Ascension, one of America’s largest healthcare systems, disclosed that a ransomware attack in May 2024 originated from an employee inadvertently downloading a malicious file onto a company device.
According to Ascension, the employee’s action, believed to be an innocent mistake, led to significant disruptions. The attack affected vital systems including the MyChart electronic health records, phones, and platforms for ordering tests and medications. In response, Ascension took immediate measures on May 8, isolating affected devices to contain what was initially identified as a “cyber security event.”
This disruption forced healthcare staff to revert to manual methods for managing patient records, complicating procedures and medication orders.
Ongoing Impact and Recovery Efforts
The fallout extended beyond the initial incident, prompting Ascension to temporarily halt non-emergent elective procedures, tests, and appointments. Emergency medical services were redirected to ensure minimal disruption to patient care.
As of the latest update, Ascension continues to grapple with service disruptions. Efforts are underway to restore electronic health record systems, patient portals, phone lines, and vital ordering systems for tests, procedures, and medications.
An investigation revealed that threat actors accessed and extracted files from a limited number of servers within Ascension’s extensive network. These servers, primarily used for daily operational tasks, were among thousands in the network.
Data Breach Concerns
While Ascension acknowledged the potential compromise of Protected Health Information (PHI) and Personally Identifiable Information (PII) from these servers, no evidence suggests breaches from Electronic Health Records (EHR) or clinical systems storing comprehensive patient records.
Suspected Perpetrators and Industry Impact
Although Ascension has yet to attribute the attack to a specific ransomware group, media reports have linked the incident to the Black Basta gang. Known for targeting healthcare sectors, Black Basta has gained notoriety for accelerating attacks since its emergence in April 2022, affecting numerous organizations worldwide.
The healthcare sector, including high-profile targets like Ascension, has been on high alert due to escalating cyber threats. Recent reports highlight Black Basta’s extensive track record, including notable breaches at organizations such as Rheinmetall and Capita.
Ascension: A Vital Healthcare Network
Ascension operates a vast network comprising 140 hospitals, 40 senior care facilities, and employs thousands of healthcare providers and staff across the United States. With a robust presence in 19 states and the District of Columbia, Ascension reported substantial revenue in 2023, underlining its critical role in the nation’s healthcare landscape.
As investigations and recovery efforts continue, Ascension remains committed to safeguarding patient data and restoring full operational capacity across its network. The incident underscores the ongoing cybersecurity challenges faced by healthcare institutions, necessitating heightened vigilance and preventive measures against evolving cyber threats.
You may also like
Seeking Refuge in Cyprus, They’re Stranded in Island’s U.N. Buffer Zone
US Implements Ban on Kaspersky Software Due to Alleged Russian Connections
Part 1: Claim Your Business Listing on “TheCyprus”
Part 2: Promote (Drive Growth with Targeted Advertising on TheCyprus Network)
Part 3: Convert Leads into Customers with Advanced Business Management Tools on TheCyprus Network
Cyprus Sets Guinness World Record for Largest Human Chain for Peace
