时间:2024-09-20 08:57:56 来源:网络整理编辑:知識
The ransomware attacks spreading across at least 99 countries on Friday are the type of attack that
The ransomware attacks spreading across at least 99 countries on Friday are the type of attack that could one day kill someone.
That sounds like hyperbole, but this attack froze and disrupted computers inside many National Health Service hospitals in the United Kingdom, and it's not hard to see how an attack on hospital computer systems affects patient care or, at the very least, forces patients in need to find help elsewhere as hospital staff scramble to get vital systems back online. That type of disruption, combined with a person faced with a life-threatening condition, has the potential to result in the loss of life.
SEE ALSO:Mysterious bots flood the FCC with fake anti-net neutrality commentsCybersecurity experts have long used the phrase "where bits and bytes meet flesh and blood," which signifies a cyberattack in which someone is physically harmed.
There's no indication that someone was harmed on Friday as a result of this particular attack. But UK hospitals were forced to redirect patients from affected hospitals after a ransomeware virus spread through hospital computers, locking them down and demanding bitcoin payment in exchange for the return of the information contained in those computers.
Screenshot of apparent ransomware attack message sent to NHS England trusts https://t.co/jODkWomGPA pic.twitter.com/uc2HlGH9yM
— BBC Breaking News (@BBCBreaking) May 12, 2017
Staff also asked that patients not come in unless they were experiencing an emergency. Some hospital staff couldn't access patient records, and others had to cancel appointments.
The scale of this attack is unusual, but the type of attack is not. It's happened before -- to hospitals in London in January, for example -- and it's almost certainly going to happen again and again.
Joshua Corman, who sits on the Health Care Industry Cybersecurity Task Force, which falls under the Department of Health and Human Services, paints an abysmal picture of the state of cybersecurity at hospitals around the United States. According to him, around 85% of U.S. hospitals don't have a single full-time cybersecurity expert on staff. Even if they did, that cybersecurity expert would often be helpless against ransomware attacks of the sort the world saw on Friday. Hospitals often run on comically outdated computers that are vulnerable to a range of unpatchable exploits, and those computers are often networked without the proper security precautions.
"Even though these are very avoidable things, like patching Microsoft, if there's no one doing them...then yo have this very rich soil for these attacks to take root," Corman said.
Part of what makes Friday's ransomware attack so worrisome is that it did a ton of damage without much sophistication. It appears to have started just like most such attacks, by sending malicious documents around and waiting for folks to open them. Once opened, this attack installs a ransomware known as WannaCry, which locks down the infected computer and demands Bitcoin in exchange for a return to normalcy. At that point, WannaCry spreads to connected Windows computers through a Windows SMB Server vulnerability. Microsoft released a patch for that vulnerability on March 14, but if no one's updated their computers since then, those computers remain vulnerable.
"There's never going to be any shortage of unpatched systems or legacy systems that cannot be patched," said Jim Walter, a senior research scientist at Cylance, which develops anti-virus software. "What you see today is just the latest in the ongoing trenchant behavior we've seen all along."
Yet for hospitals, there's no easy way to prevent this kind of attack.
"Everybody thinks, 'oh if something bad happens we'll just fix it,'" Corman said, but that's not the case here. Blocking future ransomware attacks will require cybersecurity personnel, new computers, and better network security. Systemwide security revolution isn't something that can be fixed in a matter of days, weeks, or even months.
But until hospitals have vastly greater cybersecurity, these attacks will continue to make frightening headlines.
TopicsCybersecurityMicrosoft
Tributes flow after death of former Singapore president S.R. Nathan2024-09-20 08:56
瘋狂暗示!哈蘭德為拉莫斯點讚 祝賀皇馬歐冠晉級2024-09-20 08:23
瓜帥歐冠勝場超穆帥緊追溫格 率藍月近25場24勝2024-09-20 08:08
拜仁簽不簽 ?裏貝裏考慮今夏回德甲 多隊對其有意2024-09-20 08:05
Balloon fanatic Tim Kaine is also, of course, very good at harmonica2024-09-20 07:55
國足4月3日熱身山東泰山 另一對手青島河南二選一2024-09-20 07:50
全國青少年足球武漢春季邀請賽開踢 5天進行64場2024-09-20 07:45
卡薩諾:C羅是打造出來的球員 但梅西是喬丹費德勒2024-09-20 06:58
Dressage horse dancing to 'Smooth' by Santana wins gold for chillest horse2024-09-20 06:57
爭四有戲!利物浦競爭對手全部刹車 9隊爭奪三席2024-09-20 06:27
Tributes flow after death of former Singapore president S.R. Nathan2024-09-20 07:58
曼城VS門興首發 :瓜帥再排無鋒陣 斯特林替補待命2024-09-20 07:45
利物浦三叉戟久違連線全部參與進球 若塔賽季上雙2024-09-20 07:33
浙江隊官方宣布姚均晟加盟 租借期間表現優異2024-09-20 07:30
You can now play 'Solitaire' and 'Tic2024-09-20 07:28
切爾西VS馬競前瞻:藍軍晉級不穩 蘇神破歐冠球荒2024-09-20 07:24
中超各輪對陣將使用軟件科學編排 不會照顧東道主球隊2024-09-20 07:13
中國足球籃球不能相互吐槽?媒體:有關注度才會成為槽點2024-09-20 07:12
Fake news reports from the Newseum are infinitely better than actual news2024-09-20 06:47
籃球媒體人:周琦曾在NBA效力 天花板高度高於範誌毅2024-09-20 06:31