Kettering Health, hospital association provides update on cybersecurity attack
Kettering Health is providing an update on the recent cybersecurity attack that caused system-wide issues.
[DOWNLOAD: Free WHIO-TV News app for alerts as news breaks]
As previously reported by News Center 7, the hospital network was targeted after there was unauthorized access to its network Tuesday morning.
>>RELATED: Major hospital network targeted by cyberattack, experiencing system-wide issues
TRENDING STORIES:
'We are not anti-union;' Hospital network speaks out on nurses' recent efforts to unionize
A 24-year-old man enrolled in an Ohio high school; no one caught on for months
New 988 License Plate helps spread the word of the 'lifesaving resource'
Phones did not work, patients had their appointments canceled, and some even had surgeries canceled because of the cyberattack.
Kettering Health provided an update on the restoration efforts Wednesday afternoon.
'Teams across Kettering Health are working diligently around the clock to restore our systems in the aftermath of unauthorized access that caused a system-wide technology outage.
At this time, procedures are being evaluated on a case-by-case basis based upon collaborative decision-making between care teams, with safety as our highest priority.
Additionally, if our care teams have patients' contact information, they will contact patients by phone about rescheduling procedures. While we recognize this process has not been seamless, and we ask for everyone's patience while we continue to work through this issue.
We understand our patients' concerns for their privacy and information security. We have no evidence that personal cell phone apps, like MyChart, or the information in them have been compromised. Additionally, Kettering Health will never reach out to staff or patients via social media.
We are grateful to our remarkable providers and staff who are continuing their work despite these challenges and to our community partners helping us make meaningful progress through our current situation."
Kettering Health spokepserson
The Greater Dayton Area Hospital Association (GDAHA) also provided an updated statement.
'The Greater Dayton Area Hospital Association (GDAHA) and its member hospitals are collaborating to manage patient care across the Dayton region and support Kettering Health during a cybersecurity incident impacting its electronic systems. We commend the leadership, staff, and employees of Kettering Health for acting promptly to engage cybersecurity experts alongside local, state, and federal agency partners. Their swift action, along with advance planning and preparation, significantly limited the disruption of care for Kettering Health patients and the local community.
Simultaneously, our hospitals' collective efforts to prioritize patient care allow our region to uphold the highest standards of care for all patients in the Greater Dayton area. As such, GDAHA member hospitals continue to work together to increase staffing and capacity at our non-impacted acute care facilities to ensure we can meet the community's needs.
Patients and community members should be wary of bad actors using scam tactics to solicit patients for payment via telephone. Kettering Health has paused the practice of contacting patients by telephone to discuss payment options for medical bills until further notice. Patients or community members who receive a scam call to report it to local law enforcement.
Our ongoing partnership with local jurisdictions and emergency management services (EMS) continues to be a vital component of our region's healthcare continuum. GDAHA is working closely with Kettering Health and local jurisdictions to provide timely updates through the statewide EMS platform and ensure that EMS crews have access to the most up-to-date, accurate information for patient transport decisions.
We recognize the challenges posed by cyber threats and reaffirm our dedication to quality care by helping strengthen security measures across all member institutions. By fostering a culture of transparency, continuous education, and quality improvement, we aim to enhance the resilience of our healthcare infrastructure.
GDAHA will continue to monitor the situation and provide support as needed, ensuring that the health and well-being of our community remain safeguarded through the partnerships between our member hospitals."
Greater Dayton Area Hospital Association spokesperson
News Center 7 will continue to follow this story.
