Several Ascension hospitals are diverting ambulances for emergency services, and the nonprofit health system is pausing some elective care in the wake of a cybersecurity incident Wednesday that shut down critical systems.
The nonprofit’s electronic health records, MyChart patient portal and some phone systems are unavailable, according to a Thursday update from Ascension, a large Catholic provider that operates 140 hospitals across 19 states and Washington, D.C.
Various systems that the health system uses to order certain tests, procedures and medications are also down.
“It is expected that we will be utilizing downtime procedures for some time,” an Ascension spokesperson said in a statement. “Patients should bring to their appointment notes on their symptoms and a list of current medications and prescription numbers or the prescription bottles so their care team can call in medication needs to pharmacies.”
Ascension detected “unusual activity” on some technology network systems Wednesday. The health system launched remediation efforts, including working with Mandiant, a Google subsidiary and cybersecurity company, to assist with an investigation and determine if data was breached.
The incident comes after the healthcare sector has faced increasing cyber threats. The sector is still recovering from the major ransomware attack against UnitedHealth’s Change Healthcare earlier this year, which may have exposed a huge number of Americans’ data and shut down key provider operations like claims processing.
Cyberattacks can lead to worse patient care and heightened mortality rates, as hospitals lose access to critical systems and delay services.
Earlier this year, Chicago-based Lurie Children’s Hospital was hit by a cyberattack that took its phone, email and EHR systems offline for weeks.
Ardent Health Services had to divert emergency care at facilities in multiple states after an attack on Thanksgiving day. Nonemergent surgeries that were put on hold resumed several weeks later.