Aiims: Cyberciminals hacked AIIMS’ servers, encrypted 1TB-plus hospital data: MoS Chandrasekhar

Aiims: Cyberciminals hacked AIIMS’ servers, encrypted 1TB-plus hospital data: MoS Chandrasekhar

India’s largest medical institution, All India Institute of Medical Sciences (AIIMS), was hit by a ransomware attack late last year. The attack paralysed computer-run services at the government-run hospital for over 15 days. The hospital was forced to switch to manual mode. With the server down, the outpatient and inpatient digital hospital services, including smart lab, billing, report generation and the appointment system, were badly affected.
The union minister for state for electronics and information technology Rajeev Chandrasekhar has shared a written response with the Parliament on the AIIMs attack based on the probe being carried out by various government agencies. “As per preliminary analysis, 5 servers were compromised in the information technology network of AIIMS by unknown threat actors due to improper network segmentation, which caused operational disruption due to non-functionality of critical applications,” the MoS said in the written reply to Rajya Sabha, adding “CERT-In and other stakeholder entities have advised necessary remedial measures.” The ransomware attack led to encryption of approximately 1.3 terabytes of data, informed the minister.
The minister was responding to a query raised by Bharatiya Janata Party’s (BJP) Sushil Modi, who requested for details on the quantum of data that was compromised during the AIIMS cyber attack in 2022. On the question of the number of cybersecurity incidents reported in the country in the last five years, Chandrasekhar informed that 4.5 million cases were reported and tracked during the said time period.
AIIMS cyberattack probe
The AIIMS servers were hacked for the first time on November 23. A case of extortion and cyber terrorism was registered by the Intelligence Fusion and Strategic Operations (IFSO) unit of the Delhi Police two days later.

Police registered a case of extortion and cyber terrorism. The cyber attack is being jointly probed by several investigative bodies including — the CERT-in, MeitY, IB, CBI, NIA, Delhi cybercrime special cell, Indian Cybercrime Coordination Centre, National Forensic Sciences University and National Critical Information Infrastructure Protection Centre.

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *