Ascension Hospitals' Computer Network Hit by Destructive Cyberattack Interrupting Clinical Operations

Ascension Hospital found itself grappling with a disruptive cyberattack that significantly hampered its clinical operations. The incident prompted the hospital operator to advise its business partners to temporarily disconnect from its systems as a precautionary measure. The disruption comes in the wake of a series of cyberattacks targeting the healthcare sector, including a notable incident earlier this year involving UnitedHealth, the largest health insurer in the United States.

The cybersecurity breach at Ascension was characterized by unusual activity detected within its select technology network systems. This prompted the hospital network to initiate an investigation into the extent of the impact and duration of the disruptions. Despite the challenges posed by the attack, Ascension emphasized its commitment to ensuring the safe and uninterrupted delivery of patient care.

As part of its response efforts, the nonprofit engaged the services of third-party cybersecurity experts from Mandiant to assist in both the investigation and remediation processes. Additionally, Ascension promptly notified the relevant authorities to address the situation effectively.

Established as a Catholic nonprofit nearly two decades ago, Ascension Hospital operates an extensive network comprising approximately 134,000 associates, 35,000 affiliated providers, and 140 hospitals across 19 states and the District of Columbia.

The disruption caused by the cyberattack extends beyond the technical realm, affecting clinical operations within the healthcare organization. Ascension acknowledges the severity of the situation and is actively working to determine the extent and duration of the disruption as part of its ongoing investigation.

In light of the evolving threat landscape facing the healthcare sector, exemplified by the recent warning issued by the U.S. Department of Health and Human Services regarding social engineering tactics targeting IT help desks, Ascension's response underscores the imperative of proactive cybersecurity measures.

The incident underscores the growing threat posed by cyberattacks to critical infrastructure, including healthcare institutions, and highlights the importance of robust cybersecurity measures to safeguard sensitive data and ensure the continuity of essential services.