Skip to main content
close search
site logo

By the numbers: The impact of the Ascension cyberattack

The health system, one of the largest nonprofits in the country, lost access to its electronic health record, patient portal and some phone systems after the attack in early May.

Published June 17, 2024
Emily Olsen's headshot
Reporter
A view of Ascension St. Vincent's Riverside Hospital sign.
A general view of the Ascension St. Vincent's Riverside Hospital on March 14, 2020 in Jacksonville, Florida. The health system was hit by a cyberattack in early May, and restored its EHR across its network last week. Cliff Hawkins via Getty Images
This audio is auto-generated. Please let us know if you have feedback.

Ascension, one of the largest nonprofit health systems in the nation, was hit by a ransomware attack early last month.

The St. Louis-based health system, which operates 140 hospitals and serves 19 states and Washington, D.C., first detected unusual activity on some technology systems on May 8. The provider is still investigating the incident, reporting last week that personally identifiable and protected health information may have been compromised.

Ransomware, a type of malware that denies users access to their data until a ransom is paid, can have dire consequences for health systems. The attacks can shut down critical systems for patient care, force hospitals to send ambulances to other nearby facilities and delay scheduled procedures.

Ascension reported its electronic health record system, patient portal, some phone systems and various systems to order certain tests, procedures and medications were offline shortly after the attack.

The health system asked patients to bring appointment notes as well as lists of prescriptions or pill bottles, so their providers could call in medication needs. Some hospitals in Indiana, Michigan, Oklahoma and Tennessee had diverted ambulances during the cyberattack.

By the numbers
 
12
States, including Washington, D.C., that were impacted by the cyberattack. Arkansas, Louisiana and Missouri didn’t report interruptions to patient or client services.
 
36
Days when Ascension reported its electronic health record was impacted by the cyberattack. On May 9, the health system said its EHR was unavailable. On June 14, Ascension said it restored its EHR across the system, though some markets restored the record earlier.
 
128%
How much cyberattacks against the healthcare sector increased from 2022 to 2023, according to the Office of the Director of National Intelligence.

Recommended Reading

Filed Under: Hospitals, Health IT

Editors' picks

Company Announcements

View all | Post a press release
University Compounding Pharmacy Announces Rebrand to MediVera Compounding Pharmacy™
From MediVera Compounding Pharmacy
July 29, 2024
HearUSA Ranked a Top Hearing Care Retailer in Newsweek’s America's Best Retailers 2024
From HearUSA
July 30, 2024
Healthworx partners with Highmark Inc, LifeBridge Health for new accelerator program
From Healthworx
July 30, 2024
Corazon Offers Comprehensive Services to Ambulatory Surgery Centers
From Corazon
August 06, 2024
Editors' picks
Latest in Hospitals
image/svg+xml
Industry Dive is an Informa business
© 2024 Industry Dive. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell