Data Protection Academy » Data Protection News » Hospitals attacked by malware 

Hospitals attacked by malware

Date: 19.07.2019

Responsible body: DRK Trägergesellschaft Südwest

Type of data breach: Security incident caused by malicious software

A number of hospitals belonging to DRK Trägergesellschaft Südwest fell victim to an attack by malware. As a result, data was encrypted by the malware and hospital operations were severely disrupted.

Categories of data concerned: Patient data

Legal classification:  In accordance with the obligation under Art. 33 of the EU General Data Protection Regulation the sponsoring company has reported the violation of the protection of personal data to the State Commissioner for Data Protection and Freedom of Information (LfDI) as the competent supervisory authority.

Recommendation in the event of a security incident caused by malware

IT-Strukturen und Patientendaten müssen daher über eine ausreichende Widerstandsfähigkeit gegenüber Cyber-Attacken und einen angemessenen Schutz verfügen. Andernfalls drohen Schäden für die Gesundheit und den Datenschutz von Patientinnen und Patienten und wirtschaftliche Schäden.” (Landesbeauftragter für den Datenschutz und die Informationsfreiheit Rheinland-Pfalz)

Country: Germany

SourcePrivacy RLP

Back to the overview of the data breaches

Book demo

Nadine Porrmann
Latest posts by Nadine Porrmann (see all)

This might interest you too:

Data breach at Klarna: Third party data visible

Entering a postcode and e-mail was sufficient to view third party data. The autofill function is to blame.
Read more

Data breach Microsoft customer records leaked

In December 2019, 250 million support requests to Microsoft were available online for two days. Security researchers reported the data breach to Microsoft.
Read more

British government published private addresses of stars

The British government publishes the addresses of around 1000 celebrities, politicians and private individuals who receive the traditional New Year's honours.
Read more