May 10, 2024 at 02:56PM
Ascension, a major U.S. healthcare network, is diverting ambulances due to a suspected ransomware attack causing disruptions and system outages. MyChart, phone systems, and systems for ordering tests and medications are offline. Non-emergent procedures are on hold, and the network is working with experts to address the attack, suspected to be the work of the Black Basta ransomware gang.
The major U.S. healthcare network Ascension is currently experiencing a significant ransomware attack, resulting in clinical operation disruptions and system outages across multiple hospitals. The attack has affected critical systems such as the MyChart electronic health records system, phone systems, and systems for ordering tests, procedures, and medications.
As a result of this cyber security event, Ascension has instructed business partners to disconnect from its systems and has temporarily paused non-emergent elective procedures, tests, and appointments. Some hospitals are currently on diversion for emergency medical services to prioritize immediate triage for emergency cases.
Patients are advised to contact 911 in the event of a medical emergency, and the healthcare network has assured that its teams will work with patients to reschedule appointments or procedures as needed while systems are being restored. Patients are also encouraged to bring necessary information such as symptom notes, current medication lists, and prescription numbers or bottles to their appointments.
The suspected ransomware attack is believed to be the work of the Black Basta ransomware gang, which has a history of targeting the healthcare sector. This Ransomware-as-a-Service operation has previously targeted high-profile victims and accrued substantial ransom payments.
As a major private healthcare system in the United States, Ascension operates numerous facilities across 19 states and the District of Columbia and employs a significant number of providers and associates. The organization has reported substantial revenue and is currently working with incident response experts to assess the impact and duration of the disruption caused by the ransomware attack.