September 29, 2023

This text was up to date at 6:10 p.m. EST with remark from the Cybersecurity and Infrastructure Safety Company.

A significant hospital community with arms in a number of states is coping with widespread community outages on account of a cyberattack, which the FBI confirms is ransomware.

Prospect Medical Holdings operates 16 hospitals in California, Connecticut, Pennsylvania, and Rhode Island in addition to a community of 166 outpatient clinics and facilities.

On Thursday, the community started going through points at its hospitals nationwide — a few of which needed to divert sufferers to different amenities and cease operation.

In a press release to Recorded Future Information, the FBI mentioned it’s investigating the ransomware assaults however mentioned they’re unable to supply extra info as a result of it’s an ongoing investigation. No ransomware gang has claimed the assault.

A spokesperson for Prospect confirmed that the hospital “lately skilled an information safety incident that has disrupted our operations.”

“Upon studying of this, we took our techniques offline to guard them and launched an investigation with the assistance of third-party cybersecurity specialists. Whereas our investigation continues, we’re centered on addressing the urgent wants of our sufferers as we work diligently to return to regular operations as shortly as doable,” the spokesperson mentioned.

A number of native information shops throughout Pennsylvania and Connecticut have reported that the FBI is working straight with the hospitals to answer the incident.

Jap Connecticut Well being Community wrote on its web site that each one elective surgical procedures will likely be canceled till additional discover and amenities for wound therapeutic, imaging, gastroenterology, podiatry, pressing care and girls’s wellness will likely be closed in the interim.

“We’re reaching out to sufferers whose care appointments could also be impacted at the moment. We’ll proceed to supply info as we obtain updates,” the community mentioned on Fb.

The Related Press reported that the emergency departments at Manchester Memorial and Rockville Common hospitals — each a part of Jap Connecticut Well being Community — had been shut down as of Thursday.

Native information shops in California, Connecticut, Pennsylvania, and Rhode Island tracked a number of hospital emergency rooms that had been compelled to divert sufferers or shut their doorways beginning on Thursday. Some hospitals posted concerning the outages on Fb pages

Prospect Medical Holdings didn’t reply to follow-up questions on whether or not it was a ransomware incident however officers at Delaware County’s Crozer Well being in Pennsylvania advised the Philadelphia Inquirer that they had been coping with a ransomware assault.

The assault on Prospect Medical Holdings mirrors a number of which have taken place within the final yr. CommonSpirit Well being — one of many largest nonprofit well being care techniques within the U.S. – confirmed in October that it was hit with ransomware, inflicting widespread outages and hospital closures in dozens of states.

An tried ransomware assault on one among Florida’s greatest hospitals prompted outcry from Senator Rick Scott (R-FL) two weeks in the past.

Scott demanded the FBI look into the info stolen through the assault and requested regulation enforcement to stipulate what efforts had been being made to guard U.S. hospitals, noting the assault on CommonSpirit Well being and a number of other others lately.

The difficulty of ransomware assaults on hospitals has turn out to be so dire that the Division of Well being and Human Providers has been compelled to launch devoted guides on particular ransomware gangs which have been recognized to focus on healthcare amenities.

“When these giant hospital chains are hit with ransomware, as CommonSpirit Well being was in 2022, it has a disproportionately damaging affect on affected person care,” mentioned Recorded Future ransomware skilled Allan Liska.

“On this case 16 hospitals throughout 4 states being hit by ransomware concurrently places an undue pressure not simply on sufferers but additionally different hospital techniques in these states.”

Eric Goldstein, govt assistant director for cybersecurity for the Cybersecurity and Infrastructure Safety Company (CISA), mentioned the company is “working in shut coordination with our federal and personal sector companions… and stands prepared to supply any help wanted.”

“This incident underscores the seriousness of the cyber menace to our nation’s crucial infrastructure,” he mentioned.

Get extra insights with the

Recorded Future

Intelligence Cloud.

Be taught extra.

Jonathan Greig

Jonathan Greig is a Breaking Information Reporter at Recorded Future Information. Jonathan has labored throughout the globe as a journalist since 2014. Earlier than transferring again to New York Metropolis, he labored for information shops in South Africa, Jordan and Cambodia. He beforehand coated cybersecurity at ZDNet and TechRepublic.