FBI is investigating this matter but refused to say that how the hackers broke in. JBoss Technology is well liked as it lets programmers to write custom built software tools that can be instantly made available throughout the company, however security research found that it was frequently misconfigured to let unauthorized outside users to obtain access. “It was not immediately clear why the hospital chain, which operates 10 hospitals in Maryland and Washington including the MedStar Georgetown University Hospital, was still vulnerable years after those warnings. The new disclosure doesn’t diminish the potential culpability of the hackers responsible for the break-in, but it reveals important details about how the crime unfolded. And it could affect MedStar’s civil or administrative exposure under U.S. laws and regulations that require health providers to exercise reasonable diligence to protect their systems”. Associated Press
