COVID-19 CORONA VIRUS: Please visit our COVID-19 Resources for Providers and COVID-19 FAQs or call our office for more information.


Read the Latest News

Recent Wave of Cyber Attacks on Health Care Providers in the US

The healthcare sector has recently been hit by a wave of cyberattacks across the entire United States, highlighting the industry’s vulnerability to digital threats. These attacks have primarily been ransomware incidents, where cybercriminals encrypt data and demand payment for its release. Among the most notable victims is Ardent Health Services, a prominent healthcare provider with 30 hospitals across six states.

Nature of the Attacks

The cyberattack on Ardent Health Services, which became apparent over the Thanksgiving weekend, is a classic example of ransomware. The Nashville-based company experienced significant network disruptions, forcing them to take drastic measures like diverting emergency services and postponing elective surgeries. This incident led to the company disconnecting from the internet and suspending access to their IT applications, including clinical programs and patient care documentation systems. The ransomware assault led to network outages across several of its institutions, including BSA Health Systems in Amarillo, Texas, and other affiliates like St. Francis Campus of the University of Kansas Health System, Portneuf Medical Center in Idaho, and Lovelace Health System in New Mexico.

Ardent’s experience mirrors a worrying trend in the healthcare sector. According to Sophos, a global digital security company, nearly two-thirds of healthcare organizations suffered similar attacks in the past year. These attacks not only disrupt services but also pose risks to sensitive patient data and financial information.

Who Is Behind These Attacks?

Identifying the perpetrators of these cyberattacks is challenging. In Ardent’s case, there were speculations about the involvement of the Black Suit ransomware group, although this was not confirmed on their dark web blog, where they typically list their victims. U.S. authorities suspect that Black Suit ransomware might be a rebranded version of the notorious Royal Ransomware.

Preventative Measures for the Future

The increase in cyberattacks on healthcare organizations necessitates stronger cybersecurity measures. Experts like Jess Parnell, chief information security officer at cybersecurity company Centripetal, advise continuous monitoring and updating of network security to fend off such threats. This includes implementing ongoing patch management and deploying proactive cybersecurity solutions.

Hospitals and healthcare providers need to be prepared for potential cyberattacks by having robust backup systems and disaster recovery plans. Training staff to recognize and respond to cyber threats is also crucial. Moreover, collaboration with law enforcement and cybersecurity experts can enhance an organization’s ability to respond effectively to such incidents.


The recent cyberattacks on healthcare providers like Ardent Health Services underscore the critical need for enhanced cybersecurity in the healthcare sector. As cyber threats evolve, healthcare organizations must adapt swiftly to safeguard their infrastructure and the sensitive data they hold. Implementing comprehensive cybersecurity measures and fostering a culture of digital vigilance are key steps in protecting against future attacks.

Wider Implications in the Healthcare Sector

This incident at Ardent Health Services is not an isolated one. Nearly two-thirds of healthcare companies experienced similar cyberattacks in the past year. The education sector follows closely, with an 80% attack rate. These attacks not only disrupt services but also pose significant risks to patient data and financial information.

The recent cyber-attack on Ardent Health Services is a stark reminder of the growing vulnerability of the healthcare sector to digital threats. As these institutions grapple with the dual challenge of providing care and ensuring data security, it becomes imperative for the healthcare industry to bolster its cybersecurity measures. The incident underscores the need for enhanced digital defenses and rapid response mechanisms to protect patient data and maintain uninterrupted healthcare services. As cyber threats evolve, the healthcare sector must adapt swiftly to safe.

How can cyber-attacks be prevented?

Cyber-attacks, such as the recent one on Ardent Health Services1, can be prevented by implementing a robust cybersecurity strategy. Here are some ways to protect against such attacks:

  1. Educate Staff: Employees should be trained on cyber-attack prevention and informed of current cyber threats. They should be taught to check links before clicking them, verify email addresses, and use common sense before sending sensitive information.
  2. Keep Software and Systems Up-to-Date: Cyber-attacks often exploit weaknesses in outdated systems or software. Regular updates and patches can help to fix these vulnerabilities.
  3. Encrypt and Backup Data: Encrypting data makes it harder for attackers to access and use it. Regular backups ensure that data can be restored in case of a ransomware attack.
  4. Implement Endpoint Protection: Endpoint protection helps to secure networks that are remotely bridged to devices.
  5. Limit Personal Information Shared Online: The less personal information available online, the less there is for cybercriminals to exploit.
  6. Use Strong Passwords: Passwords should be strong and unique, combining upper- and lower-case letters, numbers, and special characters1.
  7. Conduct Regular Audits: Regular audits can help identify potential vulnerabilities and assess the effectiveness of current security measures2.

Remember, no system is completely immune to cyber-attacks, but these steps can significantly reduce the risk. It’s also important to have a response plan in place in case an attack does occur.

Have a Question?
Contact Us


  • This field is for validation purposes and should be left unchanged.

Request a Free Quote