Ransomware highlights the challenges and subtleties of cybersecurity

FOR THE past month Ireland’s health-care system has been in disarray. On May 14th the Health Service Executive (HSE), the state-funded health-care provider, was hit by a “ransomware” attack which led it to shut down most of its computer systems. The attackers threatened to release stolen data, including confidential patient records, unless the HSE stumped up $20m (€16.5m). It declined to do so. Its staff were reintroduced to pen and paper, its procedures delayed, its patients inconvenienced. By June 14th services had still not returned to normal.

This out(r)age might have attracted greater attention beyond Ireland’s shores had it not occurred a week after a similar attack had disabled a crucial oil pipeline on the other side of the Atlantic. On May 7th Colonial Pipeline, a company whose namesake asset delivers nearly half the fuel used on America’s east coast, had its systems compromised by a cyber-attack and had to shut down the flow of oil. Some people headed to the pumps in panic. President Joe Biden invoked emergency powers. The company paid a ransom of over $4m; even so, it took several days for the oil to start flowing again.