My wife's hospital will be hitting the news shortly

[SilverEagle]

My wife is a nurse at Heritage Valley Medical Center in Beaver PA. She just called and told me that their computer system was hacked and that its locked. That means there are no medial records available for the doctors and nurses. The hackers want $300 in bitcoin. I told my wife several years ago when they went all digital with their records that it was a mistake. These hackers need to be murdered because they are putting innocent lives at risk.

[Ex-California]

Having paper records nowadays is just stupid

Not having digital records backed up off-network is stupider

But yeah, murder the hackers

[Ph64]

My wife is a nurse at Heritage Valley Medical Center in Beaver PA. She just called and told me that their computer system was hacked and that its locked. That means there are no medial records available for the doctors and nurses. The hackers want $300 in bitcoin. I told my wife several years ago when they went all digital with their records that it was a mistake. These hackers need to be murdered because they are putting innocent lives at risk.

Given what happened in the UK, "hacked" isn't really the right term... Typically its some moron worker who gets an email with an attachment, from someone they don't know, and stupidly opens the attachment.

Then, of course, the UK one was probably older XP systems (unpatched) or they weren't up to date (common in the medical field because of all the HIPPA rules)... The idiots machine who ran the attachment then infects everything on the network it can, and files that are on shared drives are really easy (don't even to use the unlatched SMB share bugs for that)...

Its sad, but honestly true hacks from outside are fairly rare with good firewalls/security/design. Moron users from inside opening unknown email attachments, getting infected via websites, etc, is usually where stuff comes from.

[SilverEagle]

My wife is a nurse at Heritage Valley Medical Center in Beaver PA. She just called and told me that their computer system was hacked and that its locked. That means there are no medial records available for the doctors and nurses. The hackers want $300 in bitcoin. I told my wife several years ago when they went all digital with their records that it was a mistake. These hackers need to be murdered because they are putting innocent lives at risk.

Given what happened in the UK, "hacked" isn't really the right term... Typically its some moron worker who gets an email with an attachment, from someone they don't know, and stupidly opens the attachment.

Then, of course, the UK one was probably older XP systems (unpatched) or they weren't up to date (common in the medical field because of all the HIPPA rules)... The idiots machine who ran the attachment then infects everything on the network it can, and files that are on shared drives are really easy (don't even to use the unlatched SMB share bugs for that)...

Its sad, but honestly true hacks from outside are fairly rare with good firewalls/security/design. Moron users from inside opening unknown email attachments, getting infected via websites, etc, is usually where stuff comes from.

okay stop splitting hairs smart guy.

[Ex-California]

The hospital probably spent millions on a proprietary program where the data can't be opened without the purchased programs so offline storage wouldn't matter in the first place

But yeah, as in nearly all cases like this, PEBCAC

[TheReal_ND]

Wannacry has been in the news how long?

[Ex-California]

H1B homie

[DBTrek]

Wannacry has been in the news how long?

Exactly what I was saying this morning.
There's a point where you can no longer save people from themselves.

You know who ISN'T being hit by the latest RansomWare attack?
AWS/Azure.

But all you wannabe network admins keep slaving away at those certs for your soon to be doomed profession.

[Speaker to Animals]

I wonder how you could even get into AWS to lock somebody out if you don't have the key. You'd probably have to target Amazon somehow.

[SuburbanFarmer]

Intercept the traffic, if it's unencrypted. Then ransom proprietary data.