A cyberattack targeting the Ascension health system, which operates in 19 U.S. states, caused disruptions across its network. The attack led to the diversion of ambulances, delays in medical tests, and blocked online access to patient records.
Ascension detected unusual activity on its computer network systems and called in Mandiant, a leading cybersecurity unit, to respond. Although Ascension did not confirm whether it was a ransomware attack or if a ransom was paid, the incident resembled ransomware attacks seen elsewhere.
Both the electronic records system and the MyChart system, which allows patients to access their records and communicate with doctors, were offline. The investigation and restoration work are ongoing, with no timeline for completion provided.
To prevent further spread of ransomware, hospital IT officials typically disconnect electronic medical records and appointment systems. Ambulances were diverted from several hospitals, including those in Wichita, Kansas, and Pensacola, Florida. Patients reported missing appointments and difficulties refilling prescriptions.
Staff at affected hospitals resorted to pen and paper for documentation and used PA systems for medical emergencies due to communication system failures.
Ransomware attacks have increased in the healthcare sector, with cybercriminals stealing data and extorting payments by threatening to make it public. Ascension is working with internal and external advisors to investigate and restore systems.
In a similar attack earlier this year on Change Healthcare, hackers gained access through a server lacking basic security measures. The company’s core systems are now functional, but it may take months to identify and notify affected parties.
UnitedHealth, which acquired Change Healthcare in 2022, faces constant cyber threats, repelling an intrusion every 70 seconds. A previous ransomware attack on Ardent Health Services in November led to patient diversions and IT application suspensions.
