Cyber Incident Victim: Featherston Medical Centre

On August 17, 2019, a cyber attack targeting Tu Ora Compass Health’s server disrupted online services for four Wairarapa medical practices in New Zealand: Kuripuni, Greytown, Featherston, and Carterton Medical Centres. The attack forced the immediate takedown of Tu Ora Compass Health’s website and all affiliated medical center sites, rendering them inaccessible to patients and staff. While the article described the incident as part of a "global cyber security attack," specific technical details about the attack vector, malware used, or data compromise were not disclosed in the source material. The operational impact centered on the unavailability of public-facing websites, though the article did not specify whether internal medical systems, patient records, or appointment scheduling functions were affected. No information was provided regarding the duration of the outage, restoration timelines, or whether alternative communication channels were established for patients during the disruption.

The attacker, using the alias "VandaTheGod," initially claimed responsibility for the incident via direct messages on Twitter, characterizing it as a form of protest. When confronted by DataBreaches.net about targeting medical facilities, VandaTheGod expressed uncertainty, stating "Im no remember hack site medical" and asserting their intended targets were government or educational entities (.gov or .edu domains). This exchange suggested potential targeting errors or misidentification of domain affiliations, though the attacker did not explicitly acknowledge mistaken targeting beyond the initial denial. The article emphasized the ethical concerns surrounding attacks on healthcare infrastructure, with the journalist directly appealing to self-proclaimed hacktivists to avoid endangering public welfare through such actions. No additional technical response measures, law enforcement involvement, or post-incident analyses were detailed in the available source material.