

--
aaaaaaa
1. Re:Linux by ihtoit · 2016-02-15 15:19 · Score: 1
  
  good one. Fancy retraining several thousand medical staff?
  
  --
  Political debates have me rolling my eyes so much I think I got optical whiplash. I should sue. - Foamy The Squirrel
2. Re:Linux by Anonymous Coward · 2016-02-15 16:11 · Score: 0
  
  And getting a hell of a lot of medical equipment - which typically sells for hundreds of thousands of dollars a pop, if not millions - re-designed, re-built, re-tested, and re-certified - on the new platform? And no, you don't get the replacement equipment on the new platform for nothing; it's a new design, and new hardware, so you're buying it anew.
  Nice idea. Completely impractical. Frankly, right now, I'd settle for a system that lets equipment that currently runs on, say, Windows NT 4 (and trust me, I'd bet my life savings that there is more than one hospital out there in the First World that has at least one piece of equipment still running NT 4) be updated to even Windows 2003. Preferably 2008 or 2012, but even 2003 would be a step up. At least that would be relatively cheap.
3. Re:Linux by murkwood7 · 2016-02-15 17:25 · Score: 1
  
  Just use Linux :)
  Why would you think that a 3 word sentence would be ANY answer to ANYBODY'S problem?
  
  --
  - X/Y -
4. Re:Linux by Anonymous Coward · 2016-02-15 22:31 · Score: 0
  
  Save Our Souls
5. Re:Linux by m.alessandrini · 2016-02-16 00:04 · Score: 1
  
  While it would be better to have everything rebuilt on a better OS, I don't think it's the main culprit. If linux was the predominant OS in the last 30 years, criminals would be attacking it now.
  And no mattter how secure an OS can be, I bet this is people's fault: someone opened a malicious attachment, or downloaded some malware while looking for movies or music in some too-good-to-be-true streaming sites.
  Society is losing control on computers... I think we need severe education and policies, beside patches and safe configurations.
6. Re:Linux by Ash-Fox · 2016-02-16 01:21 · Score: 1
  
  good one. Fancy retraining several thousand medical staff?
  Sounds like good money to me.
  
  --
  Change is certain; progress is not obligatory.
7. Re:Linux by Anonymous Coward · 2016-02-16 01:34 · Score: 0
  
  Uhmm... I'm sorry to have to break it to you but Linux already is the predominant OS. Windows is used in a small market niche called desktop systems. Linux dominates everywhere else.
  The reason why Linux is more secure, is because pretty much all Linux developers are very concerned about security and try their level best to keep it secure. Security is an ongoing process and it requires constant attention. The reason why Windows is insecure, is because MS doesn't care about security - they just pay lip service to it.
8. Re:Linux by m.alessandrini · 2016-02-16 02:02 · Score: 1
  
  Yes we know the distinction, but the kind of problems highlighted here, and regarding millions people, are because of desktops, this "small" niche that 90% of users actually operate.
9. Re:Linux by stooo · 2016-02-16 10:33 · Score: 1
  
  Nope. It's where 90% of the entreprise users operate. Other users have moved to movable and mobile.
  
  --
  aaaaaaa
Medical 'computers' hit by cyber-attack? by tetraverse · 2016-02-15 12:11 · Score: 1

"Management has forbidden staff to turn on their computers, fearing the attack might spread, and the Radiation and Oncology departments have been completely shut down because they can't use their equipment."

Hey timothy, what was the name of the Operating System that this 'cyber-attack' runs on? you didn't actually use the word cyber on a technical site?
common factors with other attacks by Anonymous Coward · 2016-02-15 12:21 · Score: 0

Hmm, I wonder what the common factor between this and other major attacks on power plants and financial institutions and so on could be.
Bewildering. Maybe connecting critical computing infrastructure to the open internet? Could it be that? I wonder if that could be it.
Somebody showing up to explain how air-gapping only works 99.999% of the time instead of 100.00% as seen in Iran's nuclear program in 3, 2, 1...
Even with the best Windows administrators, funds.. by Anonymous Coward · 2016-02-15 12:41 · Score: 0

Even with the best Windows administrators, funds, and equipment...
Windows will still get infected.
Spread through "local LAN server", sounds like NLM authentication failures again.
17+ years and STILL Microsoft won't block a vulnerable fallback. So of course it is still vulnerable.
This is what happens when you use the most insecure OS in the world.
Replace systems entirely by sentiblue · 2016-02-15 13:10 · Score: 4, Interesting

IBM and Apple are partnering to create an entire new system for hospital management.

