A cyberattack affecting the Maryland Division of Well being (MDH) has been confirmed a ransomware assault, the departments of Well being and Info Expertise confirmed this week.
The assault, first described as a “community safety incident,” was detected on Dec. 4, 2021. It took the MDH web site offline and led to the elimination of sources such because the pages individuals can entry to use for Medicaid or study extra about native nursing house security. The incident additionally disrupted the state’s reporting of COVID-19 knowledge.
Maryland CISO Chip Stewart launched a press release on Jan. 12 to say that whereas an investigation continues to be ongoing, officers can verify it was a ransomware assault. MDH was in a position to isolate and include its methods inside hours of first detecting it, he stated. On the time of publishing, officers had not recognized any proof of the unauthorized entry to, or acquisition of, state authorities knowledge, he famous.
As a part of the containment course of, MDH remoted its web sites on the community from each other, exterior events, the Web, and different state networks, Stewart stated. Because of this strategy, some companies turned unavailable, and a few are nonetheless offline.
“I wish to be clear: this was our resolution and a deliberate one, and it was the cautious and accountable factor to do for menace isolation and mitigation,” he wrote in a press release. Typically after a safety incident, there might be stress to rapidly reconstitute companies, Stewart added. “We’re recovering with deliberate motion to attenuate the probability of reinfection,” he stated.
Learn Stewart’s full breach disclosure for extra data.