Heritage Valley Health System Target Of Cyber Attack

The Heritage Valley Health System says it has been hit with a cyber attack. From a report: A spokeswoman confirmed the attack Tuesday morning. "Heritage Valley Health System has been affected by a cyber security incident. The incident is widespread and is affecting the entire health system including satellite and community locations. We have implemented downtime procedures and made operational adjustments to ensure safe patient care continues un-impeded." Heritage Valley is a $480 million network that provides care for residents of Allegheny, Beaver, Butler and Lawrence counties, in Pennsylvania; parts of eastern Ohio; and the panhandle of West Virginia. Also read: Ukrainian Banks, Electricity Firm Hit by Fresh Cyber Attack; Reports Claim the Ransomware Is Quickly Spreading Across the World.

Don't worry, I have a solution.

Upload a virus to the alien mothership to disable the shield, then have a team of small fighters strike the thermal exhaust port with a carefully aimed shot.

It'll be like shooting womprats with a nail gun.

Another "victim"

[Dunbal]

This is all self inflicted. Next time hire people who actually know about IT and cybersecurity instead of listening to the MBA argue about how much money you can save by outsourcing it "to the cloud".

Re:Another "victim"

[DontBeAMoran]

Oh yeah... Gotta love the cloud. (SFW)

Re:Another "victim"

[chispito]

This is all self inflicted. Next time hire people who actually know about IT and cybersecurity instead of listening to the MBA argue about how much money you can save by outsourcing it "to the cloud".

Or perhaps you know nothing about their IT department or hiring practices, the challenges they face, or what led to this infection?

Re:Another "victim"

You shouldn't always make this assumption. From personal experience, there isn't a lot IT people can do if the CFO/board won't allow any IT expenditures. IT staff with even remotely sensible budgets often forget how much something as simple as a few thousand dollar license (or training) helps.

Still an organizational failure, though.

Re:Another "victim"

[Dunbal]

or what led to this infection?

Microsoft Windows (tm).

Re: Another "victim"

Actually of their data where on "the cloud" they would probably not be encrypted by a Windows ransomware ;-)

Re:Another "victim"

Being that I live in this area, it can only be good for the local job market.

Re:Another "victim"

Have you not learned that everyone who responds to a Slashdot comment is convinced that they are smarter than everyone else involved?

You could post a link to a wikipedia article on steam engines to Slashdot, and the comments will be filled with people explaining why they won't work, and how it's SO OBVIOUS everyone should know it.

Re: Another "victim"

Installing Linux requires no license. Most software is FOSS. They don't want to lose their job because they don't have to stay as busy.

Re:Are They Sure It's a Hack?

[Nutria]

No, it's a hack. (I got spam yesterday with a link deep down in their website.)

Ditch Windows already!

Ah, and let the NSA pay for the damages. Sitting on a vulnerability. Pffh.

Re:Ditch Windows already!

[chispito]

Ah, and let the NSA pay for the damages. Sitting on a vulnerability. Pffh.

I'm sure they'll happily do that when you write new software for them and buy them a new MRI machine that runs on Linux and automatically receives zero-risk security updates.

Re: Ditch Windows already!

I found open source software for my MacBook in 2008; I'm sure the software already exists. As far as writing a "new OS," there are thousands of Linux distros in existence. I'm sure someone could whip one up. They already make a few just for healthcare. What you have is IT guys using Window$ so they stay busy.

Re: Ditch Windows already!

All updates are verified as they come in on Linux. I know zypper uses SHA1 on everything. You get an error, it makes you type the last so many digits of the sum it finds before letting you continue with the update. Also, on OpenSUSE, you can separate your partitions and LUKS 512 encryption all of them if you wanted to. Nothing gets mounted or moves forward in the booting without the password, which can be different for all of them. When you turn off/disable something on Linux, it's actually off. Backing up servers are easier too. All current supercomputers use Linux. Linux is the best and IT, PC gamers just need to get the hell over it and buy a gaming console.

Re: Ditch Windows already!

MacBook != MRI machine

stop using Windows

Just stop using Windows, for God's sake! Geez...

Re: stop using Windows

You'd think people would learn, but the only "free" a Window$ user understands is Freemium. If it makes you feel better, I know at least one healthcare place that's switching to Linux.

Using windows is a security risk

Time for the world to accept that and kill it..

Cyber cider

They were hacked. Call it what it is.

Thanks

[raind]

NSA - Not Secret Anymore

The list of hospitals that have been hit with atta

This is a serious issue. Hospitals are starting to look like fools who leave the doors open to the house and expect to not get robbed. Vendors aren't changing their practices because the industry isn't making them do so. When the heck will hospital IT admins and executives start taking IT Security as seriously as they take narcotics monitoring and provider credentialing.