Advertisement

HSE shuts down IT systems after ransomware attack by ‘international criminals’

Ireland’s health service has closed down its IT services following a ransomware attack by “international criminals”, the Tanaiste has said.

The HSE said on Twitter that the temporary shutdown was a “precaution”.

Leo Varadkar said the attack was “very serious” and could affect systems throughout the weekend and into next week.

Alcohol pricing
Tanaiste Leo Varadkar has warned that the ransomware attack could affect services throughout the weekend and into next week (Niall Carson/PA)

He said: “It’s coming at a time when the health service is extremely busy doing lots of other things.

“It’s going to be a very difficult time for the health service.

“I spoke to the HSE this morning and also Eamon Ryan, the minister responsible for cyber security.

“It is a situation that’s still evolving.

“There’s lots we don’t know but it appears to be a ransomware attack by international criminals.

“The problem could run through the weekend and into next week, unfortunately.”

Mr Varadkar said emergency services, ambulance services, GP systems and pharmacy systems are not affected.

But he said there will be “major problems” relating to radiology services, radiation oncology, elective surgeries, and obstetrics and gynaecology appointments.

Mr Varadkar added: “The advice that we’re giving people is that, if you have an appointment, to keep that appointment.

“Don’t contact us, we’ll contact you and let you know.”

Chief medical officer Dr Tony Holohan said the issue had extended to the Department of Health, with staff left unable to access emails.

He said the ability to arrange testing would be compromised, but reiterated the need to stick to the public health advice on washing hands, mask wearing and social distancing.

He said: “Let’s not let it distract us from the basic public health messages. People can still come for testing.

“The HSE is putting in place arrangements whereby the referral process, having been interrupted from GPs, can come directly to walk-in centres to be tested.”

He added: “It interrupts our ability to be able to efficiently for example, organise testing and refer or to generate information and put that back in.

“So I don’t know when that’s going to be resolved.

“I’m not in any position to make a guess as to how long that’s going to take.

“That’s going to impede our ability to know the total number of cases that might arise over the course of a day.”

A tweet sent from the HSE account on Friday afternoon urged all staff to switch off their electronic devices.

It said: “Reminder to HSE staff: do not turn on your work PC or laptop.

“If you have your PC or laptop turned on, please power it off.”

The attack was discovered overnight and has affected all of the HSE’s national and local systems, chief executive Paul Reid said.

Systems for GP and close-contact Covid-19 test referrals are among the services affected.

The online system for making child protection referrals to the child and family agency, Tusla, is also down.

The Master of Dublin’s Rotunda Hospital, Professor Fergal Malone, asked women not to attend appointments scheduled for Friday, unless they are over 36 weeks pregnant, or in an emergency.

Mr Reid said people with outpatient appointments in other hospitals should still attend “unless and until” they hear otherwise from the HSE.

In addition, the Covid-19 vaccination programme has not been affected and people are urged to attend and book appointments as normal.

Mr Reid said: “We have been the subject of a very significant, major ransomware attack.

“It’s a very sophisticated attack. It is impacting all of our national and local systems that would be involved in all of our core services.

“We did become aware of it during the night and have been acting on it straight away. The immediate priority is obviously to contain this.”

Coronavirus – Wed Apr 7, 2021
HSE boss Paul Reid said the health service’s IT systems have been subject to a ‘significant ransomware attack’ (Brian Lawless/PA)

Mr Reid told RTE’s Morning Ireland the health service was hit by a “human operated ransomware attack”, where hackers gain access to data and then seek a ransom for it.

He said no ransom demands have yet been received.

The HSE shut down many of its major systems as a precautionary measure and is being supported by national cyber security teams, including Gardai, the defence forces and third party support teams.

“As the morning progresses we’ll get greater clarity on the issue and greater clarity of the impacts and greater clarity of next steps we are taking,” Mr Reid added.

He said the coronavirus vaccination programme is unaffected.

“I do want to reassure everybody this morning that the vaccination programme continues.

“It’s not impacted,” he said.

“So everybody should still come forward.”

He added that life-saving equipment, such as that used in intensive care units, has also not been affected.

“This is more or less information technology systems and transferring information across networks,” he said.

The Rotunda’s Prof Malone said: “There’s no problems for patient safety.

“But, as a precaution, we’re asking all patients who have appointments today to not attend the hospital unless it’s an emergency, or unless they’re 36 weeks pregnant or over.

“All equipment is all absolutely operational and fine.

“Computers logging into electronic healthcare records is the issue, and the ability to access patient demographics, things like that, computer-based systems.

“They’ve all been taken offline as a precaution.

“We have systems in place to revert back to what you might call old-fashioned paper-based record-keeping.

“But, as you can imagine, when a new patient arrives at the front door of the hospital, traditionally you type in her name into a computer and get all of her details.

“That can’t happen.

“So we have to do that by paper, as patients come through the front door, (so it) will be much slower than normal.”

The National Maternity Hospital in Holles Street also warned of “significant disruption” due to the attack.

Liz Canavan, assistant secretary general at the Department of the Taoiseach, said: “Tusla systems are also currently not operating and this includes email, internal systems and the portal through which child protection referrals are made.

“Again, this measure is for security reasons, as the agency is hosted on the HSE ICT network.

“Any person wishing to make a referral about a child can do so by contacting their local Tusla office in their area.”