By Jonathan Mattise

A ransomware attack has prompted a health care chain that operates 30 hospitals in six states to divert patients from at least some of its emergency rooms to other hospitals, while putting certain elective procedures on pause, the company announced.

In a statement Monday, Ardent Health Services said the attack occurred Nov. 23 and the company took its network offline, suspending user access to its information technology applications, including the software used to document patient care.

The Nashville, Tennessee-based company said it cannot yet confirm the extent of any patient health or financial information that has been compromised. Ardent says it reported the issue to law enforcement and retained third-party forensic and threat intelligence advisors, while working with cybersecurity specialists to restore IT functions as quickly as possible. There's no timeline yet on when the problems will be resolved.

Ardent owns and operates 30 hospitals and more than 200 care sites with upwards of 1,400 aligned providers in Oklahoma, Texas, New Jersey, New Mexico, Idaho and Kansas.

All of its hospitals are continuing to provide medical screenings and stabilizing care to patients arriving at emergency rooms, the company said.

“Ardent’s hospitals are currently operating on divert, which means hospitals are asking local ambulance services to transport patients in need of emergency care to other area hospitals,” the company said on its website. “This ensures critically ill patients have immediate access to the most appropriate level of care.”

The company said each hospital is evaluating its ability to safely care for patients at its emergency room, and updates on each hospital's status will be provided as efforts to bring them back online continue.

There was no immediate claim of responsibility for the attack. Ransomware criminals do not usually admit to an attack unless the victim refuses to pay.

A recent global study by the cybersecurity firm Sophos found nearly two-thirds of health care organizations were hit by ransomware attacks in the year ending in March, double the rate from two years earlier but a slight dip from 2022. Education was the sector most likely to be hit, with attack saturation at 80%.

Increasingly, ransomware gangs steal data before activating data-scrambling malware that paralyzes networks. The threat of making stolen data public is used to extort payments. That data can also be sold online. Sophos found data theft occurred in one in three ransomware attacks on healthcare organizations.

Analyst Brett Callow at the cybersecurity firm Emsisoft said 25 U.S. healthcare systems with 290 hospitals were hit last year while this year the number is 36 with 128 hospitals. “Of course, not all hospitals within the systems may have been impacted and not all may have been impacted equally,” he said. “Also, improved resilience may have improved recovery times.”

“We’re not in a significantly better position than in previous years, and it may actually be worse,” he said.

“We desperately need to find ways to better protect our hospitals. These incidents put patients' lives at risk — especially when ambulances need to be diverted — and the fact that nobody appears to have yet died is partly due to luck, and that luck will eventually run out,” Callow added.

Most ransomware syndicates are run by Russian speakers based in former Soviet states, out of reach of U.S. law enforcement, though some “affiliates” who do the grunt work of infecting targets and negotiating ransoms live in the West, using the syndicates’ software infrastructure and tools.

The Kremlin tolerates the global ransomware scourge, in part, because of the chaos and economic damage to the West — and as long its interests remain unaffected, U.S. national security officials say.

While industries across the spectrum have been hit by ransomware, a recent attack on China’s biggest bank that affected U.S. Treasury trading represented a rare attack on a financial institution.

Associated Press technology reporter Frank Bajak contributed to this report.

Share:
More In Technology
Bumble Presses Lawmakers to Criminalize Unsolicited Nudes on the Internet
The dating app Bumble has sponsored bills and pushed lawmakers to criminalize the online practice of sending unsolicited nudes or “cyberflashing." Payton Iheme, Bumble's head of public policy for the Americas, joined Cheddar News to discuss why the app was going after the harassing behavior beyond its own platform. "Now, while we went to work internally in the company, and we created something called private detector to automatically blur those images so the user can decide if they want to see them, there's nothing for the rest of the internet," she said. "And so that's why we went to work with these laws."
Cyborg Mobile President on Disrupting the Lack of Diversity in Tech
The founder and president of Cyborg Mobile Kobie Hatcher has been on a strong trajectory to disrupt his industry with a program called The New Technologists. It's not only meant to address the diversity gap within large tech companies but also help pave the way to transform the lives of young BIPOC students. He joined Cheddar News to talk about how he's working to make a difference with the lack of diversity in tech. “There's truly no lack of talent out there. It's just identifying them and letting them know that, hey, I've been in the tech sector for over 20 years. I see you. I know what you can bring, bring it, we need it," Hatcher said.
Constituent Service Platform Indigov Raises $25 Million
Constituent service platform Indigov recently raised $25 million in a Series B funding round. Indigov bills itself as a constituent relationship management tool that helps elected officials improve the way they organize, respond to, and engage those they serve. The startup's services are being used by federal, state, and local governments across the country, including the U.S. House of Representatives. Alex Kouts, founder & CEO of Indigov, joins Cheddar News' Closing Bell to discuss.
Making Winning Investments During the NBA Playoffs
The 2022 NBA playoffs are intensifying as four teams vie for an NBA finals berth. Tonight, Stephen Curry and the Golden State Warriors can book their finals ticket with a win over the Dallas Mavericks, while Miami will be feeling the 'heat' tomorrow night, facing elimination against the Boston Celtics. And with the growing popularity of sports betting, the NBA playoffs offers a potential money-making opportunity for fans. Trysta Krick, host of BetMGM Tonight, joins Cheddar News' Closing Bell to discuss.
Snap's Gloomy Forecast May Be a Unique Case Among Social Media Platforms
Snap stock saw the worst day ever after a large drop in price on Tuesday following warnings of revenue and earnings slowdown. This trend caught on with other social and digital media stocks due to fears that brands heavily relying on advertising get hit with the same inflation struggles. However, some analysts note that Snap may be a unique case due to a rapid, possibly unsustainable, expansion leading to the current grim forecast.
Load More