Cybercriminal group claims responsibility for ransomware attack as hospital CEO says recovery will take weeks
CBC
Twelve days into a ransomware attack that has upended health-care services at five hospitals in southwestern Ontario, a cybercriminal group claimed responsibility in an online blog describing how the attack happened and what it says are the millions of private patient records it has stolen.
In a report to Windsor Regional Hospital Thursday, CEO David Musyj said the hospital is slowly getting back on track, working hard to restore services. He noted that although the impacted hospitals "closely examined" the ransom demand from the cybercriminals, they decided against paying it.
"We knew ... that we could not trust the promise of a criminal to delete this information," he said.
"We learned that payment would not speed up the safe restoration of our network."
It's the first time Musyj has spoken about the attack and his message served as a counter to the claims of the cybercriminals, who bragged about the extent of the damage in an online blog.
After the hospitals refused to pay, the hackers followed through on their threat of releasing a portion of private health information.
Details about that exposed personal information, along with the cybercriminal group that has claimed responsibility for the attack, have been released in an article from DataBreaches.net — a website run by a formerly licensed health-care professional who lives in New York State.
CBC News spoke with the author of the website and has agreed to keep them anonymous to protect their safety.
The author, who goes by the pseudonym Dissent Doe, says they don't have expertise in cybersecurity, beyond having reported on the issue in their online blogs since 2006.
CBC News has verified Dissent's identity. Brett Callow, a threat analyst for anti-virus software company Emsisoft, says while the site and Dissent have a track record of reliability for its reporting on cyberattacks, the specific claims hackers make to it should be taken with some skepticism.
Multiple police organizations, including INTERPOL and the FBI, continue to investigate the cyberattack that stalled essential health-care services for thousands of people in Windsor-Essex, Chatham-Kent and Sarnia. The attack on the hospitals' IT provider TransForm forced internal health systems to be shut down at all five hospitals, causing staff to resort to using paper charting.
Since the attack began, cancer patients have had to receive care at other hospitals in the province, staff payroll has been disrupted and, as recently as Wednesday evening, personal health information has been published on the dark web.
According to Dissent's reporting on DataBreaches.net, the group that claimed responsibility for the attack is called Daixin.
Dissent says they don't know where the group is based or how many people are behind the operation.
A suspended Moncton structural engineer faces more lawsuits alleging design flaws in buildings that require repair.
Sajjade Tugano has come a long way since he first set foot in Chibougamau, six hours north of Quebec City, in the depths of winter in November 2021.
A national mentor-based hockey organization that helps marginalized youth through the sport is paying tribute to one of its members and youngest coaches.
After months of asking the City of Saskatoon to do more to solve its homelessness crisis, advocate David Fineday took to the stand at city council Tuesday.
A community organization wants to breathe new life into a historic building in Regina.
Some Prince County residents are walking away with more answers after attending Tuesday night's public information session in Albany, P.E.I., on the Wejipek Wind Project.
After just a few months of using vape detectors in a couple of bathrooms, a B.C. high school principal says it's reduced vape use in those areas to basically zero.
Burlington MP Karina Gould gets boost from local young people after entering Liberal leadership race
A day after entering the Liberal leadership race, Burlington, Ont., MP and government House leader Karina Gould was cheered at a campaign launch party by local residents — including young people expressing hope the 37-year-old politician will represent their voices.
Anold Mulaisho was born intersex and wonders where they fit in, in the wake of U.S. President Donald Trump's executive order for the United States to recognize only two sexes, male and female.
WARNING: This story contains references to suicide.
Subway service is down on Line 1 between Sheppard West and Lawrence West due to a broken power rail, the TTC said Wednesday morning.
A long-term care home in Toronto's Yorkville neighbourhood has cleared one more hurdle to add desperately needed beds to its property, a move that's been praised by housing advocates but opposed by locals concerned about the impact on the neighbourhood.
A Charlottetown resident is calling on the P.E.I. government to do more to protect homeowners after reading about a recent oil spill very similar to one on his Montague property 20 years ago, which he says ruined him financially.
WARNING: This story includes details of abuse.
Two years after Foreign Affairs Minister Mélanie Joly declared she was taking the unprecedented step of moving to confiscate millions of dollars from a sanctioned Russian oligarch with assets in Canada, the government has not actually begun the court process to forfeit the money, let alone to hand it over to Ukrainian reconstruction — and it may never happen.
Alberta business and oilpatch leaders are returning home from Washington this week after the U.S. presidential inauguration festivities — and gritting their teeth after a roller-coaster of emotions.
Youth workers in Toronto's Jane and Finch area are flipping the script on negative stereotypes about their communities with a new fundraising campaign that offers anti-bias training in exchange for donations to bolster their programming.
In a sudden move that came late Tuesday evening, city officials rolled out cots and temporarily opened a warm building in east London as frigid temperatures continued.