The ransomware attack that hit Newfoundland and Labrador’s health-care IT systems in 2021 was “almost an inevitability” and likely resulted in the theft of personal data from the “vast majority” of the province’s population, says a report released Wednesday.
Health officials also broke provincial privacy laws by not disclosing key information within a reasonable time frame about the nature of the attack and whether information had been stolen, concludes the 115-page report from the office of the province’s information and privacy commissioner.
