Medical Emergency – Allscripts was hacked!

We spent all weekend helping our customers affected by the Allscripts malware attack. A limited number of Allscripts services went down Thursday after a ransomware incident, according to an emailed statement from company spokeswoman Concetta Rasiarmos.

AllScripts allows physicians to send electronic prescriptions to pharmacies. Patient data is sent to a pharmacy for order completion – by being hacked and compromised, patient data is at risk!

New variant of SamSam – a ransomware family linked to several attacks against medical providers – is behind the Allscripts outage

The EHR giant is investigating the incident to provide further details.

“We are working diligently to restore these systems, and most importantly, to ensure our clients’ data is protected,” wrote Rasiarmos. “We regret any inconvenience caused by this temporary outage.”

In a conference call for customers on Saturday, which Salted Hash listened-in on, Allscripts’ Jeremy Maxwell, director of information security, said their PRO EHR and Electronic Prescriptions for Controlled Substances (EPCS) services were the hardest hit by the ransomware attack.

Other services had availability issues as well, but those have since been restored, such as direct messaging and some CCDA functionality.

The following email was sent to Providers:

From: NYSDOH HEALTH NOTIFICATION [mailto:notify01@health.ny.gov] Sent: Friday, January 19, 2018 9:20 PM
To: Lisa Eng
Subject: Alert: For your immediate attention: AllScripts Cyber Event

Click here when you are ready to confirm receipt of the email.
If you can not click the above link use the following URL by copying into your browser.
https://apps.health.ny.gov/pub/cgi-bin/applinks/pubforms/AlertAcknowledge2?AID=9909950yag3dqb6av

Type: Alert
Description of Alert: For your immediate attention: AllScripts Cyber Event
Source Organization: NYSDOH
Authorizing Person: Sally Dreslin
Sender’s Jurisdiction: state
Document Date: 01/19/2018
Date of Alert: 01/19/2018

The Department of Health (DOH) is aware that a cyber incident regarding AllScripts has occurred. This may have an impact on the ability for hospitals, clinics, nursing homes, individual prescribers and pharmacies to transmit and receive prescription electronically. It is permissible for those impacted to use paper official prescriptions in accordance with New York State regulations. Should you have urgent questions in this regard, please contact DOH at (866) 811-7957 or off-hours at (866) 881-2809.

Recipients:
Dental Practices – Controlled Substance Prescription Data Reviewer (CSPDR)
Dental Practices – Controlled Substance Prescription Data Submitter (CSPDS)
Dental Practices – HPN Coordinator
Hospital (ext clinic) – Administrator
Hospital (ext clinic) – Director, Nursing
Hospital (ext clinic) – Emergency Response Coordinator
MDs as organizations – Controlled Substance Prescription Data Reviewer (CSPDR)
MDs as organizations – Controlled Substance Prescription Data Submitter (CSPDS)
MDs as organizations – HPN Coordinator

For questions: Please send an e-mail to debra.sottolano@health.ny.gov, as notify01 is a non-monitored mailbox.

Alert – Highest priority emergency communication; warrants immediate action or attention by the recipient.
High Advisory – High priority does not warrant immediate action but recipients should be aware.
Advisory – Provides very important information for a specific incident or situation that does not require immediate action.
Updates to Alerts and Advisories – Provides updated informa tion regarding an incident or situation; unlikely to require immediate action.
Informational Message – Provides timely information, important for review or serves as a reminder for an action that should be taken.

Click here when you are ready to confirm receipt of the email.
If you can not click the above link use the following URL by copying into your browser.
https://apps.health.ny.gov/pub/cgi-bin/applinks/pubforms/AlertAcknowledge2?AID=9909950yag3dqb6av

Don’t Fall Victim!

Vanguard’s OnGuard Remote Backup platform has helped many customers over the bast few months recover from encryption ware based attacks! We offer a trusted protection platform that’s flexible enough to meet your current and future business needs. Our LIVE support works with you to help recover your systems quickly.

We are also introducing several new OnGuard security products this year geared to protect your business.

Onguard Mail Essentials powered by GFI: Protect your business against email-borne junk, viruses, spyware, phishing and other malware threats.

Hardware Firewalls with Advanced Security Protection: We are working with our U.S.A. based developers in order to provide proactive protection of your entire network, reducing your exposure to cyber threats at a price point that will not decrease your bottom lime.

  • Protection against polymorphic malware, using smart cloud based AV engine and definitions powered by Kaspersky.
  • GFI Directory support for non Active Directory environments which enables far more flexibility when managing users in these environments.
  • Support for Microsoft Windows Server 2016.
  • Several reliability and performance improvements alongside a patch rollup of all the previous bug fixes that were released to date.
  • Advanced spam-blocking technology with a spam capture rate of over 99% and close to zero false positives
  • Hassle-free spam management, includes a web-based email management dashboard and reporting tool

We’re Taking The Fight To The Spammers!

 

000-017   000-080   000-089   000-104   000-105   000-106   070-461   100-101   100-105  , 100-105  , 101   101-400   102-400   1V0-601   1Y0-201   1Z0-051   1Z0-060   1Z0-061   1Z0-144   1z0-434   1Z0-803   1Z0-804   1z0-808   200-101   200-120   200-125  , 200-125  , 200-310   200-355   210-060   210-065   210-260   220-801   220-802   220-901   220-902   2V0-620   2V0-621   2V0-621D   300-070   300-075   300-101   300-115   300-135   3002   300-206   300-208   300-209   300-320   350-001   350-018   350-029   350-030   350-050   350-060   350-080   352-001   400-051   400-101   400-201   500-260   640-692   640-911   640-916   642-732   642-999   700-501   70-177   70-178   70-243   70-246   70-270   70-346   70-347   70-410   70-411   70-412   70-413   70-417   70-461   70-462   70-463   70-480   70-483   70-486   70-487   70-488   70-532   70-533   70-534   70-980   74-678   810-403   9A0-385   9L0-012   9L0-066   ADM-201   AWS-SYSOPS   C_TFIN52_66   c2010-652   c2010-657   CAP   CAS-002   CCA-500   CISM   CISSP   CRISC   EX200   EX300   HP0-S42   ICBB   ICGB   ITILFND   JK0-022   JN0-102   JN0-360   LX0-103   LX0-104   M70-101   MB2-704   MB2-707   MB5-705   MB6-703   N10-006   NS0-157   NSE4   OG0-091   OG0-093   PEGACPBA71V1   PMP   PR000041   SSCP   SY0-401   VCP550   220-801   300-075   c2010-652   000-080   210-065   350-030   JN0-360   74-678   LX0-104   300-070   70-410   350-050   PMP   70-483   JN0-360   200-355   200-125  , 210-060   100-101   70-412   VCP550   LX0-104   000-017   70-461   700-501   70-347   EX200