Reeling from Ransomware Attack, eHealth Saskatchewan Says Restructuring IT Infrastructure

eHealth Saskatchewan | June 12, 2020

  • Five months after a ransomware attack locked the computer systems storing eHealth Saskatchewan says it’s going to take a while to restructure its IT infrastructure.

  • It wasn��t long after the agency’s IT team discovered files from some of its servers had been sent to suspicious IP addresses.

  • Additional steps taken to protect its computer systems better since the initial attack include updating password protocols, updated protection software.


Five months after a ransomware attack locked the computer systems storing confidential medical data of Saskatchewan residents, eHealth Saskatchewan says it’s going to take a while to restructure its IT infrastructure, and that it’s still unsure who stole the data or where it is. The health agency’s chief executive officer Jim Hornell confirmed in February that the virus first entered the eHealth system on December 20, 2019. Employees didn’t discover there was a problem until they tried to open files on Jan. 6 and were asked to hand over bitcoin in exchange for the encrypted data.


As we outlined publicly in early February, eHealth discovered some files were sent to IP addresses outside of eHealth’s environment. Those files were encrypted and password protected by the attacker. This makes it difficult to determine the exact content of those files,” wrote Ian Hanna, director of communications for eHealth Saskatchewan in an email to IT Word. “Longer-term work on re-organizing and restructuring eHealth’s IT architecture will continue for several more months.



Read more: COMPARING SIX LEADING CONVERGED INFRASTRUCTURE VENDORS' PRODUCT

eHealth Saskatchewan in an email to IT Word. “Longer-term work on re-organizing and restructuring eHealth’s IT architecture will continue for several more months.

~ Ian Hanna, director communications eHealth Saskatchewan


Law enforcement and privacy officials have been kept up-to-date on the forensic investigation, wrote Hanna. He also confirmed that eHealth had hired outside help to determine if any files were illegally sold. As of now, no trace of such activity has been found. The agency’s website says, should it be determined that personal health information has left the organization, the public will be advised.


Additional steps taken to protect its computer systems better since the initial attack include updating password protocols, updated protection software the introduction of multi-factor authentication for crucial systems, added Hanna. There was a total lack of visibility of the health agency’s computer network, according to David Masson, director of enterprise security at Darktrace. Unfortunately, it’s a common problem with many companies, he said.


It’s too late to really do much once you discover there’s a problem because by then, the damage is done, One of the other disturbing details of the attack against eHealth Saskatchewan.


With eHealth, there was never any ransom paid, but we’ve seen that the data has left [the data centre] and turned up in various other places,” said Masson. When it comes to action items on the part of residents whose data might be compromised, Masson suggested additional vigilance. Be wary of strange emails, text messages and phone calls. And it doesn’t hurt to check bank statements every once in a while, he added.


One of the other disturbing details of the attack against eHealth Saskatchewan is how files from some of its servers had been sent to suspicious IP addresses, he indicated. This could reflect a more sophisticated ransomware attack akin to the one that crushed an agricultural services company earlier in June. In that case, a website called “Happy Blog” run by threat group dubbed REvil auctioned off data it says was stolen from a London, Ont., company that offers crop advisory and protection services. The auction notice said the data available included accounting documents and customer accounts for the last three months.


Read more: HELIX TECHNOLOGIES BREAKS GROUND IN DATA ANALYTICS FOR CANNABIS PRODUCTION, UNVEILS BI TOOL

Spotlight

This EMC TechBook provides a thorough conceptual and architectural review of the VCE VxRail™ Appliance. It reviews current trends in the industry that are driving adoption of converged infrastructure and highlights the pivotal role of VxRail Appliances in today’s modern data center.

Spotlight

This EMC TechBook provides a thorough conceptual and architectural review of the VCE VxRail™ Appliance. It reviews current trends in the industry that are driving adoption of converged infrastructure and highlights the pivotal role of VxRail Appliances in today’s modern data center.

