In a significant revelation, Kerala’s Health Minister, Veena George, has publicly acknowledged a cyber attack that targeted the state’s esteemed Regional Cancer Centre (RCC), occurring approximately three months ago. Minister George assured the public that despite the ransomware incident, which disrupted RCC operations for five days starting April 28, patient data remained securely protected throughout the ordeal. The attack specifically targeted software utilized by the Radiation Physics and Radiodiagnosis Departments, prompting swift action to safeguard critical systems and servers fortified with robust security measures.
Upon discovering the breach, RCC promptly notified state authorities, including Kerala’s cyber security division and the Computer Emergency Response Team (CERT), triggering an immediate investigation into the incident. It was determined that the cyber attack affected eight desktop computers and four servers within the facility. Subsequently, on May 9, a formal case was filed, with ongoing efforts focused on uncovering the full extent and origins of the breach. Minister George emphasized that throughout the incident, patient records, including crucial details of radiation treatments, remained unharmed due to a resilient data backup protocol meticulously maintained by the centre.
Reassuring stakeholders and the public, Minister George affirmed that investigations into the cyber attack confirmed no instances of patient information leaking onto the dark web or other unauthorized platforms. Looking forward, she outlined proactive measures, including plans for a comprehensive security audit across all healthcare facilities in Kerala, encompassing the Malabar Cancer Centre. This audit aims to bolster cyber security preparedness, ensuring robust defenses against potential future threats and safeguarding uninterrupted healthcare services. The RCC incident underscores the critical importance of stringent cyber security frameworks in protecting sensitive medical information and upholding public trust in healthcare institutions amidst evolving digital threats.