It has an extremely protected back end and a very difficult to infect front-end: The iPad.

I challenge hospitals in this country to do the switch... at least get in with a POC/Beta program.
1. Re:Replace systems entirely by Anonymous Coward · 2016-02-15 18:33 · Score: 2, Insightful
  
  Anything with IBM involved will be 10 times the price with a timeline to delivery sometime in 2099 if it ever works at all. I would warn any organisation about dealing with such a set of companies (and have done in the case of IBM).
Pay Attention IoT! by Irate+Engineer · 2016-02-15 13:13 · Score: 4, Insightful

Isn't health care practically the highest critical tier of the "Internet of Things"? We can't even motivate ourselves to properly secure medical data, literally life and death stuff, even after they get pwned like this. The folks on the IoT bandwagon actually want to hitch more of our daily technology to the Internet, things with even lower security motivation? Sorry, IoT is dumb beyond belief. We really need to be working on air-gapping and unplugging a lot of stuff from the Internet. Some things should never, ever get plugged into the Internet, convenience be damned. For other things, maybe they can be plugged in, if a rock solid security apparatus is in place and you still maintain the ability to recover from a breach, acknowledging that it can still happen.

--
Left MS Windows for Linux Mint and never looked back!
Vote for Bernie in 2016!
1. Re:Pay Attention IoT! by Ol+Olsoc · 2016-02-15 14:57 · Score: 1
  
  Isn't health care practically the highest critical tier of the "Internet of Things"?
  Yes.
  We can't even motivate ourselves to properly secure medical data, literally life and death stuff, even after they get pwned like this. The folks on the IoT bandwagon actually want to hitch more of our daily technology to the Internet, things with even lower security motivation?
  Hey, you've seen it. If a person even dares to say that the Internet of things is a disaster waiting to happen, they are accused of being luddites, that they want those kids off their lawns, or just hateful of progress.
  This is a perfect example of Internet of things and it's inevitible problem. As well, how exactly did life critical systems get plugged into a non-life critical OS. and then put on teh same network that is soon to demand that we allow our computers to be a little more secure by using ad and scriptblockers. Be that as it may at least set up a air gapped system, and structure it like a DoD system.
  
  --
  The shepherds did so well protecting the flock that the sheep no longer believed that wolves existed.
2. Re:Pay Attention IoT! by Anonymous Coward · 2016-02-15 20:57 · Score: 0
  
  Ah, you sweet summer child.
No IT department? by Anonymous Coward · 2016-02-15 13:26 · Score: 0

This is what happens when you outsource, cut staff, and treat IT like a cost center year after year. No upgrades, no central management. If you treat your IT like crap...you're gonna have a bad time!
NSA by Anonymous Coward · 2016-02-15 14:18 · Score: 0

This is exactly what they want. An excuse for "Cyber Warfare Powers".
I can't help but wonder if they are behind it...(removes tinfoil hat).
Naah, they would never do that.
In Soviet Russia... by Thor+Ablestar · 2016-02-15 14:22 · Score: 3, Interesting

I spent about 8 years to convince my boss to never use Windows in equipment control. The only places where Windows XP (not later) is allowed to be are the workstations of different secretaries and specialists which are too old to be retrained. So if some ransomware hits the damage is limited to the computers that are easily reinstalled from scratch.
There is the place where the ransomware can still hit: It's the SAMBA server that has shares that the ransomware can encrypt, but it presumably has a proper backup.
To do so we sometimes had to design and produce our own data collection equipment since the existing one is Windows-only.
Sorry, I have no security clearance to name our preferred OS (not Linux) and a place in the Russian military-industrial complex where I work.
1. Re:In Soviet Russia... by Anonymous Coward · 2016-02-15 21:00 · Score: 1
  
  When we buy a clinical system, we get the controllers that the vendors provide. The choice of OS on the vendor's control systems has barely been a blip on the decision matrix compared to performance, cost, support, and so on.
2. Re:In Soviet Russia... by Anonymous Coward · 2016-02-15 23:59 · Score: 0
  
  > Sorry, I have no security clearance to name our preferred OS (not Linux)
  Damn, and I was about to guess "Red Star OS"!
3. Re:In Soviet Russia... by Anonymous Coward · 2016-02-16 00:18 · Score: 0
  