Related News

HYPER-CONVERGED INFRASTRUCTURE, APPLICATION INFRASTRUCTURE

Evocative Signs Definitive Agreement to Acquire 9 INAP Data Centers

Evocative | September 15, 2022

Evocative, a global provider of Internet infrastructure, announces today its intent to acquire the majority of INAP’s data center facilities. The acquisition will consist of 9 data centers, including colocation and related network services. The acquisition of INAP’s data centers adds to Evocative’s existing data center footprint with new facilities in Boston, New Jersey, Atlanta, Dallas, Los Angeles (2), Silicon Valley (2), and Seattle. With the facilities acquired from INAP, Evocative’s portfolio increases to 20 operating data center colocation facilities and 60+ global Points of Presence. In addition to the data center asset acquisition, Evocative also plans to welcome several INAP employees associated with the INAP data center business to the Evocative team. In doing so, the company will grow by 30%. The acquisition is expected to close within the next few weeks, bringing Evocative’s data center presence to: 20 carrier neutral Tier II and Tier III data centers in the United States 1,080,000 square feet of data center space with significant expansion space 108 MW of available power with an additional 25% expansion capability Over 500+ carriers across the portfolio including direct public cloud on-ramps 2,000+ carrier, content, and enterprise clients “Foremost, we welcome our new clients and employees to Evocative. We are honored and humbled to be your new partner. We are excited to share the strength of Evocative's digital infrastructure capabilities with our clients. “We know the importance of enterprise digital enablement. We built a company that offers a comprehensive suite of solutions from the physical foundation up the stack to enable the delivery of highly secure, hosted data services,” Khalili added. Arman Khalili, Founder and CEO of Evocative With organic growth and its acquisition strategy further advanced by the INAP data center purchase, Evocative has emerged as a leading enterprise digital infrastructure provider. Evocative is well positioned to continue its exponential growth with a clear focus on providing best-in-class IT infrastructure and a full suite of services. The acquisition is expected to close in Q3, 2022, following the standard closing process. About Evocative Evocative is a global leader in enterprise-class data center, bare metal, network, cloud, and managed services solutions that enable exceptional digital experiences. Evocative’s global footprint includes interconnected data centers and points of presence supporting over 68,000 servers across strategically located metros in North America, Europe, and Asia regions. Through organic growth and strategic acquisition, the company continues to expand its presence to power enterprise workloads at the edge. Evocative is dedicated to helping drive digital businesses forward, now and in the decades to come.

Read More

APPLICATION INFRASTRUCTURE, STORAGE MANAGEMENT, DATA STORAGE

ReadyWorks Partners with Unisys on Digital Workplace and Cloud, Applications and Infrastructure Solutions

ReadyWorks | October 12, 2022

ReadyWorks, a digital platform conductor (DPC) provider, today announced a partnership with Unisys Corporation (NYSE: UIS) through which the companies will deliver digital workplace solutions along with cloud, applications and infrastructure solutions. Unisys brings its deep expertise in delivering digital workplace solutions and hybrid and multi-cloud solutions to the partnership, providing a holistic and efficient cloud experience for organizations. ReadyWorks enhances Unisys' capabilities to: Deliver cloud migrations faster. ReadyWorks uses intelligent automation to collect, clean, and analyze information and then uses that information to orchestrate and transfer workflows and processes to the cloud. Coupled with Unisys' expertise in cloud, applications and infrastructure solutions, these enhanced capabilities help organizations achieve maximum value while minimizing risk and cost of operational inefficiencies. Enhance digital workplace experiences. ReadyWorks synthesizes information from the tools and systems used to monitor employee experience, helping companies identify and proactively address potential issues. Unisys and ReadyWorks provide unified endpoint management solutions that improve the end-user experience and enhance productivity while helping companies identify and mitigate potential security threats through every stage of IT asset lifecycle management. This partnership is aimed to help companies achieve digital transformation goals faster while reducing risk and cost. Unisys uses the ReadyWorks platform to provide an accurate real-time view of organizations' IT estate, automate and orchestrate human and system workflows and improve program transparency with an immediate view of program status. "The hybrid workplace is here to stay, and in order for businesses to succeed in this digital environment, it is vital that there are options available that reduce the cost and risks associated with this shift. "We look forward to collaborating closely with Unisys and being able to harness the strengths and capabilities of both companies to help organizations meet strategic business objectives." Paul Deur, ReadyWorks Co-Founder and Co-CEO "Our partnership with ReadyWorks enables us to deliver capabilities for clients by improving the employee experience to enhance productivity," said Leon Gilbert, senior vice president and general manager, Digital Workplace Solutions, Unisys. "This partnership is an opportunity to continue innovating for our clients in more efficient ways and helping them achieve digital transformation goals faster." About ReadyWorks ReadyWorks is a digital platform conductor (DPC), an emerging technology that leverages intelligent automation to reduce the risk and cost of IT infrastructure transformation. ReadyWorks fully orchestrates complex IT infrastructure transformation programs and provides companies with a way to ensure business continuity as these programs are carried out. Unlike legacy infrastructure management tools, which create data silos and introduce risk into IT programs, ReadyWorks serves as a central command and control platform to orchestrate these tools to deliver transformational business outcomes. The platform analyzes information about the entire IT estate – endpoints, users, applications, and all their interdependencies – defines the rules for change, and uses intelligent automation to implement those changes. ReadyWorks provides IT teams with a holistic view of the environment, how future changes will impact that environment, and how and when those changes should be made so that users and business operations are not adversely impacted. For more information, visit www.ReadyWorks.com and follow us on Twitter and LinkedIn. About Unisys Unisys is a technology solutions company that delivers successful outcomes for the most demanding organizations. Unisys offerings include digital workplace solutions, cloud, applications and infrastructure solutions, enterprise computing solutions and business process solutions.

