The National Health Laboratory Service (NHLS) in South Africa is currently facing a major cyberattack that has resulted in the shutdown of its IT systems, including emails, website, and patient lab test results storage and retrieval systems. The incident, which occurred over the weekend, has caused significant disruption to the organization’s operations and has raised concerns about the security of sensitive patient data.
NHLS CEO Prof Koleka Mlisana confirmed the breach in a memo to staff, describing it as a “suspected incident” that has compromised the security of their IT infrastructure. The attack comes at a critical time for the organization, as South Africa is currently dealing with a Mpox outbreak that has overwhelmed the country’s healthcare services.
In response to the cyberattack, NHLS has deployed its Incident Response Team to assess the scope of the intrusion and implement necessary safeguards to secure systems and data. Mlisana assured staff that the team is working around the clock to address the issue and minimize disruption to services. The organization has also implemented its “Downtime Protocol” to prioritize patients’ samples and processing, with results being communicated directly to clinicians when urgent.
Despite the breach, NHLS Communication, Marketing, and PR officer Mzi Gcukumana stated that no patient data has been lost or compromised. Preliminary investigations suggest that certain sections of the organization’s systems, including their backup server, were deleted, requiring the rebuilding of affected systems. Gcukumana emphasized that the NHLS networked laboratory system heavily relies on these IT systems, which have been disrupted.
The National Department of Health, which oversees NHLS, has been informed of the incident, and a spokesperson for the department has urged patience as efforts to resolve the issue continue. NHLS has promised regular updates on the compromise and ongoing response activities, emphasizing their commitment to data security and transparent resolution of the issue.
As investigations into the cyberattack continue, NHLS is working diligently to restore its systems and resume full service to patients. While a timeframe for restoration has not yet been determined, the organization is dedicated to keeping stakeholders and the public informed of any developments in the situation.
In conclusion, the cyberattack on NHLS has raised serious concerns about the security of healthcare data in South Africa. The organization is working tirelessly to address the breach and restore its IT systems to ensure the continuity of essential healthcare services for the public. Ongoing updates and transparency in the resolution process will be crucial in maintaining trust and confidence in NHLS’s ability to safeguard patient information going forward.