Cyberattack targets Montreal health agency, forcing it to go off-line

By The Canadian Press

MONTREAL — A Montreal health agency has been forced off-line as authorities deal with a cyberattack.

Health Minister Christian Dube said Thursday that specific attacks hit systems at the regional health agency covering west-central Montreal, which oversees the Jewish General Hospital among other facilities.

“Our teams quickly realized that there had been these attacks, and to protect the population’s data, particularly hospital data, the decision was taken to shut down the systems,” Dube told a news conference in Quebec City.

A statement from the agency said that as a preventive measure, “internet connectivity as well as external and remote access to our networks have been suspended.” 

Access to patients’ records and data has been limited as a result, the statement said. “Frontline services have been slowed down — but not interrupted — while the situation is under investigation.”

Dube said the attack was possibly part of a broader campaign, but he didn’t make a direct link with a series of attacks that have hit American hospitals this week.

A joint alert was issued in the U.S. Wednesday by the FBI and two other agencies, warning of a cybercrime threat aimed at hospitals and health-care providers in that country.

The warning said cybercriminals were hitting the U.S. health-care system with ransomware attacks designed to scramble hospital information systems that can only be unlocked with software keys once a ransom is paid.

Dube said the Quebec Health Department has mobilized specialized cyber teams to work with the RCMP to see whether the attack was part of a broader scheme.  

The health minister said the most important thing was to protect personal data, but he acknowledged some appointments might be rescheduled. “It’s a small sacrifice in comparison with the theft of data,” Dube said.

The health agency informed employees of an intrusion in a memorandum Wednesday evening from Dr. Lawrence Rosenberg, the agency’s CEO and president.

“At this point we do not believe that any patient or staff information has been accessed,” Rosenberg’s message said.

“It is important to note that our information technology systems are currently operating properly and without incident.”

Authorities put contingencies into place for 72 hours by printing hard copies of patient care documents or using USB keys.

“I realize that this task is likely to be time-consuming. However, this proactive precautionary measure is essential in order to protect the health, safety and personal information of all those who rely on our (agency) for health care and social services,” Rosenberg wrote.

This report by The Canadian Press was first published Oct. 29, 2020.

– With files from The Associated Press.

The Canadian Press

Top Stories

Top Stories

Most Watched Today