The whole system of the hospital completely down with infection by the Ransomware, to succumb to the request of the hacker and pay the ransom

ByChristian Bucad

A formidable malware that encrypts the system and makes it unusable, requiring ransom in exchange for recoveryRansomwareHas been considered as an attack targeting individual users, but since 2015Damage report by corporate users surgesdoing. The hurdle this time was in a hospital in Los Angeles, USA, and we decided to pay the ransom as requested by the hacker.

(PDF)20160217 Memo from the CEO v2.pdf

Hospital paid 17K ransom to hackers of its computer network
http://bigstory.ap.org/article/d89e63ffea8b46d98583bfe06cf2c5af/hospital-paid-17k-ransom-hackers-its-computer-network

The Hollywood Presbyterian Medical Center in Los Angeles is a medium-sized hospital with 430 hospital beds or more. According to the hospital, suspicious access was confirmed on the hospital network on February 5, 2016, and the IT department proceeded the investigation, it said that malware intrusion was confirmed. Malware that entered the hospital network infected the PC inside the hospital via the local server, and the hospital could not do any work using the PC at all.

ByUS Army Africa

A hacker requests 40-bit coin (about 17,000 dollars at the day's rate, about 1.92 million yen) in exchange for the "release key" to release the encrypted HDD. The hospital's Allen Stiffanek said, "The ransom of the 9000 bit coin (about 3.4 million dollars, about 410 million yen) reported was wrong,"News contentI deny.

After the system goes down, the hospital staff keep in touch with each other by telephone or fax, write down the medical record using the memo, and hand over the usual work by directly handing the examination result to the patient because mail can not be used. Los Angeles municipal police and security experts took investigation and countermeasures concurrently with ordinary work, but it did not make it impossible for there to be no "release key" to release encryption, 12 days from system down 2 On Monday 17, as a hacker's request paid 40 billion coins of ransom, about 1.92 million yen, restored the network and electronic medical record system which was unusable. Moreover, evidence that the patient's personal information leaked is not confirmed.

Stiffanyek CEO talked about the reasons for following hacker's request, "There was only a way to get the ransom payment and release key to solve the problem as soon as possible."

Ransomware is exercising not only overseas but also in Japan. According to the Information Processing Promotion Agency (IPA) of public institutions promoting research and development of information processing technology and countermeasures against computer viruses,Number of consultations on Ransomware in JapanHas increased rapidly from around June 2015. The graph below shows trends in the number of counseling concerning Ransomware, and although it decreased in August and September 2015, it turns out that there is an increasing trend after that.


In response to the increase in the number of counseling cases of Ransomware, IPA calls attention that "regular backups should be made in preparation for infection by Ransomware Infection."