Canadian Healthcare Technology Logo
  • Issues
    • Current Print Issue
    • Print Archive
  • Advertise
    • Publishing Schedule
    • Circulation
    • Unit Sizes and Rates
    • Mechanical Requirements
    • Electronic Advertising
    • White Papers
  • Subscribe
    • Print Edition
    • e-Messenger
    • White Papers
  • Events
  • Vendors
  • About Us

Philips

AGFA 1400x150

Petal Health

Petal Health 1400x150

Privacy & Security

Cyber-attack in NF was predictable: report

June 7, 2023


Sean MurrayST. JOHN’S, N.L. – The ransomware attack that hit Newfoundland and Labrador’s healthcare IT systems in 2021 was “almost an inevitability” and resulted in the theft of personal data from the “vast majority” of the province’s population, says a report released at the end of May.

The security of the province’s health information system was lacking in several important areas, and officials knew about the weaknesses but did not take appropriate action to fix them, said the 115-page report from the office of the province’s information and privacy commissioner.

“We understand that sometimes mistakes happen and accidents happen … in our estimation, that is not what happened here,” Sean Murray (pictured), who led the investigation, told the Canadian Press and other reporters.

“It was pretty clear that we did not have in this province appropriate cybersecurity measures in place in our healthcare system prior to the cyberattack. And that was the major contributor to the cause of the cyberattack.”

Moreover, health officials broke provincial privacy laws by not disclosing key information within a reasonable time frame about the nature of the attack and whether information had been stolen, Murray said. They also broke privacy laws by not sufficiently protecting the information in the first place, he added.

Widespread IT outages hit the province’s healthcare system beginning Oct. 30, 2021, forcing doctors and nurses in a major St. John’s hospital to resort to pen and paper to keep track of patients. Thousands of appointments were cancelled, including cancer care, as officials scrambled to figure out what happened and get systems up and running.

The government has been tight-lipped about what happened, and it didn’t reveal until March that the attack involved ransomware – a type of malicious software used by hackers to encrypt or steal data until victims pay a ransom.

The Hive ransomware was behind the hit, Justice Minister John Hogan said at the time, adding that he could disclose the culprit because the group had been dismantled in January by the FBI and no longer posed a threat. Until then, officials had said that disclosing the nature of the attack would have compromised security.

The report said the delay in that disclosure was “concerning” and the rationale given by authorities to justify it was insufficient.

Hogan has also said that the hackers broke into the IT system of the Newfoundland and Labrador Centre for Health Information through a virtual private network that they had accessed with stolen login information. The report says an email phishing scam is most likely to blame.

The report says the hackers triggered alerts within the computer systems before they deployed their attack, which were not properly investigated. A proper investigation may have stopped the attack, or lessened its impacts, Murray wrote. His report also outlines several instances where officials had information about security vulnerabilities or were warned about the increasing risk of cyberattacks – particularly of ransomware attacks – against healthcare systems.

Last December, provincial health officials said a review of a network drive accessed by the hackers showed that more than 58,000 people in the province had their data breached.

But May’s report says the perpetrators also stole personal and health information from data repositories belonging to three of the province’s four health authorities. Though the exact number of victims is unknown, the report says the information stolen includes at least nine years of data from each authority as well as information belonging to everyone in the province who had a COVID-19 test before 2021.

“The total number of privacy breaches caused by the cyberattack is unknown but it is likely to be in the hundreds of thousands,” Murray wrote. “In other words, it is likely that the vast majority of the population of the province had some amount of personal information or personal health information taken by the cyberattackers.”

Ultimately, the perpetrators managed to steal more than 200 gigabytes of data, the report says.

Problems aside, the report also notes that the province’s response to the attack was “by and large carried out well.” It also says “an impressive amount of work” has been done to implement proper cybersecurity measures to avoid a future attack.

The provincial Justice Department issued a statement Wednesday after Murray’s news conference to say it was reviewing the report’s 34 findings and six recommendations.

“This was a complex cybersecurity incident, but we are confident that reasonable security steps have already been taken – and are being taken – to mitigate the risk of a potential future incident,” Hogan said in the release.

PreviousNext

CHT print

CHT print

e-Messenger

  • Carney appoints new health minister, AI chief
  • NS delays start of provincial EHR system
  • New associate CEO of CIUSSS-West-Central Montreal
  • Medic Alert bracelets will connect to EHRs
  • Mount Sinai deploys system for partial knee replacement
More from e-Messenger

Subscribe

Subscribe

Weekly blasts are sent each month, via e-mail, to over 7,000 senior managers and executives in hospitals, clinics and health regions. Learn More

Infoway

Infoway

Zebra

Zebra

Zebra

Zebra

Advertise with us

Advertise with us

Sectra KLAS

Sectra KLAS

Stratford Group

Stratford Group

Pure Storage

Pure Storage

Medirex

Medirex

NIHI

NIHI

CHT print

CHT print

Advertise with us

Advertise with us

Sectra KLAS

Sectra KLAS

Stratford Group

Stratford Group

Pure Storage

Pure Storage

Medirex

Medirex

NIHI

NIHI

Contact Us

Canadian Healthcare Technology
1118 Centre Street, Suite 204
Thornhill, Ontario, Canada L4J 7R9
Tel: 905-709-2330
Fax: 905-709-2258
info2@canhealth.com

  • Quick Links
    • Current Print Issue
    • Print Archive
    • Events
    • Vendors
    • About Us
  • Advertise
    • Publishing Schedule
    • Circulation
    • Unit Sizes and Rates
    • Mechanical Requirements
    • Electronic Advertising
    • White Papers
  • Subscribe
    • Print Edition
    • e-Messenger
    • White Papers
  • Resources
    • White Papers
    • Writers’ Guidelines
    • Privacy Policy
  • Topics
    • Administrative Solutions
    • Clinical Solutions
    • Companies
    • Continuing Care
    • Diagnostics
    • Education & Training
  •  
    • Electronic Records
    • Government & Policy
    • Infrastructure
    • Innovation
    • People
    • Privacy and Security

© 2025 Canadian Healthcare Technology

The content of Canadian Healthcare Technology is subject to copyright. Reproduction in whole or in part without prior written permission is strictly prohibited. Send all requests for permission to Jerry Zeidenberg, Publisher.

Search Site

Error: Enter a search term

  • Issues
    • Current Print Issue
    • Print Archive
  • Advertise
    • Publishing Schedule
    • Circulation
    • Unit Sizes and Rates
    • Mechanical Requirements
    • Electronic Advertising
    • White Papers
  • Subscribe
    • Print Edition
    • e-Messenger
    • White Papers
  • Events
  • Vendors
  • About Us