News
TalkTalk hacker hit Withybush Hospital and others, costing tax payer £400,000
A ‘CYNICAL and ruthless’ hacker, motivated by spite and greed, targeted the computer systems at Withybush Hospital, The Herald can confirm.
Daniel Kelley, now aged 21, hacked into networks at Withybush and Prince Philip Hospital, Llanelli. When he did so, he prevented radiographers from viewing vital diagnostic images used to plan treatment for patients. The hacker also disrupted communications between different Health Board sites.
The Court heard that Kelley’s actions caused ‘a serious clinical risk of a catastrophic outcome’.
The hack cost the Welsh Government, which runs big public networks, £400,000 to repair its systems, improve its security systems, and prevent further hacks.
Kelley’s efforts in disrupting vital public services began when he implemented a Distributed Denial of Service attacks at Coleg Sir Gar, where he was a student.
Prosecutors alleged that Kelley’s motivation on that occasion was spite at being denied a place on a Level 3 computing course due to poor performance in his GCSEs.
A distributed denial-of-service (DDoS) attack is an attack in which multiple compromised computer systems attack a target, such as a server, website or another network resource, and cause a denial of service for users of the targeted resource.
In Kelley’s case, he deliberately targeted the College’s computer infrastructure, causing disruption to systems accessed by students and teachers, including examinations.
Having accessed the College network, Kelley was able to exploit its connection to wider Welsh public service computer infrastructure and caused targeted disruption to other bodies which shared the network’s resources.
There is no sign that Kelley committed these acts for anything other than his amusement and the feeling of power it gave him.
While Kelley’s activities had widespread adverse consequences, his next step presented a major escalation.
He hijacked the computer systems of companies in Australia and Canada. The targets included Zippo Lighters, Rogers Communications, RC Hobbies, ISP JISC, TAFE Queensland, and a court transcription service called For the Record in Australia.
He attempted to blackmail company executives by targeting their loved ones and making threats to collapse companies by wrecking their computer systems.
Kelley was arrested in July 2015 but his most audacious blackmail attempt was yet to come.
In October that year, together with a group of other hackers, Kelley took part in “significant and sustained cyber-attack” on TalkTalk.
The group broke into broadband provider TalkTalk’s customer database and stole a copy of its contents.
The stolen records included customer names and addresses, dates of birth, payment card details, phone numbers, and email addresses.
Around 157,000 customers in the UK were caught up in the hack, which was said to have cost TalkTalk £77m to clean up and cost it immeasurably more in lost customer confidence and income.
Kelley then attempted to extort £80,000 in exchange for not leaking the swiped customer database onto the web.
Peter Ratliff, prosecuting, described Kelley as a “prolific, skilled and cynical cyber-criminal” who was willing to “bully, intimidate, and then ruin his chosen victims from a perceived position of anonymity and safety – behind the screen of a computer.
“Where confidential and sensitive information had been stolen in the hack – typically the personal and credit card details of the company’s clients – the defendant would threaten the company with the public release of the material, knowing and exploiting the fact that the release would risk the ruin of the company concerned.
“It is clear from the content of the emails that the defendant sent that he derived enjoyment and excitement from the power he wielded over those he sought to intimidate.”
Sentencing Kelley, Judge Mark Dennis said Kelley hacked computers “for his own personal gratification” regardless of the damage caused.
His attempts at blackmail revealed a “cruel and calculating side to his character”, Judge Dennis said.
Kelley was sentenced to youth detention due to his age at the time of his arrest.
A spokesperson for Hywel Dda University Health Board said “the NHS is increasingly reliant on the use of digital systems to support patient care we hope that this sentence will act as a deterrent to others from attempting to hack public sector organisations in Wales in the future.
“At the time, this hack caused a number issue in Hywel Dda including:-
- Radiologists were unable to effectively report on diagnostic images because the reporting / dictation system we use were unresponsive during the Denial of Service attacks at Prince Philip Hospital. This seriously interrupted clinical workflow and wasted a great deal of Radiologist time. This could have adversely affected the care of patents including those critically ill/injured as without prompt, reliable access to images there is a serious clinical risk.
- Our Patient Administration System at Prince Philip Hospital had response time issues causing difficulties on the Wards, A&E and Maternity departments as well as administrative areas like Medical Records.
