Kettering Health Cyberattack Disrupts Services Across Ohio Medical Centers

Kettering, Ohio — A cyberattack on Kettering Health prompted a system-wide technology outage affecting its network of 14 medical centers across Ohio on Tuesday morning. The disruption led to the cancellation of elective inpatient and outpatient procedures, according to a statement from the health network and a ransom note obtained by CNN.

Kettering Health, which employs over 1,800 doctors, reported the incident caused significant challenges, including disruptions to its call center. While emergency rooms and clinics remain open and continue to receive patients, the health network announced that it would reschedule all canceled procedures.

“Inpatient and outpatient procedures have been canceled for today,” Kettering Health said in its statement. The network emphasized it had backup procedures in place to ensure safe and quality care despite the intrusion.

Behind the scenes, Kettering Health officials are working diligently to contain the impact of the cyberattack. The ransomware employed in the attack reportedly locks computers, granting hackers the ability to demand a ransom fee. “Your network was compromised, and we have secured your most vital files,” stated the ransom note, which threatened to leak stolen information unless negotiations for an extortion fee began.

This note linked the incident to a ransomware group known as Interlock, which emerged last fall. Interlock has previously targeted various sectors, including technology, manufacturing, and government organizations, according to reports from Cisco‘s Talos cyber-intelligence unit.

When approached for additional details, a spokesperson for Kettering Health declined to comment further on the attack, referencing the health network’s initial statement. Federal agencies, including the FBI and the Department of Health and Human Services, typically investigate major cyberattacks on American healthcare systems.

The healthcare sector has become increasingly vulnerable to cyberattacks. Last year, it reported over 440 ransomware attacks and data breaches, marking the highest number among critical infrastructure sectors. A series of high-profile cyberattacks has raised concerns about the adequacy of cybersecurity measures protecting sensitive patient data.

The ongoing attacks have serious repercussions for patients. For instance, recent hacks have led to disrupted services and unauthorized access to sensitive medical records. The situation underscores the growing need for bolstered cybersecurity in the healthcare industry.