The criminals broke in around 9.30pm on January 11 after finding a box with an exploitable Remote Desktop Protocol (RDP) server, and inject their ransomware into connected computers.
Got hit via RDP *shakes head*
Update policy?
Restoring from backup was considered, though we made the deliberate decision to pay the ransom to expedite our return to full operations.”
Sounds like they haven't tested their backups before, hmmmm.
You may think that you have the best backup policy in the world but if you haven't tested it then you would be wrong. All you have is a piece of paper.
This doesn’t appear to be a data heist. The hospital claimed no digital patient records were taken from its computers, just made inaccessible.
Not quite sure if people will believe that statement.