It was found that a hospital in Fujiidera City, Osaka, was hit by a cyber attack that seems to be caused by ransom wear and a ransom-requesting computer virus, making it impossible to view the patient's electronic medical records.

The one that seems to have been hit by a cyber attack is "Aoyama Hospital" in Fujiidera City, Osaka. It means that it is in a state where it cannot be done.



In addition, the printers in the hospital were activated all at once, and a large amount of paper with English text was printed, and the characters such as "Pay money" were displayed in English on the personal computer.



At the hospital, medical care such as internal medicine, surgery, and radiology is performed, and since there are 87 beds, we are currently continuing medical care using preliminary data, but the waiting time for outpatients will be longer. Is affected by.



So far, no leakage of patient's personal information has been confirmed, so the hospital is consulting with the police about the damage and investigating the detailed situation.



Tatsuya Yamasaki, the secretary general of Aoyama Hospital, said, "I've heard from the company that requested the restoration work that it is a ransomware-type computer virus called" ransomware. " I'm talking.

"Ransomware" Medical institutions suffer one after another

Cyber ​​attacks by the ransomware computer virus "ransomware" have caused damage to medical institutions one after another.



▽ In 2018, some medical records of patients could not be seen at the municipal hospital in Uda City, Nara Prefecture.


▽ Last year, at the municipal hospital in Tsurugi Town, Tokushima Prefecture, electronic medical records and accounting systems Data and other data were encrypted, and we stopped accepting new patients for about two months, except for maternity departments.



In addition, since entering this year,


▽ in January, hospitals in Kasugai City, Aichi Prefecture have suffered damage such as being unable to access electronic medical records containing information on approximately 50,000 patients.



In response to this situation, the Ministry of Health, Labor and Welfare has revised the guidelines for security measures for medical institutions, which cites measures for "ransomware" as an urgent issue.

"Ransomware" measures

"Ransomware" is one of the cyber attacks that encrypts the data stored on the server, makes it inaccessible from the company side, and demands money in exchange for decryption.



From about three years ago, there are many methods called "double blackmail" that threaten to expose data if you do not pay after stealing confidential company information.



As an intrusion route, there is a method of sending an e-mail to an unspecified number of people and downloading it with an attached file or a URL written in the text, as well as "VPN", which is spreading due to the influence of the new coronavirus. There are also conspicuous cases of targeting vulnerabilities in remote connections.



In addition to updating software and equipment to keep them up to date, specialized institutions perform backups offline and prepare multiple media so that they can be quickly restored in the event of damage. We are calling for measures such as that.