Ransomware Attack on Medstar: Ethical Position statement

Files

admin,+Najam.pdf (360.64 KB)

Links to Files

https://www.journal.seisense.com/index.php/jom/article/view/36

Permanent Link

https://doi.org/10.5281/zenodo.1435408
 http://hdl.handle.net/11603/28841

Collections

UMBC Information Systems Department
UMBC Faculty Collection

Author/Creator

Author/Creator ORCID

https://orcid.org/0000-0003-4990-6076

Date

2018-09-26

Type of Work

journal articles
Text

Department

Program

Citation of Original Publication

Hassan, N. U. (2018). Ransomware Attack on Medstar: Ethical Position statement. SEISENSE Journal of Management, 1(4), 29–31. https://doi.org/10.5281/zenodo.1435408

Rights

This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author.
Attribution 4.0 International (CC BY 4.0)

Subjects

Abstract

Medstar Health was the target of ransomware attack in 2016. The attack impacted the provision of healthcare services to the patient. Medstar opted not to pay the ransom and, instead, responded by shutting down its electronic medical record (EMR) systems and restoring the data from the backups. The paper analyzes the event, Medstar’s response and its negligent behavior that allowed the vulnerability to be exploited. The author provides an ethical position statement and recommendation to reduce the chances of any future attacks.