- Experienced delays with ICT services at other Health sites in the Llanelli area including Ammanford and Cross Hands Health Centres.
“Following this incident Welsh Government bolstered the Public Sector network (which all public bodies in Wales use) with hardware and software to detect and stop denial of service attacks in the future and mitigate the risks as far as possible.”
Community
Tractor run lights up Pembrokeshire and raises funds for charity
THE PEMBROKESHIRE ILLUMINATED TRACTOR RUN took place today (Dec 21), raising funds for two vital charities: the Catrin Vaughan Foundation and Wales Air Ambulance.
Starting at Clarbeston Road AFC at 6:00pm, the brightly lit convoy of nearly 200 tractors made its way through Withybush Hospital and Haverfordwest High Street before finishing at the Pembrokeshire County Showground.
The annual event has become a highlight of the festive calendar, drawing large crowds to witness the spectacle of tractors adorned with colourful lights and decorations.
Funds raised from the event will support the Catrin Vaughan Foundation, which provides crucial assistance to families facing hardship, and the Wales Air Ambulance, delivering life-saving emergency medical care across the region.
Organisers praised the dedication of local farmers and volunteers, whose commitment ensures the event’s continued success year after year.
(Image: Nia Marshall/Facebook)
Business
Ferry Terminal ‘extremely busy’ due to ongoing Holyhead closure
PEMBROKE DOCK Ferry Terminal has been experiencing significant congestion today as ferry services remain under immense pressure following the closure of Holyhead Port earlier this month.
The disruption, caused by storm damage, has rerouted ferry traffic through Pembrokeshire, leading to long queues and crowded facilities at the terminal.
The Herald can confirm that it has been very busy today with cars, lorries, and foot passengers queuing in large numbers. Staff are working tirelessly to manage the influx, directing vehicles and assisting passengers as they prepare to board the heavily booked ferries.
A spokesperson for the Port of Milford Haven said: “We are working closely with ferry operators and local authorities to ensure traffic flows as smoothly as possible, but the sheer volume of vehicles is causing unavoidable delays.”
Travelers are being urged to arrive early for their sailings and to remain patient as the terminal operates at full capacity.
Both Stena Line and Irish Ferries have increased capacity on their Pembrokeshire routes, deploying larger vessels, including the Stena Adventurer and the MV James Joyce, to handle the surge in demand.
From our position at the terminal, our photographer has captured photos showing long lines of vehicles, groups of foot passengers carrying luggage, and port staff coordinating efforts to ease congestion.
Authorities are advising non-essential travelers to consider rescheduling their journeys where possible and to monitor updates from ferry operators closely.
(Photos: Martin Cavaney/Herald)
Community
Festive celebrations at St Davids Cathedral this weekend
ST DAVIDS Cathedral is set to host two special events on Sunday (Dec 22), offering a blend of joyful participation and traditional carol singing to mark the Christmas season.
In the morning, families are invited to the Scratch Nativity at 11:00am. Attendees are encouraged to come dressed as wise men, angels, sheep, or shepherds and take part in an unrehearsed retelling of the Christmas story. Canon Leigh described the event as: “Complete, wonderful chaos for an hour… but with some poignant, thought-provoking moments to centre ourselves on the real meaning of Christmas.”
Later in the evening, the Festival of Nine Lessons and Carols by Candlelight will take place at 7:00pm, featuring the Cathedral Choir. The event, steeped in tradition, will see the cathedral bathed in candlelight as carols and scripture readings fill the historic space.
Doors will open at 5:45pm for those seeking unreserved seating, and a large turnout is expected for this beloved Christmas celebration.
-
News2 days ago
Ferry accident causes delay on new Dublin-Fishguard route
-
Top News7 days ago
Pembrokeshire man jailed after repeatedly punching pregnant wife
-
Education4 days ago
Home Education: Delays and missed opportunities risk further tragedy
-
Top News6 days ago
Police investigate dogs seen persistently chasing sheep on Pembrokeshire airfield
-
Top News6 days ago
Milford man dealt ‘persistent’ blows on girlfriend after urinating in flat
-
News7 days ago
Engine room fire caused by loose fuel pipe connection previously flagged
-
News7 days ago
Children seen kicking and ‘egging’ doors near Pembrokeshire train station in early hours
-
Top News7 days ago
Caws Cenarth ‘matriarch’, Thelma Adams, dies aged 86