Servers of the All India Institute of Medical Sciences (AIIMS) are still down as AIIMS works to recover from a ransomware attack. According to some sources, the attackers, who have not been named, had reportedly demanded about Rs 200 crore in cryptocurrency, but Delhi Police deny that AIIMS has reported receiving any such demand. Thirty to forty million patients may have had their records encrypted. There has been some speculation that the attackers are Chinese or North Koreans.
The NIC e-hospital database and application servers have been back online in the interim. Other e-hospital servers at AIIMS that are necessary for the provision of hospital services are being scanned and cleaned by the NIC team.
The databases and applications have been scanned and prepared for four physical servers set up for restoring e-hospital services.
It sounds like some heads have already started rolling in response to this incident. MoneyControl reports:
Two system analysts working at All India Institute of Medical Sciences (AIIMS) Delhi have been suspended after a ransomware attack crippled the online operations of one of India’s most prestigious hospitals.
The suspended analysts were earlier given the show cause notice.