Hospital chain attack part of ongoing cybersecurity concerns

Oct 6, 2022, 1:32 PM | Updated: Oct 9, 2022, 9:18 pm
The MercyOne Des Moines Medical Center campus is seen, Thursday, Oct. 6, 2022, in Des Moines, Iowa....

The MercyOne Des Moines Medical Center campus is seen, Thursday, Oct. 6, 2022, in Des Moines, Iowa. Diverted ambulances. Cancer treatment delayed. Electronic health records offline. These are just some of ripple effects of an apparent cyberattack on the major nonprofit health system that disrupted operations throughout the U.S. Meanwhile, The Des Moines Register said the incident occurred Monday, Oct. 3, 2022, and forced the diversion of five ambulances from the emergency department of the city's Mercy One Medical Center to other medical facilities. (AP Photo/Charlie Neibergall)

(AP Photo/Charlie Neibergall)

CHICAGO (AP) — Diverted ambulances. Cancer treatment delayed. Electronic health records offline. These are just some of ripple effects of an apparent cyberattack on a major nonprofit health system that disrupted operations throughout the U.S.

While CommonSpirit Health confirmed it experienced an “IT security issue” earlier this week, the company has remained mum when pressed for more details about the scope of the attack. The health system giant has 140 hospitals in 21 states. As of Thursday, it’s still unknown how many of its 1,000 care sites that serve 20 million Americans were affected.

Despite the lingering questions, the incident underscores the growing concerns surrounding ransomware attacks on health care systems with patient care at stake.

In Tacoma, Washington, Mark Kellogg told KING-TV that his wife, Kathy, had been scheduled to get a cancerous tumor on her tongue removed on Monday, but the procedure was put off several days because of the cyberattack. Virginia Mason Franciscan Health’s parent company is CommonSpirit Health.

“Everything we do today is all on a computer, and without it you’re back to the stone age writing on a tablet,” Kellogg said.

In Iowa, the Des Moines Register reported that the incident forced the diversion of five ambulances from the emergency department of the city’s MercyOne Medical Center to other medical facilities.

The incident forced both MercyOne and VMFH to take certain IT systems offline — including patients’ electronic health records — as a precaution.

Brett Callow, a threat analyst with cybersecurity provider Emsisoft, said the incident could be “the most significant attack on the health care sector to date” if all CommonSpirit hospitals and other facilities were affected.

Emsisoft has tracked at least 15 health care systems in the U.S. affected by ransomware this year, which manage more than 60 hospitals. Callow said data was stolen in 12 of the 15 instances, adding that those are almost surely undercounts as some ransomware attacks aren’t widely reported.

Callow said one of the largest known attacks within health care came in September 2020 when a ransomware attack struck all 250 health care facilities owned by Universal Health Services.

CommonSpirit’s incident could exceed that, depending on how many of its facilities were hit. That could mean the company faces large financial costs to get through the incident and recover.

Callow cited the loss of more than $100 million reported by Scripps Health tied to a 2021 ransomware attack that affected its five hospitals in California as an example.

Asked for more information on the incident and its effects on Thursday, a spokesperson for CommonSpirit said the health system could not provide more details.

The most worrying effect of any substantial attack on healthcare is on patients, Callow said.

“I’ve seen reports that at least one of the impacted hospitals had to divert ambulances to other facilities and that delay in getting people the care they need could obviously represent a risk to the lives of patients,” he said. “Beyond that, these incidents can have a long-term impact on patient outcomes — delaying treatments, for example.”

In 2020, the FBI and other federal agencies warned that they had credible information that cybercriminals could unleash a wave of data-scrambling extortion attempts against U.S. hospitals and health care providers.

That’s because ransomware criminals are increasingly stealing data from their targets before encrypting networks, using it for extortion. They often sow the malware weeks before activating it, waiting for moments when they believe they can extract the highest payments.

Health care is classified by the U.S. government as one of 16 critical infrastructure sectors Health care providers are seen as ripe targets for hackers.

If patient data is accessed, health care providers are required by law to notify the Department of Health and Human Services.

___

Kruesi reported from Nashville, Tennessee.

Copyright © The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.


              The MercyOne Des Moines Medical Center campus is seen, Thursday, Oct. 6, 2022, in Des Moines, Iowa. Diverted ambulances. Cancer treatment delayed. Electronic health records offline. These are just some of ripple effects of an apparent cyberattack on the major nonprofit health system that disrupted operations throughout the U.S. Meanwhile, The Des Moines Register said the incident occurred Monday, Oct. 3, 2022, and forced the diversion of five ambulances from the emergency department of the city's Mercy One Medical Center to other medical facilities. (AP Photo/Charlie Neibergall)
            
