Week 2 Case study 4: Ransomware attack (Pacharapol)

[admin]

Please read your friend’s report and provide comments on “Are there any other preventive measures to avoid the attack?”.

Case study 4 : Ransomware attack on fetal diagnostic lab breaches 40,800 patient records

(https://www.healthcareitnews.com/news/ransomware-attack-fetal-diagnostic-lab-breaches-40800-patient-records)

 

1.Provide a brief description of the story.

• The Fetal Diagnostic Institute of the Pacific (FDIP)
• June 30, 2018
• Unnamed randomware

 

2.What is/are the impact of this data breach? Consequences of the data breach.

• The data of both past and current patients were impacted by the breach, including names, dates of birth, addresses, medical data and other types of information.
• FDIP doesn’t store the financial data of patients, like credit card numbers.
• Potentially breached the data of 40,800 patients

 

3. How did the data breach occur?

• They were able to successfully remove the virus, clean the system and confirm no malware remained.
• FDIP had backups in place that they maintained for contingency and were able to restore the impacted data.
• The cybersecurity firm also installed further protections to better prevent future incidents.

 

 

4. What should be the main cause of the data breach? Provide a brief explanation of the cause of data breach, such as phishing, ransomware, HIPAA violation, database misconfiguration, human error, third-party vendor error)?

 

• Unnamed randomware

 

5.How could you prevent this data breach attack?

• Update the software and hardware of security loopholes
• Backup data at a regular interval
• Strong passwords, multiple factor authentication
• Culture of information security. Regular education and reminders
• Prompt response to the security breaches
• Organizations should not pay hackers the ransom, the right way to restore data is through offline backups.

 

 

• This topic was modified 3 years, 11 months ago by admin.
• This topic was modified 3 years, 11 months ago by admin.
• This topic was modified 3 years, 11 months ago by admin.
• This topic was modified 3 years, 11 months ago by admin.
• This topic was modified 3 years, 11 months ago by admin.
• This topic was modified 3 years, 11 months ago by admin.

[Chalermphon]

important ways to protected Ransomware attack
first stage is up to date windows and protection software.
secondary stage restore data is through offline backups.
third stage is train employees about cyber security.
last develop server to hign level such as cloud server systems.

[Pyae Phyo Aung]

To protect from ransomware attack:
-Do not let unknown devices(removable devices) insert into your PC that can be a source of infection.
-Do not try do download pirated software.
-Enable auto-update for Window cumulative update and virus definition.
-Filter spam mail.
-Configure firewall protection well.

[tullaya.sita]

– Promote cyber security including knowledge about phishing email to prevent entry of ransomeware
-Important data in the computer should be back up regularly

[Ameen]

Ransomeware is spreading through the phishing emails. The critical purpose of ransomware is to deny access to get paid. Sometimes the data itself does not value the hacker in terms of commercial. The availability of data by the user is what can make money hor hackers. The server administration should do a regular backup of the data to make sure the user can access the data from an alternative server. This is included in the recovery plan/business interruption plan/risk management plan.

[w.thanachol]

Also, we should set up the firewall for protecting a network and avoid using the system as administer authority.

[Author]

Posts