A major US health care system, Ascension, is currently diverting ambulances from several of its hospitals following a cyberattack that has disrupted access to electronic health records, phone systems, and various systems used for ordering tests and medications. This nonprofit network includes 140 hospitals in 19 states and 40 senior living facilities. As a result of the cyberattack, Ascension is implementing downtime procedures, which involve reverting to backup processes such as paper records to continue providing patient care while computer systems are down. Ascension has notified federal authorities of the incident, hired cybersecurity firm Mandiant to recover from the attack, and shut down systems in an effort to control the situation.
The hack on Ascension is the latest in a series of major cyberattacks on US health care networks, raising concerns about the vulnerability of the country’s health care system to such disruptions. This incident follows a ransomware attack on Change Healthcare, a subsidiary of UnitedHealth Group, in February, which caused billing disruptions at pharmacies nationwide. The attack on Change Healthcare threatened to put some health providers out of business, and UnitedHealth CEO Andrew Witty estimated that a third of Americans may have had their personal data compromised in the hack. UnitedHealth paid a $22 million ransom to the cybercriminals to protect patient data, highlighting the significant impact of cyberattacks on the health care industry.
Ascension is working to support its ministries in providing safe patient care amid the cyberattack, with established downtime protocols and procedures in place to ensure continuity of care. However, it is unclear how many hospitals within the Ascension network are diverting ambulances to other locations as a result of the attack. This incident underscores the ongoing threat that cyberattacks pose to critical infrastructure, including health care systems, and the need for robust cybersecurity measures to protect sensitive patient information and ensure the continued delivery of essential services.
The cyberattack on Ascension has prompted federal officials to offer support and assistance to the health care network as it works to recover from the breach. The involvement of federal authorities, along with the hiring of cybersecurity experts, is part of a standard response plan for organizations affected by cybercriminal activity. Ascension is taking steps to contain and mitigate the impact of the attack, including implementing downtime procedures and other backup processes to continue providing essential health care services to patients despite the disruption to computer systems.
The hack on Ascension is part of a troubling trend of cyberattacks targeting critical infrastructure and organizations in the US, including the health care industry. These attacks can have widespread repercussions, affecting patient care, data security, and financial stability. The incident highlights the urgent need for improved cybersecurity measures and increased awareness of the risks posed by cyber threats. As the health care sector increasingly relies on digital systems and connectivity, organizations must prioritize security to safeguard patient information and maintain the integrity and availability of essential health care services.
In light of the cyberattack on Ascension and other recent incidents, US lawmakers and government officials are raising concerns about the vulnerability of the country’s health care system to disruptive cyber threats. The impact of these attacks on patient care, data privacy, and financial stability underscores the need for greater investment in cybersecurity and resilience measures to protect critical infrastructure from cyber threats. The ongoing efforts to recover from the cyberattack on Ascension and mitigate its impact underscore the importance of proactive cybersecurity strategies and collaboration between public and private entities to defend against evolving cyber threats and safeguard the integrity of the health care system.