Head of security at TEHIK Tõnis Komp said that the center’s online environment was breached to access Health Board data. Komp emphasized that digital medical records were not accessed.
“We will analyze the security of systems to ensure quality operation. Our time is currently spent monitoring the systems as attempts to breach them seem to be continuing. We are working round the clock,” Komp said.
Head of RIA’s cybersecurity service Lauri Aasmann said that the Ministry of Foreign Affairs was the least hit.
“They only managed to hijack accounts that can be used to alter content on the ministry’s website,” Aasmann explained.
He described all three attacks as very serious incidents.
“We have the situation under control by today. We have given both public and private sector partners information to make it less likely such attacks could be successfully repeated. RIA will continue analyzing the incidents in more detail. We have been in touch with the software developer and the vulnerabilities have been patched by now,” he added.
Criminal proceedings launched
The Central Criminal Police have launched criminal proceedings to trace the origin and perpetrators of the attacks but cannot divulge much at this point.
State prosecutor Eleliis Rattam said that it cannot be revealed when the incidents took place, adding that the Prosecutor’s Office launched proceedings in November.