Brooklyn Hospital System Serving Poor People Hit by Cyber Attack

Status
Not open for further replies.
P

plat

Level 29
Thread author
Top Poster
Sep 13, 2018
1,793
Content source
https://www.nytimes.com/2022/12/12/nyregion/brooklyn-hospital-cyberattack.html
These hospitals are all in my immediate area, which is a poor and working-class section of New York City. The Administrators ought to be severely ashamed of themselves for not heeding the warnings and securing their systems. (n) Other facilities that serve the poor have not been so affected, not yet anyway.

A Brooklyn hospital group that serves patients in some of New York’s poorest neighborhoods has been battling the consequences of a cyberattack that forced some critical services offline.

The group, One Brooklyn Health, was hit by the attack in late November, officials confirmed. Now, even as cybersecurity experts work to get its three hospitals fully back online, doctors and nurses are forced to rely on methods most hospitals left behind in the 1990s: pen-and-paper patient care.
Click to expand...
 
  • Sad
  • Wow
Reactions: Viking, silversurfer, The_King and 3 others
Andrezj

Andrezj

Level 6
Nov 21, 2022
248
plat said:
The Administrators ought to be severely ashamed of themselves for not heeding the warnings and securing their systems. (n)
Click to expand...
the administrator (both management and information tech staff) role in this is only a small piece of the puzzle:

how do you know that an employee did not cause this ransomware attack by selecting a link in an email, downloading a file, and then launching it?
how do you know that the health group does not subcontract out its information technology operations?
how do you know if there is sufficient budget for proper cybersecurity? (hospitals that serve the poor are notorious for budgets that run in a deficit, with a continuous struggle to protect networks, security is not the priority when there is not enough money in a health care setting).
how do you know if the health group is able to hire sufficient qualified information technology staff?
how do you know that they are not running unpatched server 2008, xp, windows 7 - in some scenarios they cannot be patched.
you do realize that much internet\lan connected health care software is, by design, cannot and never will be updated - not even security patches - ever - such as mri and pharmacy dispensing software?

plat said:
Other facilities that serve the poor have not been so affected, not yet anyway.
Click to expand...
the uk national health service was hit nation wide by a ransomware attack
a local hosptial was hit by a ransomware attack
there are literally thousands of health care facilities that serve the poor that have been hit by cyber attacks
 
silversurfer

silversurfer

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,178
Andrezj said:
the administrator (both management and information tech staff) role in this is only a small piece of the puzzle:

how do you know that an employee did not cause this ransomware attack by selecting a link in an email, downloading a file, and then launching it?
how do you know that the health group does not subcontract out its information technology operations?
how do you know if there is sufficient budget for proper cybersecurity? (hospitals that serve the poor are notorious for budgets that run in a deficit, with a continuous struggle to protect networks, security is not the priority when there is not enough money in a health care setting).
how do you know if the health group is able to hire sufficient qualified information technology staff?
how do you know that they are not running unpatched server 2008, xp, windows 7 - in some scenarios they cannot be patched.
you do realize that much internet\lan connected health care software is, by design, cannot and never will be updated - not even security patches - ever - such as mri and pharmacy dispensing software?


the uk national health service was hit nation wide by a ransomware attack
a local hosptial was hit by a ransomware attack
there are literally thousands of health care facilities that serve the poor that have been hit by cyber attacks
Click to expand...
What the hell is your intention with such a bunch of questions including the answer from yourself :rolleyes:
You shouldn't trying to teach our forum people how the world does work, no need as we are all adults ;)
 
  • +Reputation
Reactions: plat and vtqhtr413
Andrezj

Andrezj

Level 6
Nov 21, 2022
248
silversurfer said:
Yes, I am doing fine. Guess the opposite about you 😝
Click to expand...
very obviously you are not ok, your response to my post is completely inappropriate, disrespectful and disturbed
you should go outside and touch some grass to calm down
the op went straight to blaming the administrators and falsely claimed that no other health systems that serve the poor have been compromised
the questions i ask are basic ones that the op should have thought about before immediately blaming the administrators for the entire situation
 
P

plat

Level 29
Thread author
Top Poster
Sep 13, 2018
1,793
Andrezj said:
how do you know that an employee did not cause this ransomware attack by selecting a link in an email, downloading a file, and then launching it?
how do you know that the health group does not subcontract out its information technology operations?
how do you know if there is sufficient budget for proper cybersecurity? (hospitals that serve the poor are notorious for budgets that run in a deficit, with a continuous struggle to protect networks, security is not the priority when there is not enough money in a health care setting).
how do you know if the health group is able to hire sufficient qualified information technology staff?
how do you know that they are not running unpatched server 2008, xp, windows 7 - in some scenarios they cannot be patched.
you do realize that much internet\lan connected health care software is, by design, cannot and never will be updated - not even security patches - ever - such as mri and pharmacy dispensing software?
Click to expand...
What is your problem, friend? Should I have checked with you first before posting?

There are many posts about various facilities struck by cyber crooks on this forum. This one hit close to home, literally. Try to have a nice day, OK? Take care.

@moderators--pls lock this thread.
 
  • Applause
  • +Reputation
Reactions: vtqhtr413 and silversurfer
silversurfer

silversurfer

Level 85
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,178
Andrezj said:
very obviously you are not ok, your response to my post is completely inappropriate, disrespectful and disturbed
you should go outside and touch some grass to calm down
Click to expand...
What really? I tried to be polite, usually my tone is very rude when people like you trying to be an self-proclaimed expert ;)

Well, it's pretty cold here in Germany today and snowing everywhere, so impossible to find some grass 🤷‍♂️
 
  • Applause
Reactions: plat and vtqhtr413
Status
Not open for further replies.

Similar threads

Gandalf_The_Grey
    • Sad
    • +Reputation
Security News 840-bed hospital in France postpones procedures after cyberattack
Replies
1
Views
906
Security News
Practical Response
Practical Response
Gandalf_The_Grey
    • Wow
    • Sad
    • Like
Hospital Clínic de Barcelona severely impacted by ransomware attack
Replies
0
Views
514
News Archive
Gandalf_The_Grey
Gandalf_The_Grey
Gandalf_The_Grey
    • Sad
    • Like
    • +Reputation
CommonSpirit US nonprofit health system discloses security incident
Replies
2
Views
659
News Archive
upnorth
upnorth

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top