              The MercyOne Des Moines Medical Center campus is seen, Thursday, Oct. 6, 2022, in Des Moines, Iowa. Diverted ambulances. Cancer treatment delayed. Electronic health records offline. These are just some of ripple effects of an apparent cyberattack on the major nonprofit health system that disrupted operations throughout the U.S. Meanwhile, The Des Moines Register said the incident occurred Monday, Oct. 3, 2022, and forced the diversion of five ambulances from the emergency department of the city's Mercy One Medical Center to other medical facilities. (AP Photo/Charlie Neibergall)
            
              The MercyOne Des Moines Medical Center campus is seen, Thursday, Oct. 6, 2022, in Des Moines, Iowa. Diverted ambulances. Cancer treatment delayed. Electronic health records offline. These are just some of ripple effects of an apparent cyberattack on the major nonprofit health system that disrupted operations throughout the U.S. Meanwhile, The Des Moines Register said the incident occurred Monday, Oct. 3, 2022, and forced the diversion of five ambulances from the emergency department of the city's Mercy One Medical Center to other medical facilities. (AP Photo/Charlie Neibergall)

AP

Associated Press

Small plane caught in power lines after crash, passengers OK

GAITHERSBURG, Md. (AP) — A small plane carrying at least two people got stuck in live power lines Sunday evening in Maryland, causing widespread power outages in the surrounding county as officials tried to extricate the aircraft. The Federal Aviation Administration said in a statement that the single-engine plane, which had departed White Plains, N.Y., […]
18 hours ago
This combination of photos provided by the Chesapeake, Va., Police Department shows top row from le...
Associated Press

Walmart shooting claims teen, young woman, father, mother

CHESAPEAKE, Va. (AP) — A 16-year-old helping his family. A custodian and father of two. A mother with wedding plans. A happy-go-lucky guy. A longtime employee. That’s how friends and family described some of the six people killed at a Walmart in Chesapeake, Virginia, when a manager opened fire with a handgun before an employee […]
18 hours ago
FILE - Los Angeles Rams wide receiver Odell Beckham Jr. walks on the sideline during a NFL division...
Associated Press

NFL free agent Odell Beckham Jr. taken off plane in Miami

MIAMI (AP) — NFL free agent Odell Beckham Jr. was removed by police from an aircraft before takeoff at Miami International Airport after officials said he failed to respond to requests to buckle his seatbelt and appeared to be unconscious, police and airline officials said Sunday. “Fearing that Mr. Beckham was seriously ill, and that […]
18 hours ago
FILE - Chickens walk in a fenced pasture at an organic farm in Iowa on Oct. 21, 2015. Nebraska agri...
Associated Press

Bird flu prompts slaughter of 1.8M chickens in Nebraska

OMAHA, Neb. (AP) — Nebraska agriculture officials say another 1.8 million chickens must be killed after bird flu was found on a farm in the latest sign that the outbreak that has already prompted the slaughter of more than 50 million birds nationwide continues to spread. The Nebraska Department of Agriculture said Saturday that the […]
18 hours ago
This photo provided by the U.S. Navy shows U.S. Navy Petty Officer 2nd Class Thomas James in Centur...
Associated Press

Colorado shooting victim ‘wanted to save the family I found’

COLORADO SPRINGS, Colo. (AP) — A member of the U.S. Navy who was injured while helping prevent further harm during a shooting at a gay nightclub in Colorado last weekend said Sunday that he “simply wanted to save the family that I found.” Petty Officer 2nd Class Thomas James made his first public comments on […]
18 hours ago
FILE - Director Quentin Tarantino, left, poses with Friars Club Dean Freddie Roman at the Quentin T...
Associated Press

Borscht Belt comedian Freddie Roman dies at age 85

Comedian Freddie Roman, the former dean of The Friars Club and a staple of the Catskills comedy scene, has died. He was 85. Roman died Saturday afternoon at Bethesda Hospital in Boynton Beach, Florida, his booking agent and friend Alison Chaplin said Sunday. His daughter told the entertainment trade Deadline that he suffered a heart […]
18 hours ago

Sponsored Articles

(Photo via MLB's Arizona Fall League / Twitter)...
Arizona Fall League

Top prospects to watch at this year’s Arizona Fall League

One of the most exciting elements of the MLB offseason is the Arizona Fall League, which began its 30th season Monday.
...
Children’s Cancer Network

Children’s Cancer Network celebrates cancer-fighting superheroes, raises funds during September’s Childhood Cancer Awareness Month

Jace Hyduchak was like most other kids in his kindergarten class: He loved to play basketball, dress up like his favorite superheroes and jump as high as his pint-sized body would take him on his backyard trampoline.
...
Day & Night Air Conditioning, Heating and Plumbing

Here are 4 signs the HVAC unit needs to be replaced

Pool renovations and kitchen upgrades may seem enticing, but at the forefront of these investments arguably should be what residents use the most. In a state where summertime is sweltering, access to a functioning HVAC unit can be critical.
Hospital chain attack part of ongoing cybersecurity concerns