Read More

HYPER-CONVERGED INFRASTRUCTURE, APPLICATION INFRASTRUCTURE

Micro Focus Technology and Expertise Support Successful Mainframe Modernisation Project for AG

Micro Focus | September 12, 2022

Global digital transformation leader Micro Focus today announced the successful modernisation of AG's mission-critical business systems. By using Micro Focus solutions and services, Belgium's largest and oldest insurance provider has established a contemporary, collaborative application development environment that meets the company's current needs, while enabling continued evolution and future change. During the significant modernisation project, critical applications comprising more than 80 million lines of code were moved from the incumbent mainframe system to new infrastructure that supports 14 million transactions per day. The project began in mid-2018 with a completion goal of four years. The efficiency of the project resulted in its completion in three years. Vitally, during the transition and since, there were no interruptions to daily business activities for AG or the services offered for its three million clients. "The whole operation has resulted in an innovative and open environment that enables a new data-driven strategy, as well as our company enjoying a lower total cost of ownership now and far into the future. The modernisation project opened the door for utilising the cloud and aligned operational systems more closely with the data analytics systems. The end result is a modern IT infrastructure that allows AG to efficiently meet its customer and distribution partners expectations and needs. We couldn't have realised this huge project without the partnership and excellent collaboration with Micro Focus." Philippe Van Belle, Chief Information & Technology Officer of AG In addition to bolstering its already excellent customer services, AG is now accelerating its own digital transformation with its modernised IT architecture. As part of this change, AG will now offer more services and conduct business operations in the cloud as they leverage new technologies in their continued digital evolution. Another advantage of the modernisation project is that AG has a cutting-edge environment for the recruitment of a new generation of developers, as well as the retention of existing talent with an uplift in development skills and program knowledge. "The completion of this project with AG is the latest in an extensive line of successful core business system modernisation projects for Micro Focus," said Neil Fowler, Micro Focus AMC General Manager. "Our role was to enable and support AG's modernisation journey as they delivered their business outcomes through a combination of application, process and infrastructure modernisation. This has resulted in an agile platform that allows AG to leverage their core applications and continue to deliver increasing value to their customers. With Micro Focus' more than 40 years of experience in modernising business-critical applications running on the mainframe or distributed environments, we as a company are proud of the results that we were able to deliver to AG. "AG has been a Micro Focus customer for more than ten years, and we look forward to seeing the positive impacts that this modernisation project has on the insurance services AG provides to its customers and the company's reduction in TCO for its infrastructure." The modernisation project entailed the shift of AG's z/OS workloads to a Windows-based environment. To do so, AG utilised the Micro Focus Enterprise Developer and Enterprise Server products, as well as the expertise of the company's Professional Services group. The AG modernisation project also included collaboration from HP Enterprise as system integrator and Capgemini as the testing partner. As a company, Micro Focus supports its customers' choice for modernising their applications, process and infrastructure. Digital transformation demands a flexible and adaptive strategy aimed at improving results and accelerating time to value. Through the Micro Focus Modernisation Maturity Model, IT leaders can quickly map their current IT environment to their future business strategy—while finding the right balance between costs, risk and speed. About Micro Focus Micro Focus is one of the world's largest enterprise software providers, focused on solving the IT dilemma—how to balance today's needs with tomorrow's opportunities. We deliver mission-critical technology that helps tens of thousands of customers worldwide manage core IT elements of their business. Strengthened by our strategic services and support organisations, and an extensive partner network, our broad set of technologies for security, IT operations, application delivery, governance, modernisation, and analytics provides the innovative solutions organisations need to run and transform— at the same time. About AG With a share of 29,5% in the Life insurance market and 16.7% in Non-life, AG is the undisputed leader in the Belgian insurance market. To better tailor its offer to fulfil different customer needs, AG has a multi-channel distribution strategy that includes independent brokers and Fintro agents, bank branches (BNP Paribas Fortis, bpost bank) and collaboration with large corporate clients and sectors for their group insurance. AG employs over 4,000 specialised staff members.

Read More