Cyberattacks Like The One On DCH Are Increasingly Common
When cyber criminals attacked DCH Health System last week, they encrypted computer files and restricted access to medical systems. Brad Fisher, DCH spokesperson, says it had a big impact.
“When those things are not available, and the system is built on having those to deliver the care, it’s really difficult,” Fisher says.
In response to the attack, DCH stopped accepting all but the most critical new patients at its three hospitals located in Tuscaloosa, Northport and Fayette, and employees reverted to using paper charts and records.
After paying the hackers to obtain a decryption key over the weekend, hospital officials are now working to fully restore operations. Fisher says the attack was an eye opener.
“If you’re in a hospital, be afraid. Be very afraid,” Fisher says. “It’s not good. It’s not a good thing at all.”
Ransomware attacks are the most significant cyber threat to hospitals across the country, according to John Riggi, a 28-year veteran of the FBI and now senior advisor for cybersecurity and risk at the American Hospital Association.
“Ransomware has a direct impact to interrupt patient care delivery operations and potentially patient safety,” Riggi says.
He says nowadays, because hospitals are increasingly wireless, a ransomware attack can shut down everything from CPAP machines and blood pressure monitors to the entire emergency room.
In addition to ransomware, hospitals also face potential cyber threats that target sensitive patient information and medical data. Last week, UAB Hospital announced that protected health information for about 20,000 patients was exposed and possibly viewed by hackers, after a phishing attack in August. Officials say criminals were trying to re-direct employee payroll deposits.
Cybersecurity expert John Riggi says a hospital’s best defense is prevention. Since ransomware and other malware typically enter a system via an email attachment or a link, employee education is key. He adds that hospitals should keep offline backups and regularly address software vulnerabilities, though that can be a challenge.
“Because hospitals operate 24/7, they can’t shut down overnight to deploy patches in their systems, and the systems are tremendously complex,” Riggi says.
This year, he says, there has been a dramatic increase in targeted cyberattacks on hospitals and other organizations. But at the same time, there is a growing awareness of the issue. Riggi says hospitals across the country now consider it a top risk. It just so happens that October is Cyber Security Awareness Month.
This is not your grandmother’s ‘Hedda’
Tessa Thompson schemes, manipulates and awes in Nia DaCosta's dazzling adaptation of Hedda Gabler.
Boo to spooky chocolate prices! It’s the year of chewy, fruity Halloween treats
Sales of non-chocolate candy are growing faster than those of chocolate. With cocoa in shortage, manufacturers are changing pack sizes, adding fillers and dipping candy in "white creme."
No historic museums were harmed in the making of this quiz. Can you score 11?
From brazen jewel heists to internet meltdowns, this week brought travesties galore.
It’s supposed to be payday for many federal workers. Instead, they’re getting nothing
Roughly 1.4 million federal workers are going without pay due to the government shutdown. About half of them are furloughed, while the other half has been deemed essential and is working without pay.
Not sure how to support a friend with cancer? Survivors have advice
To help a loved one with cancer, think about what you're good at — and what they need. Are you organized? Plan their meals. Detail-oriented? Go with them to appointments. Survivors share ideas.
As strikes on alleged drug boats grow, so do questions about their legality and goal
President Trump says he has authority to carry out the strikes, but international experts are asking if the attacks are truly about countering narcotics or instead toppling Venezuela's Nicolás Maduro.


