‘Cybersecurity incident’ hampers non-urgent care at hospitals in New Zealand

Waikato District Health Board is in the throes of a recovery process that health organizations around the world have gone through during the pandemic.
(Getty Images)

Health officials in New Zealand have for multiple days been dealing with a “cybersecurity incident” that has hindered non-urgent care at multiple hospitals south of the capital of Auckland. Local media are reporting that ransomware is the cause.

The IT systems of Waikato District Health Board, which oversees health services for 425,000 people on New Zealand’s North Island, have been offline as government cyber officials investigate the cause of the incident.  The investigation is ongoing, “but [we] are working on the theory that the initial incursion was via an email attachment,” the health board said in statement Wednesday.

Emergency care continues, but the disruption has caused some elective surgeries to be postponed at one of the health board’s facilities, Waikato Hospital, “while a number of outpatient clinics have been reduced,” the board said. Some of the outpatient clinics that have been affected include those dealing with respiratory illness and infectious diseases.

Waikato DHB chief executive Kevin Snee said the process of fully restoring IT systems at the network of hospitals will likely extend into next week, the New Zealand Herald newspaper reported. Twenty cancer patients may need to be moved to facilities in other cities, the paper reported.


Waikato District Health Board is in the throes of a recovery process that health organizations around the world have gone through during the coronavirus pandemic, as cybercriminals have continued to lock up computers and demand a ransom. By the first week of December 2020, there were nearly double the amount of publicly reported ransomware attacks on health care providers compared to all of 2019, according to threat intelligence firm Recorded Future.

The apparent ransomware attack in New Zealand comes as the Irish public health system is trying to get back online following its own ransomware hack. Irish authorities have said it will take “many weeks” to fully restore computer systems following the hack, which has affected maternity care and chemotherapy, among other services.

Meanwhile, in the U.S., Scripps, a San Diego-based nonprofit system with five hospital campuses, has for weeks grappled with a “security incident” that knocked its IT applications offline and forced it to reschedule some patient appointments. The nonprofit’s website was back online Thursday after weeks of being down.

The unchecked ransomware attacks on health organizations during the pandemic has heightened pressure on governments to take action. A public-private ransomware task force has recommended that U.S. prosecutors prioritize and seek harsher punishments for ransomware cases that threaten public health and safety.

Sean Lyngaas

Written by Sean Lyngaas

Sean Lyngaas is CyberScoop’s Senior Reporter covering the Department of Homeland Security and Congress. He was previously a freelance journalist in West Africa, where he covered everything from a presidential election in Ghana to military mutinies in Ivory Coast for The New York Times. Lyngaas’ reporting also has appeared in The Washington Post, The Economist and the BBC, among other outlets. His investigation of cybersecurity issues in the nuclear sector, backed by a grant from the Pulitzer Center on Crisis Reporting, won plaudits from industrial security experts. He was previously a reporter with Federal Computer Week and, before that, with Smart Grid Today. Sean earned a B.A. in public policy from Duke University and an M.A. in International Relations from The Fletcher School of Law and Diplomacy at Tufts University.

Latest Podcasts