  Russian military-industrial complex where I work.
  Snowden, is that you?
Bullshit! by Anonymous Coward · 2016-02-15 14:49 · Score: 0

Show me a chapter from the HIPAA guidelines that discourages, or gives even a hint of disincentive, for patching. The reason for the IT departments being poor in the Medical industry is because "GREED", Government regulation which ensures "GREED", and a complete lack of punishment for "GREED" leading to damages.
Don't try and stroke your own ego pretending you are better than those IT people working in the Medical field. If executives staffed IT properly things would not be nearly as bad as they are today. Prakash from India works for half US Minimum wage and faces no penalty if your data gets stolen.
That is to say--in a simplified nutshell-- you are a dolt who puts the blame everywhere it should not be.
1. Re:Bullshit! by Nethemas+the+Great · 2016-02-16 07:59 · Score: 1
  
  FDA 510K - change to an existing device.
  
  --
  Two of my imaginary friends reproduced once ... with negative results.
terrible news by ihtoit · 2016-02-15 15:15 · Score: 1

Here's hoping they have a rolling backup they can just nuke the entire system from orbit and perform a full restore, they'll be back up and flipping off the hackers in a matter of hours...
Oh, wait, it made Slashdot. Must mean nobody had a backup plan.
Fools.

--
Political debates have me rolling my eyes so much I think I got optical whiplash. I should sue. - Foamy The Squirrel
1. Re:terrible news by aaarrrgggh · 2016-02-15 16:12 · Score: 1
  
  Just the network side could take weeks to validate. How do you check firmware on workstations? How do you check all of the connected devices?
  It takes an insane amount of manpower, and logistically you might be better off just replacing everything.
  I think one of the problems is the medical equipment vendors, but they haven't been squeezed enough yet to make their systems secure....
restore vulnerability. Also, proper, tested, incre by raymorris · 2016-02-15 15:28 · Score: 1

If they had PROPER backups, simply restoring would restore them to the same vulnerable state they were in just before the attack, and the attackers would immediately re-infect. Before restoring, they have to protect the system from being exploited again. They should try to determine how the original attack was carried out and fix that hole. Also, a too-strict intrusion prevention system at the firewall would be a good idea. They can whitelist as required.
That assumes PROPER backups, but most people don't use a proper backup strategy. Most fail one of the following points:
Tested regularly. VERY often, I see that customers backup stopped working months ago and they didn't know it.
Rolling/ incremental. A backup from last night does you no good if ransomware encrypted everything yesterday afternoon. You need to be able to retrieve backups from multiple points in time.
Off site. Fire, burglary, lightning, 3rd party data center problems - all of these cause loss of racks of equipment. If your backup is sitting next to your live server, you've lost both.
Restorable quickly, and fully (bootable from bare metal). Some tape backups take DAYS to restore a single large server, as do some cloud backups.
These are all lessons learned and confirmed from actual experience assisting real customers. I designed the Clonebox system based on these lessons.
Ransom the movie by Anonymous Coward · 2016-02-15 16:00 · Score: 0

This is a case where it would be interesting to see them pay some group 3.5M to hunt them down and make an example out of them.
Managers will never learn... by williamyf · 2016-02-15 16:18 · Score: 1

Even if it is in FileSystemChecKing Harvard Business Review, October 2009, page 38.
http://www.ganino.com/files/Harvard%20Business%20Review%20%282004%20to%202013%29/Harvard%20Business%20Review%202009/10.%20HBR%202009%20Oct.pdf

--
*** Suerte a todos y Feliz dia!
Hospitals still using XP by Anonymous Coward · 2016-02-15 17:08 · Score: 0

I can't speak to Hollywood Pres but in Hawaii, every hospital I have been in is using XP for their patient information systems. Scary at best!
Rich White Men! by Anonymous Coward · 2016-02-15 19:45 · Score: 0

RIch White Men! Rich White Men!
Bitcoin for Blackmail. by Anonymous Coward · 2016-02-15 20:03 · Score: 0

I have a feeling the creator of Bitcoin never foresaw this kind of use for his invention.
Any crackpot like this by Anonymous Coward · 2016-02-15 20:04 · Score: 0

Deserves to suffer the consequence of their actions you do not fuck with peoples health period... one can only wish Karma will pay those bastards back fully with interest...
Oops by Anonymous Coward · 2016-02-15 20:58 · Score: 0

