• On TV.com: TOP 10 Shows CANCELED Too Soon
advertisementGet Smart about Business Spending
November 18, 2008 12:25 PM PST

Computer virus infects three London hospitals

by Elinor Mills

(Credit: Barts and The London)

Three hospitals in London were forced to shut down their networks Tuesday after being infected with a computer virus.

"Emergency procedures have been activated to ensure that key clinical systems continue while network access is being established. We have maintained a safe environment for our patients throughout the incident," a statement on the site for Barts and The London NHS Trust hospital system said.

"Manual backup systems are in use and we are in the process of restoring the computer systems with priority being given to the most important areas for maintaining patients services," the statement said.

The hospitals affected are St. Bartholomew's, the Royal London Hospital, and The London Chest Hospital. The BBC quotes a spokesman for Barts and The London as saying the virus was "not malicious" and the infection was "self-contained."

Doctors are using pen and paper as backups as a result of the infection, according to The Register.

The virus is believed to be the Mytob worm, which spreads via e-mail and plants a backdoor Trojan on infected computers that can be used to remotely take control of the machine, according to security firm Sophos.

"There will, no doubt, be concerns that the confidentiality of patients' data may have been put at risk, and the hospitals will surely be keen to reassure the public that security has been maintained," Graham Cluley, senior technology consultant at Sophos, wrote in a post on his blog.

Elinor Mills covers Internet security and privacy. She joined CNET News in 2005 after working as a foreign correspondent for Reuters in Portugal and writing for The Industry Standard, the IDG News Service, and the Associated Press. E-mail Elinor.
Topics:

Vulnerabilities & attacks

Tags:

worm,

hospitals

Share:
Digg
Del.icio.us
Reddit
advertisement
Click here!
Recent posts from Security
Microsoft to fix holes in Windows, Office
Google privacy controls: Most people won't care
Zero-day flaw found in Web encryption
Mac Game: Art project or malware?
Corporate bank accounts targeted in online fraud
Hacker breaks into jailbroken iPhones, asks for $7
Malwarebytes accuses rival of software theft
Security firm M86 acquires Finjan
Related
Phishing, worms spike this year, say Microsoft and McAfee
GE launches eHealth, hopes for early adopters
Defense Department to partially lift flash drive ban
Rickrolling iPhone worm is never gonna give you up
Crave giveaway of the week: official rules
Patients administer HIV tests as accurately as pros
One small strip of plaster, one giant strip of data
Web-based malware infections rise rapidly, stats show
Add a Comment (Log in or register) (8 Comments)
  • prev
  • 1
  • next
by The_happy_switcher November 18, 2008 1:20 PM PST
Just a guess, but I'm betting they were running some flavor of Windoze.
Reply to this comment
by n3td3v November 18, 2008 1:22 PM PST
Why guess it when you can read the article?
http://www.sophos.com.au/security/analyses/viruses-and-spyware/w32mytobas.html
by Vegaman_Dan November 18, 2008 2:28 PM PST
The virus was user-installed by clicking on social-engineered emails. It was self contained in only those particular systems. The hospital's IT group have a very aggrressive plan to lock down the network anytime this sort of thing happens. I have to give them kudos for that.

But how was it caused? End users clicking on blatantly obvious things they shouldn't have. Nothing new about that.
Reply to this comment
by eiverson November 19, 2008 12:32 PM PST
Malicious emails are making a come-back, I wrote something on it over here:

http://www.securitynowblog.com/endpoint_security/malicious-email-attachments-elude-signature-based-malware-defenses

Unfortunate, this sort of enterprise attack is very preventable with systems that minimize end-user discretion without enslaving end-user productivity.
Reply to this comment
by Harrison912 November 19, 2008 4:28 PM PST
As a safety and security web site owner, I hope they catch the person or persons responsible for this. There are some really sick people out there!
Reply to this comment
by johnfranks1234 November 21, 2008 10:52 AM PST
I like to pass along things that work, in hopes that good ideas make their way back to me. Data breaches and thefts are due to a lagging business culture ? and people aren?t getting the training they need. As CIO, I look for ways to help my business and IT teams further their education. Check your local library: A book that is required reading is "I.T. WARS: Managing the Business-Technology Weave in the New Millennium." It also helps outside agencies understand your values and practices.
The author, David Scott, has an interview that is a great exposure: http://businessforum.com/DScott_02.html -
The book came to us as a tip from an intern who attended a course at University of Wisconsin, where the book is an MBA text. It has helped us to understand that, while various systems of security are important, no system can overcome laxity, ignorance, or deliberate intent to harm. Necessary is a sustained culture and awareness; an efficient prism through which every activity is viewed from a security perspective prior to action.
In the realm of risk, unmanaged possibilities become probabilities ? read the book BEFORE you suffer a breach.
Reply to this comment
by sudeki123 December 2, 2008 8:50 AM PST
It is happy to see your posting. Yes really informative article. I will tell this information again to my friend, oh yes I suggest you to check my blog on <a href="http://101aboutcomputer.blogspot.com/">
Desktop Computer
</a> , I hope the article on my blog will be usefull for you? and we can share each other. thank you? ;-)
Reply to this comment
by sudeki123 December 2, 2008 9:02 AM PST
It is happy to see your posting. Yes really informative article. I will tell this information again to my friend, oh yes I suggest you to check my blog on <a href="http://101aboutcomputer.blogspot.com/">
Desktop Computer
</a> , I hope the article on my blog will be usefull for you? and we can share each other. thank you? ;-)
Reply to this comment
(8 Comments)
  • prev
  • 1
  • next
advertisement

FAQ: Buying the right Windows 7 upgrade

Readers still have lots of questions on just which version of the software they need to buy in order to upgrade their PC. CNET News tries to offer some answers.

N.Y. lawsuit details Intel's 'largesse' toward Dell

Attorney General Andrew Cuomo's federal antitrust case filed Wednesday alleges a longstanding symbiotic relationship between Intel and Dell.

About Security

Online security is threatened by more than hacking and phishing attempts. Check here for the latest updates on software vulnerabilities, data leaks, and rapidly spreading viruses--and learn how to protect your systems.

Add this feed to your online news reader

Security topics

advertisement
advertisement

Inside CNET News

Scroll Left Scroll Right
News
News site map
Latest headlines
Contact News
News staff
Corrections
CNET blogs
Popular topics
Apple iPhone
Apple iPod
Cell phones
Dell
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET