Hospitals switch to pen and paper after cyber-attack
100+ Romanian hospitals shut down internet access for 4 days in February 2024 due to a ransomware attack on the Hippocrates medical software, forcing staff to use pen and paper. The responseโthough di
Romaniaโs national cyber-security centre ordered more than 100 hospitals to disconnect from the internet on 10 February 2024 after a ransomware gang i
Read Full Story at BBC Technology โWhy This Matters
The incident underscores a brutal paradox of modern healthcare: digital transformation has made systems more efficient, but it has also expanded the attack surface for cybercriminals. By reverting to analog methods, Romanian hospitals exposed the fragility of their cybersecurity infrastructure while demonstrating an emergency resilience that many Western healthcare systems might struggle to replicate. This isnโt just a localized disruptionโitโs a stress test for an industry increasingly dependent on interconnected software.
Background Context
Hippocrates, a widely used medical software suite in Romania, operates as a critical digital backbone for hospitals, handling everything from patient records to diagnostic imaging. Its dominance stems from Romaniaโs 2017 healthcare digitization push, which sought to unify fragmented systems under a single platform. Yet this centralization created a single point of failureโone that ransomware actors exploited with alarming precision, forcing a temporary retreat to an era before electronic health records.
What Happens Next
The four-day shutdown likely wonโt be the last of its kind. Healthcare providers will now face pressure to diversify their software dependencies, but budget constraints and legacy system inertia may delay meaningful upgrades. Meanwhile, ransomware gangs will likely refine tactics to target similar "soft targets," betting that hospitalsโalready underfunded and overburdenedโwill remain vulnerable. The question is whether this becomes a cautionary tale or a catalyst for structural change.
Bigger Picture
This episode fits a broader pattern: as industries digitize, they inherit the risks of the digital world without always inheriting its safeguards. The healthcare sector, in particular, has become a prime target due to its reliance on outdated software and the high stakes of downtime. The Romanian responseโbrute-force resilienceโmay prove unsustainable elsewhere, forcing a reckoning over whether cybersecurity in critical infrastructure is a technical issue or a systemic one.
