Oklahoma-based Saint Francis Health System recently announced data breach when its server was accessed by an unauthorized party. The reports suggests that patient information was accessed by the outside intruder. The facility also mentioned it received an email on September 7, 2016 that the incident took place. Spokesperson Sevan Roberts said that there was a demand for payment for the information by the anonymous individuals/individual.
“Saint Francis decided not to act on the demand because payment does not guarantee or prevent data from being disclosed,” said a Saint Francis statement. “The health system understands the importance of protecting our patients’ information, and deeply regrets that this occurred.”
Roberts also added that the information on the server affected approximately 6,000 names and addresses. Social Security numbers, driver’s license and financial information were not present on the server. After the incident, the server has been disabled. Facility is working with local law enforcement.
“Saint Francis has also been working with a leading forensics firm to investigate this incident and look for ways to enhance our existing security measures,” the statement read. “Notification letters are being mailed to those individuals who may have been affected and complimentary participation in identity monitoring service is provided.”
Is it a good idea to negotiate the ransom?
Ransomware is one of the threat looming over different sectors of industries. All types of malware attack make the news. Malware is a piece of software that encrypts your data. Data is unencrypted when ransom demand is met. The intruder provides the key to decrypt their data generally after the payment.
Many facilities pay ransom because it is safest and quickest way. The example includes many facilities like Hollywood Presbyterian Medical Centre. Allen Stefanek, the Chief Operating Officer said that the ransom was paid, stating that “the quickest and most efficient way to restore our systems and administrative functions was to pay the ransom and obtain the decryption key. In the best interest of restoring normal operations, we did this.”
Alertsec customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Check Point Full Disk Encryption.