Several VIPs’ data was hacked by a malicious group and the attackers demanded a ransom of Rs 200 crore in cryptocurrency. The network of AIIMS is being sanitized. It is a big concern for the medical fraternity and the entire healthcare industry.
Data of several VIPs
During a cyber attack, the servers of All India Institute of Medical Sciences (AIIMS) in New Delhi were hacked on November 23. Data of several VIPs and bureaucrats were reportedly leaked from the hacked server. The cyber criminals demanded a ransom of 200 cr crypto to unlock the encrypted files and data. This cyber attack has affected the services of the premier healthcare institute.
Cybercrime is being investigated by the Home Ministry, the India Computer Emergency Response Team (ICERT), and the Delhi Police. The National Informatics Centre is also engaged in cleaning AIIMS servers and restoring the e-hospital database. The data of up to three or four crore patients may have been compromised by the attack.
AIIMS has notified all its departments about the ransomware attack and requested them to make backups. The computer facility is also working on a plan to sanitize the network and make it virus-free. Currently, the AIIMS network antivirus has been installed on around 1,200 computers.
Hackers demand a ransom of Rs 200 crore in cryptocurrency
Despite the fact that it’s been six days since the servers of the All India Institute of Medical Sciences (AIIMS) in Delhi were attacked by ransomware, the hospital is yet to recover. According to reports, the hackers demanded a ransom of Rs 200 crore in cryptocurrency in exchange for retrieving the data of several VIPs. However, the AIIMS authorities denied receiving such a demand and said they have no intention of paying the ransom.
The institute has taken several measures to counter the attack, including sanitizing the entire network. The anti-virus solution has been installed on a large number of computers and there is a 24-hour scanning activity for malware and other malicious elements. In addition, the hospital has also blocked internet access on all its computers. It is also using a new set of Standard Operating Procedures to keep the systems operational.
Despite a large number of servers, the restoration process is still taking time, mainly due to the sheer volume of data being stored on them. The institute has also sought assistance from the National Informatics Centre (NIC) and the Indian Computer Emergency Response Team (ICERT) to carry out the restoration process.
AIIMS network is being sanitized
Almost six days after a ransomware attack struck AIIMS Delhi, the e-hospital has still not been reinstated. This has led to errors in handling emergency cases and long queues for appointments. The attack also affected the billing at inpatient departments, laboratory reports, and smart labs.
A team of security agencies is now working to restore the e-hospital system. Four physical servers have been set up to carry out the sanitization operation. Twenty out of fifty servers have been scanned so far. The process is still ongoing, 24 hours a day.
AIIMS officials say they are confident that the online facilities will be restored in three to four days. They have begun the process of sanitizing the network by installing anti-virus solutions on almost all the computers. The next step is to format the PCs of the staff. They expect the e-hospital to be re-instated in three to four days.
The National Informatics Centre (NIC) has also been working to restore the network. The NIC team has scanned the e-hospital servers and is now cleaning additional servers.
AIIMS admissions, discharges, and transfers are to be done manually
Earlier this week, All India Institute of Medical Sciences (AIIMS) in Delhi faced a cyber attack, which has forced the hospital to operate in a manual mode. All of the institute’s digital services, including its e-hospital, were shut down. The hospital also said that it was unable to check patient reports stored digitally, and was not able to generate barcodes for samples.
According to a resident doctor, many operations are being performed manually. Samples have been collected manually, and death/birth certificates are prepared manually.
The hospital said that it was running in manual mode since the attack and that it was taking some time to restore all of its data. The hospital also said that it was working to clean its IT servers.
The hospital’s servers were attacked by suspected Chinese hackers. After the attack, AIIMS reported the incident to the Delhi police. It said that its main server was compromised. Earlier, AIIMS’s e-hospital, smart lab, and appointment system were all shut down. The hospital also said that the backup server was compromised.