Ruairí Ó Murchú
Ceist:2440. Deputy Ruairí Ó Murchú asked the Minister for Health the status of the full extent of the cyber security incident; and if he will make a statement on the matter. [28586/21]
Amharc ar fhreagraTuesday, 27 July 2021
Ceisteanna (2440, 3343, 3344)
Gary Gannon
Ceist:3343. Deputy Gary Gannon asked the Minister for Health the service framework, governance framework and technical framework in place prior to the HSE ransomware attack as recommended by the HSE Chief Information Officer. [41406/21]
Amharc ar fhreagraGary Gannon
Ceist:3344. Deputy Gary Gannon asked the Minister for Health the service framework, governance framework and technical framework now in place since the ransomware attack on the HSE. [41407/21]
Amharc ar fhreagraFreagraí scríofa
I propose to take Questions Nos. 2440, 3343 and 3344 together.
The Health Service Executive (HSE) reported to the Joint Committee on Health on 23 June 2021 with an update on the extent and response to the cyberattack which can be found on the Oireachtas website at the following link:
data.oireachtas.ie/ie/oireachtas/debateRecord/joint_committee_on_health/2021-06-23/debate/mul@/main.pdf
The cyberattack had the impact of removing access to most patient and care systems as well as the central business systems of the HSE. I have been advised that over the last weeks many of these systems have been recovered and services have recommenced. Some of the key areas recovered included, radiotherapy, laboratory, imaging, pharmacy, mental health systems, email and patient administration systems.
The HSE has deployed additional expertise, resources and technology to provide enhanced monitoring of systems and networks. This is considered an interim measure as they procure a permanent Security Operations Centre to provide security and threat incidence monitoring. With the support of the Department of Health, it will continue to invest strategically in technical infrastructure, cyber defences and the resources necessary to protect the systems and data that are vital to the safe operation of the health system.
The Department of Health became aware of some irregular activity on its network on the afternoon of Thursday 13 May 2021, and immediately notified the National Cyber Security Centre (NCSC) and implemented further security measures. The attack was contained and prevented from executing across the ICT infrastructure. All ICT systems were immediately shut down as a precautionary measure.
Improved security measures have already been put in place within the Department of Health ICT systems. A complete security review of the ICT infrastructure is currently being finalised and specialised software has been installed to mitigate against malicious software, and to provide early warning notifications of same. The system is fully monitored, providing for a rapid response to any notified incidents.
The Department of Health and the HSE continue to liaise closely with the National Cyber Security Centre and other strategic stakeholders to ensure that best practice is followed as it relates to all aspects of cyber security.