SickKids Hospital systems back up and running after ransomware attack - Action News
Home WebMail Friday, November 22, 2024, 03:55 PM | Calgary | -10.4°C | Regions Advertise Login | Our platform is in maintenance mode. Some URLs may not be available. |
Toronto

SickKids Hospital systems back up and running after ransomware attack

The Hospital for Sick Children in Toronto says most of its priority systems are back after a ransomware attack affected its operations.

Hospital says it did not use free decryptor offered by group and has not paid ransom

A sign of the SickKids Hospital sign, with people walking past it.
The Hospital for Sick Children (SickKids Hospital) at the end of November 2022. Dr. Ronald Cohn, president and CEO of the hospital, said in a release Thursday that about 80 per cent of the hospital's priority systems have been restored. (Michael Wilson/CBC)

The Hospital for Sick Children in Toronto says most of its priority systems are back after a ransomware attack affected its operations.

Dr. Ronald Cohn, president and CEO of SickKids, said in a release Thursday that about 80 per cent of the hospital's priority systems have been restored.

He saidthe cyberattack that began on Dec. 18 was dealt with relatively quickly with minimal disruptions to patients and
families.

On Saturday, LockBit, a ransomware group the U.S. Federal Bureau of Investigation has called one of the world's most active and destructive, issued a brief apology and offered SickKids a free decryptor to unlock its data.

Cohn says the hospital did not use the decryptor, it has not paid any ransom and its technology team is working to restore the remaining systems.

Most teams no longer using downtime procedures

He says patients and families are unlikely to experience any significant impacts to their care and most of the hospital's clinical teams are no longer using downtime procedures.

"I am very thankful that we have been able to call the Code Grey All Clear relatively quickly with minimal disruptions to patients and families," Cohn said.

"Without the extremely hard work of our staff and expertise of external advisers over the holidays, we would not have been able tolift the Code Grey as efficiently as we have.

"I want to express my deepest gratitude and thanks to our staff, patients, families and community partners for their patience andsupport, as well as the broader community for the overwhelming offers of assistance and expertise over the past two weeks."

Arrest made in October for participation in group

Cohn said the investigation into what happened is ongoing.

He said the hospital called the Code Grey when the cybersecurity attack was first discovered on Dec. 18 and initiated its plan to deal with it, including consulting third-party cybersecurity experts.

Cohn said the hospital's electronic medical records were not affected.

LockBit has been connected to recent cyberattacks on municipalities in Ontario and Quebec, experts say, and a Russian-Canadian citizen was arrested in October for his alleged participation in the group.

U.S. officials allege the group has made at least $100 million in ransom demands and extracted tens of millions from victims.