A ransomware attack has crippled operations at a major hospital network spanning 15 facilities across the Midwest, forcing the diversion of emergency patients and the postponement of scheduled surgeries. The attack is attributed to the LockBit successor group BlackMatter 2.0.
The health system's electronic health records, pharmacy systems, and medical imaging platforms were encrypted in the attack, which was discovered early Sunday morning. Hospitals have reverted to paper-based processes, significantly slowing patient care.
The attackers are demanding $30 million in cryptocurrency. The hospital system has not publicly stated whether it intends to pay, though FBI guidance recommends against ransom payments as they fund criminal enterprises and encourage future attacks.
Patient safety concerns are paramount. While no deaths have been directly attributed to the attack, the healthcare system has reported near-miss incidents related to medication errors caused by the loss of electronic safety checks and drug interaction alerts.
The incident underscores the devastating real-world impact of healthcare cyberattacks. The Department of Health and Human Services is fast-tracking new cybersecurity requirements for healthcare organizations that participate in Medicare, with rules expected by year-end.
