Hollywood hospital pays $17K ransom to hackers after computer network attack

A Los Angeles hospital paid a ransom in bitcoins equivalent to about $17,000 USto hackers who infiltrated and disabledits computer network, the medical centre's chief executive said Wednesday.

It was in the best interest of Hollywood Presbyterian Medical Center to pay the ransom of 40 bitcoins currently worth $16,664 after the network infiltration that began Feb. 5, CEO Allen Stefanek said in a statement.

The facility was without access to email, digital patient records and some internet-connected medical devices following a cyberattack that saw hackers take its computer networks clear offline before demanding more than $5 million US in ransom.

NBC LA reportsthatan "internalemergency" was declared after staff began experiencing"significant IT issues" aroundFeb. 5.

The network was back in full operation Monday.

"The quickest and most efficient way to restore our systems and administrative functions was to pay the ransom and obtain the decryption key," Stefanek said. "In the best interest of restoring normal operations, we did this."

Patient care was not affected by the hack, and there is no evidence any patient data was compromised, Stefanek said.

It did, however, result in emergency room delays,911 patientsbeing diverted toother hospitals and the need for allregistrations and medical records to be written by hand on paper.

Staff members at the private 434-bed hospital spoke tovarious local news outlets about additional problems caused by the network shutdown.Oneunnamed doctor whotoldNBC4 Newsthat departments are "communicating by jammed fax lines" because they have no emailaccess.

The doctor also said that computers used for tasks like lab work transmittal,documentation, sharing of X-raysand CT scans had been taken offline, and thatsome outpatients missed treatments due to the fallout of the attack.

Patients were told to pick up medical test results in personas opposed to having them delivered electronically, according to BBC News.

While Stefanek described the attack as random, he didn't expand on thetype of malwarebeing used,how the hospital'ssystem became infected or how muchmoneywas being for access to be restored.

Computer forensics expertEric Robi, whoseclients include both the State of California and the U.S. federal government, told FOX 11 Los Angeles thathackers asked Hollywood Presbyterian Medical Centerforapproximately9,000 bitcoins (just over $5 million) in relation to aransomware attack.

Several employees at the hospital echoed this while speaking to NBC4, reportedly saying that "hackers would send back the key codes to restore the system" in exchange for abitcoin ransom.

"I don't know why they chose a hospital specifically," Robi said. "It's an unfortunate hack, a ransomware hack where they're asking for money in exchange for unlocking records at the hospital."

After working on half a dozen similar attacks against LA businesses over the past year, Robisaid that "most of the time it's cheaper to pay the ransom than to pay to fix the problem" though he did note that this particular ransom was higher than any he'd seen before.

• Ransomware: What you need to know
• Bitcoin ransom demanded by hackers of Calgary wine store
• Ransomware, bogus emails from your 'boss' markgrowingskill of cyber-criminals

Ransomware, aform ofmalicious software that seeks out your computer files and locks them until you pay a fee,is not a new problem amongindividuals and corporations.

A NovemberCBC News investigation discovered that cybercrimes of this nature dupeCanadians out of hundreds of millions of dollars each year.

Two months ago, the RCMP unveiled a new cybercrime strategy aimed at helping local police deal with cases of malware, fraud and similar online threats affectingCanadiansfrom both domestic and global sources but law enforcement officials can only do so much when it comes toransomware in particular,as it stands.

At least twoU.S. police departments reportedlypaid offcyberthieveslast yearafter days of trying to decrypt locked systems, and many victims don't contact thepolice at all. They'd rather pay out the money then risk losing their files especially when those files are of an expensive, irreplaceable, or even life-savingnature.

What happened toHollywood Presbyterian Medical Center may be part of alarger trend predicted for this year by Forrester Research,in whichransomwareis being used to target the medical sector.

Forrester'spaper, released in November, pegged theprimary hacking trend of 2016as "ransomwarefor a medical device or wearable," arguing that it would be relatively easy forcybercriminalsto targetvital health devices and then threaten victims with their own lives for ransom money.

Indeed, many medical devices have been found to have serious cybersecurity flaws.

Motherboard cites a2013 DHS advisory warningof300 medical devices withfactory-set passwords thatcannot be changed by users but can be discovered by anyone online who downloads the device's manual.

"Medical deviceransomwarewould be a modern form of highway robbery with lives at stake," wrote Motherboard of the Forrester prediction."Chest pains send you into convulsions, then stop abruptly. Is something wrong with yourpacemaker?As you pant for breath, a message pops up on your phone. 'Want to keep living? Pay us a ransom now, or you die.'"

TheHollywood Presbyterian Medical Center investigation is ongoing, FBI spokeswoman AriDekofskytold Reuters.She declined to release further details.