Worrying: Personal information leaked following cyber attack on Ma'an Hayeshua

August 10, 2023   

The Privacy Protection Authority warned the public this evening (Thursday) that there is a concern about a leak of sensitive personal information from the Mayanei Hayeshua Hospital in Bnei Brak - following the serious cyber attack that occurred on Tuesday. According to the announcement, "The Authority wishes to warn the public due to an indication of an information leak that was discovered today, as part of the enforcement process that the Authority opened immediately after the incident. "An initial examination of the incident raised concerns about an information leak, but today it was discovered that this is a real indication of a leak of sensitive personal information. "In light of this indication, the Authority wishes to instruct the public to increase awareness, exercise caution and act in accordance with the rules and recommendations of the Privacy Protection Authority." Below The Authority's recommendations to the general public. The Privacy Protection Authority added: "The authority is continuing the investigation, together with the hospital and is monitoring the incident and the hospital." The Mayanei Hayeshua Hospital announced this evening that the "Ragnar Locker" group is responsible for the cyberattack. According to them, "This group attacked dozens of health systems around the world. The quick and professional response of the hospital teams prevented extensive encryption of the systems." The Ministry of Health, the National Cyber ​​Directorate, and the Mayanei Hayeshua Hospital stated: "Today, concerns were raised that personal information was leaked in the cyberattack at the Mayanei Hayeshua Hospital." According to the announcement, "The hospital teams, in cooperation with the Ministry of Health and the National Cyber ​​Directorate, are examining the nature and scope of the information. At this stage, it is too early to determine. "At this stage, the information has not yet been publicly published and the hospital is preparing for this scenario. As soon as we complete the examination, the hospital will transparently and sensitively update patients." It was also reported that "most of the hospital's computer systems have already been restored to operation and the hospital's medical activities are continuing as usual, while the process of clearing the hospital's systems continues." Yesterday, the Mai'ani Hayeshua Medical Center, in cooperation with the Ministry of Health and the National Cyber ​​Directorate, announced that the cyber attack is in the process of being contained at a satisfactory pace. Some hospital units are gradually returning to work in a controlled computerized manner. The rest of the hospital continues to work manually and provide service to patients. It should be noted that following the cyber attack, the medical equipment was not damaged and there was no impact on the patients at the hospital. However, the medical center's administrative computer systems were encrypted and the attackers demanded a ransom to release them. Teams from the Ministry of Health and the National Cyber ​​Directorate arrived at the hospital and helped handle the incident. The Ministry of Health, together with the hospital, decided not to accept patients to outpatient clinics and imaging centers at the medical center on Tuesday. The statement issued by the hospital reads: "The Mai'ani Hayeshua Medical Center is updating on a ransomware-type cyber event that damaged the hospital's administrative computer systems. The event is being monitored by the Ministry of Health and the National Cyber ​​Directorate and is being handled by the best experts in the field. Currently, it concerns administrative systems only and without any harm to the medical care or the center's patients." Nitzan Amar, the deputy head of the National Cyber ​​Directorate, explained on 103FM the sensitive situation in which the hospitals are: "The attack caused the computer systems to be disabled. The medical equipment was not damaged. The hospital with the National Cyber ​​Directorate and teams from the Ministry of Health are helping to handle the incident, and the incident is currently contained. We are on the ground and our main mission is to restore the hospital to capacity. The incident is currently under investigation; restoring an organization and certainly a hospital to capacity is a matter of weeks." He described the sensitive situation: "In the end, because of the essential services it provides, there are many unscrupulous hackers who take advantage of the fact that the service is very essential in hospitals and can exploit a ransom demand from an organization that is supposed to save lives. They exploit this weakness because there is also a lot of personal information, and such organizations are much easier to blackmail.".