Topics
More on Privacy & Security

Ascension confirms cyberattack is ransomware

No further information has been given on the ransomware amount or whether PHI has been compromised.

Susan Morse, Executive Editor

Photo: JazzIRT/Getty Images

Ascension has confirmed it experienced a ransomware attack that has caused disruptions to patient care in its network. 

Ascension reported the cyberattack on May 8.

"Ascension, with the support of leading cybersecurity experts, worked around the clock over the weekend to respond to the ransomware incident affecting our systems," the health system said in a released update. "We are focused on restoring systems safely. Our priority remains on providing safe patient care." 

It is making progress but it will take time to return to normal operations, Ascension said. "As systems and services come back online, we will share those updates so that our patients and communities can plan accordingly."

WHY THIS MATTERS

Ascension gave no further information on the ransomware amount or whether personal health information was compromised in the cyberattack.

The cyberattack disrupted clinical operations.

Ascension has engaged Mandiant, a third-party expert, to assist in the investigation and remediation process.

The health system said it detected unusual activity on select technology network systems on Wednesday and reached out to its business partners so they could safeguard their systems.

THE LARGER TREND

Ascension is one of the largest health systems in the country.

The cyberattack follows a February ransomware attack that continues to impact Change Healthcare. Change is owned by Optum, which is affiliated with the largest insurer in the nation, UnitedHealthcare. While systems are coming back online, the disruption continues to affect hospital and physician-practice revenue due to delays in claims payment.

UnitedHealth Group CEO Andrew Witty confirmed to a House subcommittee earlier this month that the company paid $22 million in ransomware through bitcoin to protect patient information.

Email the writer: SMorse@himss.org