Phishing Attack on German Hospitals Compromises Patient Data
Ludwigslust-Parchim, Germany – A sophisticated cyberattack targeting two hospitals in the Ludwigslust-Parchim district has resulted in the theft of approximately 1.5% of the facilities’ patient data. The attack was detected during the night of February 9-10 and has significantly disrupted operations within the affected hospitals.
Data Breach Details
According to Stefan Sternberg, the district’s landrat (mayor), the stolen data primarily consists of personal information, but it is believed to be fragmented and difficult to piece together. No diagnoses or critical medical records have been compromised, and the hospitals’ main systems remain secure.
Ransom Demand and Response
The attackers have demanded a multi-million Euro ransom for the stolen data, but the district has resolutely refused to comply. Sternberg emphasized that the LUP-Kliniken gGmbH, which operates the affected hospitals, will not negotiate with cybercriminals.
Affected Hospitals and Impact on Services
The attack targeted the Hagenow and Ludwigslust hospitals, part of the LUP-Kliniken gGmbH network. A third location in Crivitz is also affected. While patient care has been largely unaffected, some services have been impacted. MRI and CT scans are currently unavailable after 4 pm, and both hospitals remain inaccessible via email. Sternberg anticipates that full operations will be restored within the next two weeks.
Targeted Infrastructure Disruption
Sternberg believes that the attack was specifically aimed at undermining the district’s infrastructure. "We were able to prevent this," he stated. A crisis response team has been established, and the disaster relief service has assisted in finding rapid solutions to the disrupted technical systems.
Investigation and Previous Incidents
The Landeskriminalamt (State Criminal Police Office) is currently investigating the incident as a case of computer sabotage and data espionage. This is the fourth case of computer sabotage reported in Mecklenburg-Vorpommern this year.
Mitigation and Recovery
The LUP-Kliniken gGmbH has implemented a comprehensive response plan to mitigate the impact of the attack. This includes enhanced cybersecurity measures, data recovery efforts, and ongoing communication with affected patients.
Conclusion
The cyberattack on the Hagenow and Ludwigslust hospitals serves as a stark reminder of the ongoing threat posed by cybercriminals to critical infrastructure, including healthcare facilities. The incident highlights the importance of robust cybersecurity measures, incident response plans, and collaboration between law enforcement and affected organizations to combat these sophisticated attacks.
