Health giant Kettering still facing disruption weeks after ransomware attack

Kettering Health, a prominent healthcare network in Ohio, is still navigating the aftermath of a debilitating ransomware attack that occurred two weeks ago, leading to a complete technology shutdown across its facilities. In a recent update, the organization announced the restoration of essential components of its electronic health record system, allowing staff to access and update patient information, communicate effectively among care teams, and manage patient care once again. However, the road to recovery remains rocky. Patients have reported significant challenges, including an inability to contact doctors’ offices, issues with medication refills, and the temporary closure of some emergency rooms. One patient voiced their frustration to TechCrunch, stating, "Everything is being done by hand, pen, and paper." Social media discussions and local subreddits reveal that many are struggling to refill prescriptions, with one individual expressing concern about facing withdrawal seizures due to their inability to get necessary medications. Reports from the Dayton subreddit indicate that ambulances are avoiding Kettering facilities due to delays caused by manual processes. Additionally, numerous patients have experienced cancellations of vital medical appointments, including MRIs and chemotherapy sessions. Kettering Health’s senior vice president of emergency operations, John Weimer, confirmed to a local news outlet that they suspect a ransomware attack was indeed the cause of the disruption, although they have not paid any ransom. Weimer explained that the company promptly shut down its IT systems to prevent further damage. The ransom note from the attackers claimed to have compromised the network and secured sensitive files. The cybercriminal group responsible, identified as Interlock, has not publicly claimed responsibility for the attack, indicating ongoing negotiations regarding a ransom payment. This incident adds to a growing list of cyberattacks targeting healthcare providers, with a significant breach reported last year affecting millions of patient records. As Kettering Health continues to recover, the healthcare sector remains on high alert for potential threats.