A website owned by a Simcoe, Ont. hospital has been sending malware, including ransomware, to unsuspecting visitors because it was running an old version of its content management software, security firm Malwarebytes has discovered.
Norfolk General Hospital has been using an outdated version of Joomla software that contains known vulnerabilities, according to Malwarebytes’ senior security researcher Jérôme Segura. While the hospital wasn’t subject to a targeted attack, Segura said, those vulnerabilities were likely found in an automated script that scans sites for compromises that it can penetrate.
http://business.financialpost.com/fp-tech-desk/cio/simcoe-ont-based-hospital-website-hacked-in-ransomware-attack-the-site-was-a-sitting-duck?__lsa=a523-e25b