Consumer Reports has no relationship with any advertisers on this website.
Hospitals and other healthcare providers across England were forced to cancel countless appointments and divert ambulances on Friday after a massive ransomware attack crippled their computer systems. In the hours that followed, the crisis spread to facilities in at dozens of other countries, according to news reports.
FedEx was one of the big corporations affected by the attack, saying that “like many other companies, FedEx is experiencing interference with some of our Windows-based systems caused by malware. We are implementing remediation steps as quickly as possible. We regret any inconvenience to our customers.”
Although this latest attack was massive in scope, ransomware threats often strike the personal computers of individual consumers, too.
Here’s what you need to know and how to protect yourself.
What Is Ransomware?
Ransomware is a form of malware designed to steal money from individuals, businesses and other organizations by holding their data hostage. Imagine coming home to find a big padlock on your front door and a criminal standing next to it, demanding money to let you in. That’s ransomware. Only instead of being locked out of your house, you’re locked out of all your personal files. The next time you log on, your computer displays a ransom note saying your data has been encrypted, with instructions on how to pay to unlock it.
Can Hackers Really Make Money Doing This?
Oh, yes. Ransomware is big business. Ransoms can range from a few hundred to thousands of dollars and are usually paid in the “virtual” currency Bitcoin, which is nearly impossible to trace. In some cases, the longer you wait to pay, the higher the ransom becomes.
According to cybersecurity firm Symantec’s Internet Security Threat Report released in April, the number of new versions of ransomware uncovered during 2016 more than tripled to 101, while the number of ransomware infections the company spotted jumped 36 percent. Verizon’s recently released 2017 Data Breach Investigations Report notes that ransomware accounted for 72 percent of the malware incidents involving the heathcare industry last year.
Why Is This Particular Ransomware Attack Significant?
Friday’s attack affected at least 25 of the UK’s National Health Service’s hospitals and other organizations. But NHS says it was not the specific target of the attack. It does not appear that patient information was accessed, according to the organization, but its investigation into the matter is still in the early stages. Barts Health, which manages a handful of major hospitals in London and elsewhere, also confirmed it was experiencing a “major IT disruption.”
The malware arrived in encrypted files distributed by email. Once a computer was infected, the user received a note demanding $300 in bitcoin to restore access to patient information and other data on the device.
British Prime Minister Theresa May called it an “international attack”…