A California-based healthcare provider, Prospect Medical Holdings, fell victim to a series of cyberattacks that crippled its computer systems, prompting the shutdown of emergency rooms across multiple states and necessitating the redirection of ambulance services.
The Los Angeles-headquartered healthcare provider operates medical facilities in Texas, Connecticut, Pennsylvania, Rhode Island, and more.
The cybercriminals employed ransomware tactics to breach Prospect Medical Holdings’ network, disrupting its operations on a significant scale.
In response to the incident, Prospect Medical took swift action, temporarily taking its systems offline and initiating an investigation with the assistance of third-party cybersecurity experts. The severity of the breach compelled the healthcare provider to address the situation and its repercussions promptly.
A released statement from Prospect Medical Holdings acknowledged the event, declaring, “Prospect Medical Holdings, Inc. has encountered a recent data security incident that disrupted our operational capabilities. Upon discovery, we promptly deactivated our systems to safeguard them and initiated an inquiry with the assistance of cybersecurity experts from third parties. As our investigation progresses, our utmost priority is attending to the immediate requirements of our patients while striving to swiftly restore normal operations.”
The extent of the attack’s impact was evident across various medical facilities under Prospect Medical’s purview. In Pennsylvania, the Crozer-Chester Medical System’s nurses union, represented by the Pennsylvania Association of Staff Nurses and Allied Professionals, reported that the majority of the hospital’s computer systems remained offline, necessitating a switch back to a manual, paper-based process. The disruption extended to emergency rooms at locations such as Manchester Memorial and Rockville General in Connecticut, where patient transfers to neighboring medical facilities became necessary.
The situation proved dire for various Prospect Medical-owned healthcare facilities. The company’s website addressed the IT complications and subsequent service interruptions, including elective procedures and urgent care. Waterbury Health’s hospital in Connecticut noted its computer systems’ downtime, with rescheduling of appointments being considered due to the situation.
The attack rippled across Pennsylvania, affecting hospitals like the Crozer-Chester Medical Centre, Taylor Hospital, Delaware County Memorial Hospital, and Springfield Hospital. These healthcare institutions experienced service disruptions due to the cybersecurity breach, reflecting the growing threat of cyberattacks on critical infrastructure.