The IT services jointly utilized by the medical services of Bremen and Lower Saxony faced a cyberattack, prompting the suspension of various services and communication channels. The attack targeted the IT infrastructure provided by MD Lower Saxony, which administers services for both medical services. While investigations indicate no unauthorized access to data, order processing is temporarily halted until the systems undergo thorough checks. The security incident has led to the temporary suspension of written assessments, home visits, and physical examinations, affecting the exchange of data and documents via DTA interfaces or email.
As a precautionary measure, telephone lines, email boxes, and fax connections have been blocked, rendering MD Lower Saxony and Bremen unavailable for the foreseeable future. The paralysis of IT systems also disrupts the normal course of regulated processes, requiring the complete restoration of systems to resume full functionality. The nature of the attack remains unknown, leaving uncertainties about whether it involves data theft, ransomware, or exploitation of vulnerabilities like the MOVEit software targeted by the APT group CLOP in the recent past.
The cyber incident not only hampers internal processes but also impacts insured persons who rely on services such as written assessments, home visits, and physical examinations. With the systems isolated for security reasons, essential functions like data exchange and report submissions are currently impossible. The attacker’s identity and specific details regarding the attack type remain undisclosed, leaving medical services in Bremen and Lower Saxony grappling with the aftermath and working towards a comprehensive system restoration.
