THE HSE IS continuing to grapple with the fallout of a ransomware attack on its IT systems, and is bringing as many computer services back online without compromising security or private data.
Its unclear what exact amount has been sought by the hackers, but numerous Government ministers including Justice Minister Heather Humphreys this morning have said that a ransom will not be paid, in line with State policy.
Officially, the Government and HSE have not confirmed what information the hackers have gained access to; it could be patient, staff or administrative data that was compromised.
HSE pay roll, and PPS numbers
Senior sources told The Journal that the private, personal information belonging to potentially tens of thousands of Irish people could be packaged up and sold off on the darkweb to the highest bidder unless some form of deal is brokered with the hackers.
If this were the case, access could be gained to PAYE records and Revenue services. A source said: In an ideal world, wed all get new online identifications and PPS numbers.
Since the HSE was made aware of the attack on Friday, around 85,000 computers have been turned off as a precaution, and 2,000 different IT systems are being cleared and assessed one-by-one by cyber security teams.
The HSEs Chief Clinical Officer Colm Henry told RTÉs Morning Ireland that progress continued to be made to bring hospital services back, and that voluntary hospitals may be able to resume diagnostic imaging shortly.
The ordering of tests, the visualization of images,the comparing of results and the conveying of those results is completely linked to IT Its not the same as before.
He said that the HSE had no choice but to close down systems that were corrupted, so that they wouldnt corrupt other systems. HSE staff are due to be paid on Thursday; Dr Henry said its hoped that a contingency plan will ensure staff are paid on time.
Services affected
The services that have been most impacted by the security response to the cyber attack are: radiology (X-ray, MRI and CT scans), paediatric services, maternity services, and outpatient appointments in hospitals located in the west.
As the voluntary hospitals are on a separate IT system to the HSE, they have been less severely impacted than other hospitals, and may return to normal service faster.
There is some sign of hope with some of the bigger voluntary hospitals, but this will take a considerable period of time and there will be undoubtedly disruption that will mount in the coming days and weeks, Dr Henry said.
The Covid-19 vaccination programme and testing regime is largely unaffected, as its a newer, separate IT system. But there are some issues with GP referrals, and Covid-19 test results may have to be received by a phonecall or mail, rather than by email.
The political fallout from the ransomware attack is also continuing: the Joint Committee on Transport and Communications Networks will meet with the National Cyber Security Centre in private session from 9.30am today.
This cyber attack, along with the housing crisis, are expected to dominate Cabinet discussions today, where Covid-19 related issues have been left to one side.
Healthcare systems are hard to protect
Richard Corbridge, who was the HSEs Chief Information Officer from 2014-2017, said that a previous cyber attack against the HSE in 2017 called WannaCry was different: it left data where it is but its encrypted, so it was made inaccessible.
But this latest ransomware is a day-zero attack, meaning they had no prior knowledge of it, and so it evaded its cyber security systems.
There isnt a weakness that wasnt prepared for, its a weakness that wasnt understood, and the data has been taken away.
When asked whether the HSEs older software system made it more vulnerable, Corbridge said that healthcare systems across the world find it difficult to invest in and keep up to the highest possible point of cyber-security protection.
Its not just about machines that you see [clinicians using], its machines thats connected to key healthcare solutions: blood analysers, CAT scanners, X-ray machines. When you need to replace the operating system to keep it up-to-date, to keep it safe from a cyber security point of view, at that point youve also got to consider the replacement of things like X-ray machines, CAT scanners.
You can run into millions of euro when you need to keep simple IT systems up-to-date in healthcare systems, and that becomes really, really difficult to stay on top of.
He said that in 2017, the HSE IT security system is a smaller resource than perhaps it should be, and that cyber security measures in place in the NHS are still in their infancy in the HSE.
#Open journalismNo news is bad newsSupport The Journal
Your contributions will help us continue
to deliver the stories that are important to you
Support us now
Around 3-7% of a healthcare services total budget should be sent on IT systems, a US cyber security report recommended; former HSE chief Tony OBrien said that a quarter of the recommended amount is spent on the HSEs IT systems.
It is very expensive, and its hard to show the benefit of it as a patient benefit when there are so many other financial needs.
The HSEs IT systems were hit by a Conti ransomware attack, where attackers enter into a computer system, study how it works, and encrypt the private data before announcing their attack to the victim and demanding a ransom for it not to be published online or sold off to a third party to be used for ill-intent.Â
There have been reports that the hackers could have gained access to the HSEs IT system up to two weeks before the attack was made known to authorities on Friday.
