InterSystems Statement on May 2017 Ransomware Incident
A cyberattack that began early Friday, May 12, 2017, has now affected more than 150 countries around the globe. The incident has been categorized by cybersecurity experts as a ransomware attack, in which hackers encrypt files to deny users access to those files until a ransom is paid (or systems are restored).
Current reports from government cybersecurity agencies indicate that the malware involved exploits a Remote Desktop Protocol (RDP) compromise or a critical Windows SMB vulnerability. InterSystems would like to assure its customers that it is aware of the issue and working hard to understand its implications.
We believe that the InterSystems servers running the hosted version of our health information products remain unaffected at this time. We are actively working with customers to provide assistance as they restore their own access points and systems.
If you need help, support or advice, please contact our Worldwide Response Center.
The attack is a major cybersecurity event and one that is certain to cause considerable concern for health providers, their staff, and patients. InterSystems is monitoring the situation and providing support to affected customers.
We remain committed to doing everything we can to ensure our customers’ success, the secure use of patient information, and a robust response to this issue.
Data Protection Officer