Skip to main page content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Access keys NCBI Homepage MyNCBI Homepage Main Content Main Navigation
. 2022 Aug 6;7(5):100914.
doi: 10.1016/j.adro.2022.100914. eCollection 2022 Sep-Oct.

A National Cyberattack Affecting Radiation Therapy: The Irish Experience

Aileen Flavin  1 Eve O'Toole  2 Louise Murphy  2 Ruth Ryan  2 Brendan McClean  3 Clare Faul  3 Carol McGibney  1 Stephen Coyne  4 Geraldine O'Boyle  4 Cormac Small  4 Caroline Sims  1 Maeve Kearney  5   6 Mary Coffey  5   6 Anita O'Donovan  5   6
Affiliations

A National Cyberattack Affecting Radiation Therapy: The Irish Experience

Aileen Flavin et al. Adv Radiat Oncol. .

Abstract

On Friday, May 14, 2021, the Health Service Executive, the organization providing public health services in the Republic of Ireland, was the victim of a significant cyberattack on its information technology systems. All systems were subsequently shut down to prevent further damage and to allow cybersecurity experts to investigate the attack. As a result, oncology services were severely disrupted, with the cessation of radiation therapy treatments in all public radiation therapy departments. Ireland has 5 large public and 6 smaller private radiation therapy centers in total. Because of the widespread adoption of electronic medical records in radiation therapy departments, it wasn't possible to retrieve patient details of those who were undergoing radiation therapy at the time of the cyberattack. In total, 513 patients nationally had their radiation therapy interrupted. A national radiation therapy cyberattack response team was formed immediately to oversee the response to the attack. The immediate concerns were radiation therapy emergencies and category 1 patients where gaps in treatment would have an adverse effect on outcome. Communication with patients and the public was also established as a priority and agreements were reached with the private sector for the treatment of patients affected by the cyberattack. The national media was used to alert patients of the need to communicate with their radiation therapy department. Dedicated phone lines were established. Locally, radiation therapy departments held daily crisis meetings with key staff members, including information technology personnel. Individual centers employed different technologies for treatment planning and data storage, so local solutions to the cyberattack to reestablish radiation therapy for patients were developed. In addition, national documentation on prioritization of patients to resume treatment was produced and a national approach was made to compensate for gaps in treatment caused by the attack. All 5 centers had reestablished radiation therapy by May 30, although there has been a long aftermath to the cyberattack. In this article, we provide an overview of the effects of the cyberattack on our national radiation therapy service and our strategy to resume patient treatment in a timely fashion.

PubMed Disclaimer

Figures

Fig 1
Fig. 1
Systems that were shut down due to the cyberattack. Abbreviations: EMRs = electronic medical records; OIS = oncology information system; PACS = picture archiving and communications systems; TPS = treatment planning system.
Fig 2
Fig. 2
Implications of lost services.
Fig 3
Fig. 3
Local management strategies to mitigate against the adverse effects of the cyberattack.
Fig 4
Fig. 4
Timeline of events during the national cyberattack.
Fig 5
Fig. 5
The National Cancer Control Programme's capacity escalation plan as its radiation oncology response to the cyberattack. Abbreviations: BCC = basal cell carcinoma; RAI = radioactive iodine.
Fig 5
Fig. 5
The National Cancer Control Programme's capacity escalation plan as its radiation oncology response to the cyberattack. Abbreviations: BCC = basal cell carcinoma; RAI = radioactive iodine.
Fig 6
Fig. 6
National Cancer Control Programme (NCCP) risk assessment tool for radiation oncology during the Health Service Executive (HSE) information technology (IT) cyberattack.
Fig 7
Fig. 7
National Cancer Control Programme–identified risks during radiation therapy cyberattack.
See this image and copyright information in PMC

References

    1. Department of Health (Ireland): National Cancer Strategy 2017-2026. Available at: http://health.gov.ie/wp-content/uploads/2017/07/National-Cancer-Strategy.... Accessed October 31, 2021.
    1. Al-rimy BAS, Maarof MA, Shaid SZM. Ransomware threat success factors, taxonomy, and countermeasures: A survey and research directions. Comput Sec. 2018;74:144–166.
    1. Joyce C, Roman FL, Miller B, Jeffries J, Miller RC. Emerging cybersecurity threats in radiation oncology. Adv Radiat Oncol. 2021;6 - PMC - PubMed
    1. Pinkham DW, Sala IM, Soisson ET, Want B, Deeley MA. Are you ready for a cyberattack? J Appl Clin Med Phys. 2021;22:4. - PMC - PubMed
    1. Nelson CJ, Lester-Coll NH, Li PC, et al. Development of rapid response plan for radiation oncology in response to cyberattack. Adv Radiat Oncol. 2021;6 - PMC - PubMed