Cyberattack disrupts hospital systems across the USA

Care centres are closed from California to Rhode Island

clock • 2 min read
Hospital computer systems across the US face service disruptions due to a cyberattack
Image:

Hospital computer systems across the US face service disruptions due to a cyberattack

A cyberattack at a California-based healthcare system late last week led to the closure of emergency rooms and forced some facilities to rely on paper records.

The incident began on Thursday at facilities operated by Prospect Medical Holdings, which operates more than a dozen hospitals in states such as California, Texas, Pennsylvania, Connecticut and Rhode Island.

According to its website, the company operates a network of over 160 outpatient centres and clinics.

The attack, on Thursday, led to widespread chaos in those facilities.

Several primary care services remained closed on Friday, while security experts assessed the issue and worked to resolve it.

"Prospect Medical Holdings facilities are experiencing IT complications impacting some of our ECHN locations," the company wrote on its website.

On its own website, Eastern Connecticut Health Network, an affiliate of Prospect Medical, listed several locations that would be closed "until further notice". These included a medical imaging centre, an urgent care facility and an outpatient blood-draw centre, among others.

Emergency departments at Manchester Memorial and Rockville General Hospital remained closed throughout much of Thursday, with patients diverted to other nearby medical centres.

CharterCARE Health Partners, an affiliate in Rhode Island, wrote on Facebook that it had to reschedule certain appointments and revert to using paper records due to the cyberattack.

In Pennsylvania, the attack impacted services at several facilities, including the Crozer-Chester Medical Center in Upland, Delaware County Memorial Hospital in Drexel Hill, Springfield Hospital in Springfield and Taylor Hospital in Ridley Park.

Prospect confirmed the cyberattack in an emailed statement to The Guardian.

"Upon learning of this, we took our systems offline to protect them and launched an investigation," the statement said.

"While our investigation continues, we are focused on addressing the pressing needs of our patients as we work diligently to return to normal operations as quickly as possible," it added.

The company didn't share details about the nature of the attack. However, it said that it was in communication with the FBI and third-party cybersecurity specialists to address the situation.

The healthcare sector, with its sensitive and critical data, has become a prime target for cybercriminals seeking to exploit vulnerabilities and demand ransom payments for the release of encrypted data.

Hackers often deploy ransomware to block an organisation's access to its computer network and then extort money in exchange for restoring access.

In 2022, a cyberattack against One Brooklyn Health, a hospital group in New York, forced staff members to resort to using paper records.

Also last year, CommonSpirit Health, a healthcare system with over 140 hospitals and 700 care sites across the United States, experienced a cyberattack that postponed surgeries and doctor visits.

You may also like
Dutch NCSC warns of ongoing Chinese FortiGate attacks

Hacking

About 14,000 firewalls breached before Fortinet knew about the flaw

clock 14 June 2024 • 3 min read
Cornwall hospitals on road to recovery after IT incident

Health

Trust blames ‘local issue’, not cyber attack

clock 12 June 2024 • 1 min read
UK and Canada launch joint probe into 23andMe data breach

Hacking

Company has pledged to cooperate with regulators

clock 12 June 2024 • 2 min read

Sign up to our newsletter

The best news, stories, features and photos from the day in one perfectly formed email.

More on Hacking

Dutch NCSC warns of ongoing Chinese FortiGate attacks

Dutch NCSC warns of ongoing Chinese FortiGate attacks

About 14,000 firewalls breached before Fortinet knew about the flaw

clock 14 June 2024 • 3 min read
Pure Storage says attackers broke into a Snowflake environment

Pure Storage says attackers broke into a Snowflake environment

But no sensitive data was compromised

clock 13 June 2024 • 2 min read
UK and Canada launch joint probe into 23andMe data breach

UK and Canada launch joint probe into 23andMe data breach

Company has pledged to cooperate with regulators

clock 12 June 2024 • 2 min read