Cyberattack Disrupts Major U.S. Healthcare Network, Exposing Patient Data
A ransomware attack has severely disrupted operations at Ascension, one of the largest nonprofit healthcare systems in the U.S., forcing hospitals and clinics across multiple states to divert emergency services and revert to manual record-keeping. The incident, detected on May 8, 2024, targeted Ascension’s network, which serves 140 hospitals and 40 senior care facilities in 19 states and Washington, D.C.
The attack has caused widespread outages, including disruptions to electronic health records (EHR), phone systems, and scheduling tools. Emergency departments at several Ascension hospitals have been temporarily closed or redirected, while non-emergency procedures and appointments have been delayed or canceled. Staff have resorted to paper-based workflows, slowing patient care and increasing the risk of errors.
Ascension confirmed the incident involved ransomware, though the specific strain and threat actor remain unidentified. The organization is working with cybersecurity firm Mandiant and law enforcement, including the FBI and CISA, to investigate the breach and restore systems. While no ransom demand has been disclosed, the attack follows a pattern of escalating cyber threats against healthcare providers, which are frequent targets due to their sensitive data and critical infrastructure.
Patient data exposure remains a concern, though Ascension has not confirmed whether protected health information (PHI) was accessed or exfiltrated. The incident underscores the growing vulnerability of healthcare systems to cyberattacks, which have surged in recent years, often disrupting care and compromising patient safety. Similar attacks on Change Healthcare (February 2024) and CommonSpirit Health (2022) have demonstrated the cascading effects of such breaches, including financial losses and operational paralysis.
As of May 13, 2024, Ascension continues to assess the full scope of the attack, with recovery efforts expected to take weeks. The incident highlights the urgent need for enhanced cybersecurity measures in the healthcare sector, where the stakes human lives and data privacy are uniquely high.
Ascension cybersecurity rating report: https://www.rankiteo.com/company/ascensionorg
"id": "ASC1773764792",
"linkid": "ascensionorg",
"type": "Ransomware",
"date": "3/2026",
"severity": "100",
"impact": "7",
"explanation": "Attack that could injure or kill people"{'affected_entities': [{'industry': 'Healthcare',
'location': '19 states and Washington, D.C., USA',
'name': 'Ascension',
'size': '140 hospitals and 40 senior care facilities',
'type': 'Nonprofit healthcare system'}],
'data_breach': {'personally_identifiable_information': 'Potential exposure',
'sensitivity_of_data': 'High (patient health records)',
'type_of_data_compromised': 'Protected health information '
'(PHI) (unconfirmed)'},
'date_detected': '2024-05-08',
'date_publicly_disclosed': '2024-05-08',
'description': 'A ransomware attack has severely disrupted operations at '
'Ascension, one of the largest nonprofit healthcare systems in '
'the U.S., forcing hospitals and clinics across multiple '
'states to divert emergency services and revert to manual '
'record-keeping. The incident caused widespread outages, '
'including disruptions to electronic health records (EHR), '
'phone systems, and scheduling tools, leading to delays in '
'patient care and increased risk of errors.',
'impact': {'brand_reputation_impact': 'Undermined trust in healthcare '
'cybersecurity',
'data_compromised': 'Patient data exposure remains a concern, '
'though not confirmed',
'downtime': 'Weeks (expected recovery time)',
'identity_theft_risk': 'Potential risk due to patient data '
'exposure',
'operational_impact': 'Emergency departments temporarily closed or '
'redirected, non-emergency procedures and '
'appointments delayed or canceled, manual '
'record-keeping implemented',
'systems_affected': ['Electronic health records (EHR)',
'Phone systems',
'Scheduling tools']},
'investigation_status': 'Ongoing',
'lessons_learned': 'The incident underscores the growing vulnerability of '
'healthcare systems to cyberattacks and the urgent need '
'for enhanced cybersecurity measures in the sector.',
'ransomware': {'data_encryption': True},
'recommendations': 'Implement stronger cybersecurity protocols, regular '
'vulnerability assessments, and incident response planning '
'tailored to healthcare operations.',
'references': [{'date_accessed': '2024-05-13',
'source': 'Cyber Incident Description'}],
'response': {'incident_response_plan_activated': True,
'law_enforcement_notified': ['FBI', 'CISA'],
'recovery_measures': 'Restoring systems, manual workflows '
'implemented',
'third_party_assistance': 'Mandiant'},
'title': 'Ransomware Attack on Ascension Healthcare Network',
'type': 'Ransomware'}