Hospitals Close Due to Major Ransomware Security Incident

One medical system has reverted to old-school paper records, as many of its computers have gone offline.

The California-based Prospect Medical Holdings has been hit with a ransomware attack that has forced a shutdown for hospitals across multiple states. Recovery efforts are on the way.

The days-long security incident started last Tuesday, and many hospitals remain affected nearly a week later, a spokesperson for the healthcare group said. The company operates 16 hospitals and over 165 clinics and outpatient facilities across four states: California, Connecticut, Pennsylvania and Rhode Island.

It’s another example of the dangers behind cyber attacks on the healthcare industry, which remains one of the most attractive targets for ransomware groups.

Emergency Rooms Close, Hospitals Use Paper Records

Prospect Medical Holdings revealed the company-wide ransomware attack with an announcement post noting a “data security incident that has disrupted our operations.”

Springfield, Pennsylvania’s Crozer-Chester Medical System (CCMS) has reverted to old-school paper records, as many of its computers have gone offline. Representatives of this system have confirmed that the “security incident” was indeed a ransomware attack. 

 

About Tech.co Video Thumbnail Showing Lead Writer Conor Cawley Smiling Next to Tech.co LogoThis just in! View
the top business tech deals for 2024 👨‍💻
See the list button

According to other reports, “many” primary care services remained closed for the majority of last week, including emergency rooms.

How Bad Is the Damage?

The company says that it has taken its systems offline in response in order to “protect” them and is investigating with the aid of “third-party cybersecurity specialists.” Operations have yet to return to normal, but the notice mentions a few details about the 16 hospitals under its purview:

  • Hospitals continue to accept walk-ins through the emergency departments.
  • Scheduled surgical procedures remain as planned unless patients are otherwise notified by their physician’s office.
  • Visiting hours are not affected.

This is far from an isolated incident, however: According to the latest healthcare stats, a minimum of 21 systems in the US have dealt with ransomware in 2023 alone, for a total of 50 hospitals affected.

Why Is Healthcare Such a Big Target?

Ransomware attackers are looking for targets that have a few things to offer: First, they need a large amount of sensitive customer data. Without these databases, there’s not much worth ransoming.

Second, the targets need to be large enough that they have a budget that could accommodate a hefty ransom. Healthcare industries fit both those criteria, along with dental, insurance, and many government operations.

In fact, healthcare operations have been more likely to be hit with ransomware than to escape it in recent years: Ransomware attacks hit 66% of healthcare organizations, a 2021 survey found, which was up from just 34% the previous year. Plus, healthcare attacks are more likely to see a ransom paid out, according to the same data.

If your hospital might be at risk, your best options are to have a cybersecurity team standing by to assist — as well as training your staff on how to spot the phishing tactics that can give attackers a foothold.

Did you find this article helpful? Click on one of the following buttons
We're so happy you liked! Get more delivered to your inbox just like it.

We're sorry this article didn't help you today – we welcome feedback, so if there's any way you feel we could improve our content, please email us at contact@tech.co

Written by:
Adam is a writer at Tech.co and has worked as a tech writer, blogger and copy editor for more than a decade. He was a Forbes Contributor on the publishing industry, for which he was named a Digital Book World 2018 award finalist. His work has appeared in publications including Popular Mechanics and IDG Connect, and his art history book on 1970s sci-fi, 'Worlds Beyond Time,' is out from Abrams Books in July 2023. In the meantime, he's hunting down the latest news on VPNs, POS systems, and the future of tech.
Explore More See all news
Back to top
close Thinking about your online privacy? NordVPN is Tech.co's top-rated VPN service See Deals