Cyber Incident Victim: Kuripuni Medical Centre

On August 17, 2019, a cyber security attack impacted four medical centers in Wairarapa, New Zealand—Kuripuni, Greytown, Featherston, and Carterton—alongside their parent organization Tu Ora Compass Health. The attack forced all entities to take their public-facing websites offline, rendering them inaccessible to patients and the public. The incident originated from a compromise of Tu Ora Compass Health’s server infrastructure, which hosted the affected medical centers’ websites. This disruption occurred within the context of a broader global cyber attack campaign, though specific technical details about the attack vector or malware used were not disclosed in available reports. The immediate operational response involved isolating the compromised server and deactivating the dependent websites to contain the threat, though restoration timelines remained unclear at the time of reporting.

A Twitter user using the handle “VandaTheGod” claimed responsibility for related cyber attacks, initially framing their actions as a form of protest. When directly questioned via direct message about targeting medical centers, VandaTheGod responded with fragmented English stating, “Protest, my brother. Its spam my mensage.” After reviewing a news link about the medical center disruptions, the individual denied intentionally attacking healthcare entities, asserting, “Im no remember hack site medical. My atack gov edu.” DataBreaches.net suggested medical facilities might have been incidentally compromised due to potential .edu domain affiliations with academic institutions, though no confirmation of such linkages was provided. The attacker offered no further justification or acknowledgment after this exchange. The incident highlighted operational risks to healthcare providers during indiscriminate cyber campaigns, with no additional mitigation steps or long-term consequences disclosed in the source material.