14 DAY TRIAL // Some computer systems and servers at Aurora Health Care have been infected with malware designed to capture log-in data entered on certain websites mostly providing financial services.
The incident was discovered on January 27, 2015, and the organization took action towards removing the malicious files from its computer network. It appears that patient information was not exposed and only Aurora caregivers are at risk.
Log-ins for social media accounts also targeted
Following an internal investigation that involved contracting the services of a cyber-security company for forensic examination, Aurora Health Care determined that “the malware was designed to intercept active sessions and capture login information from the users of the affected workstations who had accessed certain websites.”
According to the disclosure letter addressed to Aurora personnel, the configuration file of the malware also included instructions to monitor social media websites.
The list of targeted online locations is available on Caregiver Connect, a private portal for Aurora caregivers and partners.
The organization’s recommendation for its caregivers is to change the log-in passwords for their personal online accounts, especially for services dealing with private information. Aurora also offers free credit and identity protection monitoring services for one year.
Organization offers advice on preventing malware infections
Preventing such incidents in the future has been ensured by upgrading the overall security of the network. The systems have been equipped with technology that detects unauthorized access, while the storage units of mobile computers now benefit from encryption.
The organization takes cyber security very seriously and it prepared training and awareness programs for caregivers to be more informed about cyber-risks.
At the end of the letter signed by Amy Rislov, chief human resources officer, a set of instructions are provided to maintain the security of Aurora computer as well as of the caregiver.
As such, individuals are instructed to change passwords on a frequent basis and refrain from accessing personal social media accounts from Aurora workstations.
Furthermore, they are advised not to access URLs or attachments coming from suspicious-looking emails.