Stateline

Hackers Strike Another Hospital System

Navigate to:

Hackers Strike Another Hospital System
A joint cybersecurity advisory from the FBI, the Department of Homeland Security's Cybersecurity and Infrastructure Agency (CISA) and the Department of Health and Human Services on the threat from ransomware activity targeting healthcare and the public health sector is photographed on Oct. 30, 2020, in Frederick, Md.
The FBI, the Department of Homeland Security and the Department of Health and Human Services issued a joint advisory in October on the threat from ransomware activity targeting health care and the public health sector. Health systems have continued to be victimized.
Jon Elswick The Associated Press

A network of hospitals and clinics in Ohio and West Virginia was forced to cancel surgeries and divert patients with emergencies to other facilities after it was hit in a ransomware attack this week.

Cybercriminals struck Memorial Health System, a nonprofit that runs three hospitals, outpatient service sites and clinics spread across southeastern Ohio and northwestern West Virginia, early Sunday morning.

Officials said Memorial had to shut down its information technology systems and cancel urgent surgical cases scheduled for Monday. It also had to divert ambulances to other hospitals.

Stateline Apr13
Stateline Apr13
Stateline Story

Hospital Hackers Seize Upon Coronavirus Pandemic

Quick View
Stateline Story

Hospital Hackers Seize Upon Coronavirus Pandemic

“We have become easy targets.”

 

"Maintaining the safety and security of our patients and their care is our top priority and we are doing everything possible to minimize disruption,” president and CEO Scott Cantley said in a written statement posted on the system’s website. “Staff at our hospitals … are working with paper charts while systems are restored, and data recovered."

Cantley said at a news conference that the health system was working with security partners, including the FBI and the Department of Homeland Security, to restore operations as soon as possible. He said there hadn’t been any indication that patients’ medical records were accessed.

On Wednesday, Memorial posted an update saying its systems could be restored as early as Sunday.

“We have reached a negotiated solution and are beginning the process that will restore operations as quickly and as safely as possible,” Cantley wrote.

“It is unfortunate that many health care organizations are confronting the impacts of an evolving cyber threat landscape,” he added, noting that Memorial will focus on beefing up its security.

Ransomware typically spreads through phishing, in which hackers email malicious links or attachments and people unwittingly click on them. Malware then hijacks the victim’s computer system and holds it hostage until the victim either pays a ransom, usually with the cryptocurrency bitcoin, or restores the system on their own.

Since the pandemic began, cybersecurity experts say they have seen an uptick in attempted ransomware and other hacking attempts on hospitals, health care systems, clinical labs and research centers.

Hospitals often lag behind other industries such as financial services when it comes to cybersecurity, experts say. That makes them an ideal target for hackers, especially during the pandemic.

The hospitals’ biggest fear is that if computer networks get locked up or knocked offline, health care workers won’t be able to access important information such as patient medical records and test results.

hands on keyboard
hands on keyboard
Stateline Story

Hackers Seized on the Pandemic. Some States Are Fighting Back.

Quick View
Stateline Story

Hackers Seized on the Pandemic. Some States Are Fighting Back.

“We don’t want cyber 9/11.”

Mask Mandate Wars Top State Stories 8/19
EXPLORE MORE FROM STATELINE
Places
Topics