Hospitals and clinics in several US states on Friday began the process of recovering from a cyberattack that disrupted their computer systems, forcing some emergency rooms to shut down and ambulances to be diverted.
Many primary care services at facilities run by Prospect Medical Holdings remained closed on Friday as security experts worked to determine the extent of the problem and resolve it.
John Riggi, the American Hospital Association’s national advisory for cybersecurity and risk, said that the recovery process can often take weeks, with hospitals in the meantime reverting to paper systems and humans to do things such as monitor equipment and run records between departments.
Photo: AP
“These are threat-to-life crimes, which risk not only the safety of the patients within the hospital, but also risk the safety of the entire community that depends on the availability of that emergency department to be there,” Riggi said.
The latest “data security incident” began on Thursday at facilities operated by Prospect, which is based in California, and has hospitals and clinics there and in Texas, Connecticut, Rhode Island and Pennsylvania.
“Upon learning of this, we took our systems offline to protect them and launched an investigation with the help of third-party cybersecurity specialists,” the company said in a statement on Friday. “While our investigation continues, we are focused on addressing the pressing needs of our patients as we work diligently to return to normal operations as quickly as possible.”
The White House has been monitoring the cyberattack, said Adrienne Watson, a spokeswoman for the US National Security Council.
Watson also said in a statement that “the [US] Department of Health and Human Services has been in contact with the company to offer federal assistance, and we are ready to provide support as needed to prevent any disruption to patient care as a result of this incident.”
In Connecticut, the emergency departments at Manchester Memorial and Rockville General hospital were closed for much of Thursday and patients were diverted to other nearby medical centers.
“We have a national Prospect team working and evaluating the impact of the attack on all of the organizations,” Eastern Connecticut Health Network chief operating officer Jillian Menzel said in a statement.
The FBI in Connecticut issued a statement saying it is working with “law enforcement partners and the victim entities,” but did not comment further on an ongoing investigation.
The incident had all the hallmarks of an extortive ransomware, but officials would neither confirm nor deny this.
In such attacks, criminals steal sensitive data from targeted networks, activate encryption malware that paralyzes them and demand ransoms.
The FBI advises not to pay ransoms, as there is no guarantee the stolen data would not eventually be sold.
Riggi said paying ransoms also encourages the criminals and finances future attacks.
As a result of the attack, Elective surgeries, outpatient appointments, blood drives and other services were suspended, and while the emergency departments reopened late on Thursday, many primary care services were closed on Friday, the Eastern Connecticut Health Network said.
The Philippines yesterday said its coast guard would acquire 40 fast patrol craft from France, with plans to deploy some of them in disputed areas of the South China Sea. The deal is the “largest so far single purchase” in Manila’s ongoing effort to modernize its coast guard, with deliveries set to start in four years, Philippine Coast Guard Commandant Admiral Ronnie Gil Gavan told a news conference. He declined to provide specifications for the vessels, which Manila said would cost 25.8 billion pesos (US$440 million), to be funded by development aid from the French government. He said some of the vessels would
CARGO PLANE VECTOR: Officials said they believe that attacks involving incendiary devices on planes was the work of Russia’s military intelligence agency the GRU Western security officials suspect Russian intelligence was behind a plot to put incendiary devices in packages on cargo planes headed to North America, including one that caught fire at a courier hub in Germany and another that ignited in a warehouse in England. Poland last month said that it had arrested four people suspected to be linked to a foreign intelligence operation that carried out sabotage and was searching for two others. Lithuania’s prosecutor general Nida Grunskiene on Tuesday said that there were an unspecified number of people detained in several countries, offering no elaboration. The events come as Western officials say
A plane bringing Israeli soccer supporters home from Amsterdam landed at Israel’s Ben Gurion airport on Friday after a night of violence that Israeli and Dutch officials condemned as “anti-Semitic.” Dutch police said 62 arrests were made in connection with the violence, which erupted after a UEFA Europa League soccer tie between Amsterdam club Ajax and Maccabi Tel Aviv. Israeli flag carrier El Al said it was sending six planes to the Netherlands to bring the fans home, after the first flight carrying evacuees landed on Friday afternoon, the Israeli Airports Authority said. Israeli Prime Minister Benjamin Netanyahu also ordered
Former US House of Representatives speaker Nancy Pelosi said if US President Joe Biden had ended his re-election bid sooner, the Democratic Party could have held a competitive nominating process to choose his replacement. “Had the president gotten out sooner, there may have been other candidates in the race,” Pelosi said in an interview on Thursday published by the New York Times the next day. “The anticipation was that, if the president were to step aside, that there would be an open primary,” she said. Pelosi said she thought the Democratic candidate, US Vice President Kamala Harris, “would have done