1703766303
“Large companies are targeted more often,” said Minister Christophe Collignon
These “ransomware” cyberattacks are legion in Belgium and especially France. Within the CHC Health Group, the vigilance of two IT specialists will help prevent the worst. After a problem with a server is identified, a crisis meeting with key IT stakeholders is organized within half an hour. “We know that the worm is in the fruit,” emphasizes Frédéric Pampalone, Chief Information Security Officer (CISO). “We have hackers who have made a little more than one attempt. They had been the masters of the house, so to speak, for almost 48 hours. We took quick action to contain the attack as soon as possible,” he added.
“It has been decided to cut off the Internet and all links directly from the CHC Health Group.” A measure that helps avoid disasters. Both the CHC MontLégia clinic in Liège and the 27 other locations can continue to operate. There are some slowdowns or disruptions, but this cyberattack does not affect the functionality of the computer system: its networks, servers and applications continue to run. The continuity and safety of patient care is always guaranteed.
gull
The hackers stole passwords from two people, infiltrated part of our systems, but have not switched to encryption since the internet shutdown.
A year after this controlled cyber attack, “today we can say that we were lucky that we came close to the catastrophe,” says Claudio Abiuso, the operations manager. “The hackers stole passwords from two people, infiltrated part of our systems, but have not switched to encryption since we shut down the internet. Without taking control, they were only able to manage the first step of their process and not limit us.” Management wants to be humble and, above all, grateful for the work of their teams.
“It took months to secure and increase our defensive measures,” explains the IT security manager. “Before this attack we had a certain openness towards the web, whereas today we only open what is necessary and only what has proven to be safe.” The IT system director called on certified private providers to further improve security .
gull
Our passwords have been strengthened through a multi-step industrial change to increase security. It is forbidden to connect USB sticks to your computer or even use your 4G GSM to use the Internet on your computer.
The hospital, like any building, protects itself from cyberattacks in two ways: people and technology. On the one hand, it is about making employees aware of the topic of “computer hygiene”. “We have already launched awareness campaigns, but we have made our 6,000 employees even more aware,” emphasizes Frédéric Pampalone. “With a best practice guide for employees: Our passwords have been strengthened through an industrial-scale change with multiple steps to ensure security has been increased. It is forbidden to connect USB sticks to your computer or even use 4G on your mobile phone to use the Internet on your computer. Security through technology includes updating software and installing firewalls and antivirus programs. After the cyber attack, a significant investment was made in IT security – 3 million euros were planned over five years. “This investment, of which federal funding only covers a fifth, enables us to react in machine time, i.e. quickly.”
“A cyber attack is monetary. Our data cannot be restored”
We know it: Hospitals are an easy target for hackers. Why ? “First we are a bird to the cat. Because of the history of medical IT, there is a little less security by design,” explains the IT security manager. “A cyber attack is monetary. Our data cannot be restored. If they are lost, they are lost forever. Therefore, in the event of a cyberattack, it is in the interest of people’s health to make the data accessible again and hope that it is not altered. “Which CHC Health Group should not have done as nothing was stolen.
“We will never have NATO’s security system because it is unaffordable,” admits Claudio Abiuso, the head of operations. “We remain vulnerable like everyone else. Thanks to our extreme vigilance and safety culture, we always had the cards in hand. Without this structurally anchored level of vigilance, I don’t think we would be speaking with any level of composure today. But that doesn’t mean we’re naive.”
Dozens of attacks are thwarted there every day
At CHC Health Group, the infection is well contained. The fact is that dozens of attack attempts are thwarted there every day. “Just last week I was personally the target of a phishing attack and so today everyone needs to be vigilant of cyber attacks, from the CEO to the smallest working employee who has access to the network.”
For its part, the hospital management calls for “appropriate training and sensitization of all employees of a company or institution”. “The main danger comes from people,” repeats the operations manager. “The CHC’s 6,000 employees form a bulwark of security. Everyone must be a brake, a barrier, a bulwark of security, aware that they can be the possible failure in the entire system.”
#lessons #learned #cyber #attack #healthcare #group #CHC #Liège #year #management #revelations