In retrospect, allowing access when the password "OVERRIDE SECURITY AND ACCESS SECRET FILES" is entered shouldn't have been allowed. Any way they can cause the hackers computers to remotely detonate when they insert a USB stick containing the data?
DBAN by antdude · 2016-02-16 00:01 · Score: 1

http://www.dban.org/ shows it outdated and have a commercial product now? :(

--
Ant(Dude) @ Quality Foraged Links (AQFL.net) & The Ant Farm (antfarm.ma.cx / antfarm.home.dhs.org).
Enhanced Effect by cloud.pt · 2016-02-16 02:21 · Score: 1

This is particularly thrilling to hear right after a binge watch of Battlestar Galactica (TRS)'s season 1-2. NO NETWORKING ALLOWED!
Its Happening! by Anonymous Coward · 2016-02-16 04:07 · Score: 0

Wow, only February and this finally happened. It is the apocalpyse.
Oh wait, Trump will build a firewall. He'll have the hackers pay for it.
Silver lining? by Sir_Eptishous · 2016-02-16 04:55 · Score: 1

The way I look at this, the more the better.
The more that important infrastructure gets compromised, the more the public will become aware of how fragile these systems are. We need more publicity like this. It will only be through things like this that will draw attention to how bad the security is for computer systems at places like hospitals, etc;

--
We play the game with the bravery of being out of range
9000... or 9001? by kheldan · 2016-02-16 05:14 · Score: 1

The number 9000 suspiciously reminds me of Anonymous.

If it were me: Move all the patients out to another hospital, then nuke every system and peripheral that can possibly be infected, reload everything from backups or from scratch. Either get manufacturers to re-flash firmware, or smash them with a hammer (literally) and replace them. And yes, as others have suggested, if a single patient dies, then the hackers responsible get murder charges tacked on to the rest. If a single patient gets injured, even, they're responsible for all of it. Hell, I'd have to say this probably qualifies as a terrorist attack. Catch 'em and string 'em up, or put 'em in front of a firing squad.

--
Are YOU using the TOOL, or is the TOOL using YOU? Think about it!
Stop fighting human nature by Tablizer · 2016-02-16 06:22 · Score: 1

In a hospital, Doctors are stars and everything else is a cost center. One exec after another will show up and squeeze those costs further and further.
Cutting IT budget gives them an almost certain way to look good. The risk of getting the main systems hacked is roughly 1 in 50. It generally goes against human nature to give up a certain chance of looking good in exchange for preventing a 1 in 50 really "bad" event that doesn't outright kill you.
Don't complain about human nature; rather find a way to work with human nature as is. Mandatory security audits may be the only practical way, but it will jack up medical costs for patience.

--
Table-ized A.I.
PC load letter by capsfan100 · 2016-02-16 08:16 · Score: 1

Damn printers!
Idiots! by Anonymous Coward · 2016-02-16 08:33 · Score: 0

Every time I go into a hospital or other medical facility, and see that all their systems are running outdated, insecure versions of Windows, I cringe! Pay, and change your systems to something that is secure, and doesn't start with Microsoft...
Find the hackers and jail them: 10 years minimum by ebusinessmedia1 · 2016-02-16 14:51 · Score: 1

Hopefully these hackers will be found. In addition, the hospital needs to hire some serious security experts; this never should have happened in the first place.
Would Have Never Happened by tmjva · 2016-02-16 15:46 · Score: 1

Would have never happened of they had stayed with their trusty HP3000.

--
Tracy Johnson
Old fashioned text games hosted below:
http://empire.openmpe.com/
BT
Microsoft Windows strikes again! by tetraverse · 2016-02-17 18:56 · Score: 1

Update on the recent Cyber attack on HPMC
Internet = Bad by duke_cheetah2003 · 2016-02-17 20:17 · Score: 1

This is a good example of why some computer networks should NOT be connected to the internet, in any way, shape or form. This is people's lives we're talking about. If there is any internet access what so ever, it's an unacceptable risk. If there MUST be internet access, it should be tightly controlled by firewalls, ie: whitelisted sites only that staff in the facility need to get to.
This kind of thing should not happen. 100% preventable.
Cyberattack by DrVasilij · 2016-02-17 21:22 · Score: 1

The terrorists do not stop at nothing, even blackmailed health care institutions, sad....