Seacoast Radiology Server Attacked to Capture Bandwidth

Jan. 17, 2011 - PRLog -- It is not uncommon for attackers to target websites, servers, computer systems and network to acquire control, gain unauthorized access, breach sensitive data or install malicious software. However, servers of a health service provider, Seacoast Radiology were targeted recently, by attackers to capture space and bandwidth. The purpose of the attack was to acquire additional space and bandwidth to play an online game – Call of Duty: Black ops.

Usually, organizations avail the services of  ethical hacker certified professionals to identify the security flaws. In this case, the IT security experts found that the affected server contained sensitive personal information such as patient names, social security numbers, medical diagnosis codes, mailing addresses, phone numbers, billing procedures codes and other records of around 2,30,000 patients. Fortunately, the affected server did not contain any banking information.

However, the available data on the servers can be misused by the hackers. While the attackers had no malicious intentions, even accidental data breach may have serious financial and personal repercussions on the affected individuals. Further, such attacks also result in disruption of services and adversely affect the credibility of an organization. The authorities at Seacoast Radiology have notified all patients whose records were stored on the affected server.

Often organizations find it difficult to ascertain, whether unauthorized access to servers has led to data breach. Lack of proper awareness among employees regarding incident handling may lead to loss of volatile evidence from the affected computers. Online computer training programs may help employees understand security threats and first responder procedures in the event of a breach.

Compromised information may be used by attackers for identity theft, stealing money, blackmail and other forms of fraud. IT Professionals who have undertaken security certification programs may help organizations in restructuring the security infrastructure to combat different types of threats emanating in the IT environment.

Contact Press
EC-Council
Website:  http://www.eccouncil.org
Email:  iclass@eccouncil.org
Tel:  505-341-3228


EC-Council is a member-based organization that certifies individuals in cybersecurity and e-commerce skills. It is the owner and developer of 16 security certifications, including Certified Ethical Hacker (CEH), Computer Hacking Forensics Investigator (CHFI) and EC-Council Certified Security Analyst (ECSA)/License Penetration Tester (LPT). Its certificate programs are offered in over 60 countries around the world.

EC-Council has trained over 80,000 individuals and certified more than 30,000 members, through more than 450 training partners globally. These certifications are recognized worldwide and have received endorsements from various government agencies including the U.S. federal government via the Montgomery GI Bill, Department of Defense via DoD 8570.01-M, National Security Agency (NSA) and the Committee on National Security Systems (CNSS). EC-Council also operates EC-Council University and the global series of Hacker Halted security conferences.

# # #

iClass is EC- Council's online training delivery platform. Students can attend live, or recorded training sessions for courses such as Certified Ethical Hacker (CEH), Certified Security Analyst (ECSA) or Computer Hacking Forensic Investigator (CHFI).