The University of Mississippi Medical Center (UMMC) closed all its clinic locations statewide on Thursday following a ransomware attack.
UMMC has over 10,000 employees and, as one of the largest employers in Mississippi, operates seven hospitals, 35 clinics, and more than 200 telehealth sites statewide. The medical center includes the state’s only children’s hospital, only Level I trauma center, only organ and bone marrow transplant program, and the only Telehealth Center of Excellence, one of two across the United States.
As revealed on Thursday afternoon, the cyberattack took down many of its IT systems and blocked access to the Epic electronic medical records. While UMMC cancelled outpatient and ambulatory surgeries/procedures and imaging appointments, officials said hospital services continue via downtime procedures.
UMMC is now investigating the incident with assistance from the U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the FBI.
“We have activated our Emergency Operations Plan and are working with authorities including the FBI and Homeland Security, who are helping us to evaluate this situation and determine next steps,” the UMMC said.
When this article was published, the UMCC’s website was still down, and officials said that the hospital had shut down all IT systems while they assessed the attack’s impact.
“We are still evaluating the extent of systems impacted. As a precaution, we have shut down all our network systems and will conduct risk assessments before bringing anything back online. In-person class schedules remain normal,” they said.
Officials confirm ransomware attack
Hospital officials have also revealed during a press conference on Thursday afternoon that they are communicating with the ransomware operation behind the attack and working with authorities on the next steps, according to The Daily Mississippian.
“The attackers have communicated to us and we are working with the authorities and specialists on next steps. We do not know how long this situation may last,” said LouAnn Woodward, the dean of the school of medicine at UMMC.
“Patients in our hospital and our emergency department are being cared for. Clinical equipment and operations remain functional. We are using our downtime procedures. For our students, in-person classes will continue as scheduled.”
“All of our equipment works. All of our patients are being taken care of safely. There will be no patient impact as a result of this downtime,” Dr. Alan Jones, associate vice chancellor for health affairs at UMMC, told reporters.
No ransomware group has claimed responsibility for this attack, as they’re likely still negotiating with the UMMC and want to pressure it into paying an extortion demand.
However, with ransomware involved, data may have also been stolen and will be used as additional leverage to convince the hospital to pay.
Modern IT infrastructure moves faster than manual workflows can handle.
In this new Tines guide, learn how your team can reduce hidden manual delays, improve reliability through automated response, and build and scale intelligent workflows on top of tools you already use.
