Late last week, the UMC Health System in Lubbock, Texas, fell victim to a cyberattack, greatly disrupting healthcare services.
At a Glance
- UMC Health System in Lubbock, Texas, faced an IT outage after a ransomware attack on September 26, 2024.
- The cyberattack affected multiple systems, including vital communications and patient portal accessibility.
- Both emergency and non-emergency patients were initially diverted to other facilities to ensure continued care.
- UMC Health System is implementing downtime procedures while investigating the breach.
- The extent to which patient data has been compromised remains unclear.
Details of the Cyberattack
The UMC Health System in Lubbock, Texas, experienced a severe IT outage stemming from a ransomware attack on September 26, 2024. This incident initially forced the hospital to divert both emergency and non-emergency patients to other healthcare facilities to ensure patient safety and continuity of care.
Among the affected systems were the hospital’s phone system and patient portal, making communication and access to patient information difficult. UMC Health System has taken measures to implement downtime procedures as they work diligently to investigate the breach and bring systems back online.
The healthcare provider has been using paper charting to maintain patient care processes during the disruption, and billing systems have been down, causing delays in insurance claims processing and patient billing. Despite these challenges, the hospital assures the public that no surgeries or urgent medical procedures have been canceled.
A ransomware attack against Texas-based UMC Health System has led to major patient care disruptions, according to reports. @KyleAlspach breaks down five things you should know about the attack:https://t.co/b3Au1gszVL
— CRN (@CRN) October 1, 2024
Impact on Patients and Staff
UMC Health System’s emergency department is reportedly open now, but other services are significantly disrupted. Healthcare providers face considerable challenges accessing patient histories and crucial information, impacting workflows. UMC has engaged third-party experts to aid in response and investigation, ensuring that restoration efforts prioritize patient safety.
The healthcare sector has had a significant issue with cyberattacks. Notably, in 2023, the healthcare industry saw the largest number of ransomware incidents. A total of 249 incidents were reported last year in healthcare compared to 218 in critical manufacturing and 156 in government facilities.
Broader Implications and Response Efforts
The attack on UMC Health System underscores the vulnerability of healthcare institutions to cyber threats. These attacks disrupt critical services and potentially endanger lives, emphasizing the need for robust cybersecurity defenses in healthcare settings. UMC has launched a website to provide continuous updates on the situation and assures that services will be restored only when it is safe to do so.
The broader implications of such attacks necessitate a move beyond reactive strategies. Continuous efforts are required to bolster cybersecurity measures, minimizing the potential for future disruptions.
Sources
- UMC Health System suffers ransomware attack, IT outage
- UMC Health System hit with IT outage linked to ransomware
- Health care was biggest victim of U.S. ransomware attacks last year