As you may have seen in the news this week, UnitingCare Queensland has been targeted by a cyber-attack which has affected its hospitals and aged care homes throughout Queensland. Early investigations indicate it was a ransomware attack however it is still unknown how it was introduced to UnitingCare’s network. The attack has impacted all operational systems including internal staff email and patient operation booking, requiring staff to revert to paper-based operations for the foreseeable future.
Cyber-attacks, especially ransomware, affect hospitals and healthcare services across the world. As an attractive organisation for cyber criminals, Queensland Health is continually targeted by phishing emails from ransomware groups. The risk to patient safety and access to sensitive information is also greater as we become more reliant on technology in delivering clinical care.
While eHealth Queensland’s Cyber Security Group provides a high level of security, this is a timely reminder of the importance for all of us to be vigilant with cybersecurity. We must all be cyber aware and promptly report malicious activity so that we can continue to reliably access and utilise systems that are critical to providing patient care.
The different ways you can remain alert and report malicious activity include:
- Being cautious of emails with encrypted attachments. If you are unsure contact cybersecurity@health.qld.gov.au
- Using strong unique passwords that contain uppercase, lowercase, numbers and special characters.
- Reporting any suspicious emails to eHealth Cyber Security Group
- Completing your Cyber Security Awareness training.
- Being mindful of what you share on social media as cyber criminals can use this information against you and our organisation.
- Continuing to monitor your work environment and report any unusual or suspicious system activity to IT Support (1800 198 175) and the Cyber Security Group.
Cyber security is everyone’s responsibility, we all play a role in protecting our organisation from cyber threats.
Kind regards,
Jason Brown
Chief Digital Health Officer
Chris Crooks
Chief Information Officer