[SIGN UP: WHIO-TV Daily Headlines Newsletter]
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
15 hours ago
- Yahoo
Ransomware gang claims responsibility for Kettering Health hack
A ransomware gang claimed responsibility for the hack on Kettering Health, a network of hospitals, clinics, and medical centers in Ohio. The healthcare system is still recovering two weeks after the ransomware attack forced it to shut down all its computer systems. Interlock, a relatively new ransomware group that has targeted healthcare organizations in the U.S. since September 2024, published a post on its official dark web site, claiming to have stolen more than 940 gigabytes of data from Kettering Health. CNN first reported on May 20 that Interlock was behind the breach on Kettering Health. At the time, however, Interlock had not publicly taken credit. Usually, that can mean the cybercriminals are attempting to extort a ransom from their victims, threatening to release stolen data. The fact that Interlock has now come forward could indicate that the negotiations have gone nowhere. Do you have more information about Kettering Health's ransomware incident? Or other ransomware attacks? From a non-work device and network, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram and Keybase @lorenzofb, or email. Kettering Health's senior vice president of emergency operations, John Weimer, previously told local media that the healthcare company had not paid the hackers a ransom. TK, a spokesperson for Kettering Health, did not provide comment when reached by TechCrunch on Wednesday. Interlock did not respond to a request for comment sent to an email address listed on its dark web site. A brief review of some of the files Interlock published on its dark web site appears to show the hackers were able to steal an array of data from Kettering Health's internal network, including private health information, such as patient names, patient numbers, and clinical summaries written by doctors, which include categories such as mental status, medications, health concerns, and other categories of patient data. Other stolen data includes employee data and the contents of shared drives. One of the folders contains documents, such as background files, polygraphs, and other private identifying information of police officers with Kettering Health Police Department. On Monday, Kettering Health published an update on the cyberattack, saying the company was able to restore 'core components' of its electronic health record system, which is provided by Epic, a healthcare software company. The company said this was 'a major milestone in our broader restoration efforts and a vital step toward returning to normal operations' that allows it to 'to update and access electronic health records, facilitate communication across care teams, and coordinate patient care with greater speed and clarity.' Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
TechCrunch
2 days ago
- TechCrunch
Health giant Kettering still facing disruption weeks after ransomware attack
Kettering Health, a network with dozens of medical and emergency centers in Ohio, is still working to recover and return to normal operations two weeks after a ransomware attack prompted 'a system-wide technology outage.' On Monday, Kettering Health said in an update that it had restored 'core components' of its electronic health record system provided by Epic, which re-established the company's 'ability to update and access electronic health records, facilitate communication across care teams, and coordinate patient care.' A patient who said they frequently rely on Kettering Health told TechCrunch that they and others cannot call into doctors' offices, are having trouble getting medication refills, and some emergency rooms are closed. 'Everything is being done by hand pen and paper,' the patient said. Contact Us Do you have more information about Kettering Health's ransomware incident? Or other ransomware attacks? From a non-work device and network, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram and Keybase @lorenzofb, or Do you have more information about Kettering Health's ransomware incident? Or other ransomware attacks? From a non-work device and network, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram and Keybase @lorenzofb, or email . Others say they are having to deal with these issues on local subreddits. In a post on the Dayton, Ohio, subreddit, for example, a patient said they were having trouble refilling medication, without which they risked having 'a withdrawal seizure,' and couldn't call their doctor because phone lines were down. Another person wrote over the weekend that 'everything is still on paper, no computers and spotty phone service.' 'I'd avoid using Kettering right now if possible,' they wrote. Another user said that 'ambulances are still avoiding Kettering because they have to wait too long to dump patients due to paper charting and label making.' Others said they had their MRIs, cancer followups, tests before open-heart surgery, and chemotherapy sessions cancelled. Last week, Kettering Health's senior vice president of emergency operations John Weimer told a local TV station that the healthcare company believed the incident was a ransomware attack, and that it had not paid a ransom. 'As soon as this was realized, we did shut down our IT infrastructure, which essentially means we shut off our door to the world,' Weimer told WLWT Cincinnati. A spokesperson for Kettering Health did not respond to a series of questions from TechCrunch, including whether the hackers exfiltrated data, and if so, what kinds of data were taken. 'Your network was compromised, and we have secured your most vital files,' said the ransom note from the hackers, according to CNN. The news network reported that the attack was carried out by a gang called Interlock. The ransomware gang has not yet publicly taken credit for the cyberattack, suggesting the hackers may still be attempting to negotiate a ransom payment. Kettering is the latest in a series of healthcare companies targeted by hackers, both with ransomware and other types of malware. In 2024, a ransomware attack on UnitedHealth-owned health tech company Change Healthcare became the worst healthcare breach in U.S. history. Change Healthcare confirmed in January 2025 that the breach impacted 190 million people across the United States. Also last year, U.S. healthcare giant Ascension disclosed that hackers had stolen 5.6 million patient records in a ransomware attack. Healthcare news website HIPAA Journal called 2024 'an annus horribilis for healthcare data breaches,' with a record number of patients' stolen data. Kettering Health spokesperson Claire Myree acknowledged but did not respond to TechCrunch's request for comment.
Yahoo
2 days ago
- Yahoo
Where does Kettering Health stand nearly two weeks after cyberattack?
DAYTON, Ohio (WDTN) — Kettering Health is working around the clock to bring systems back online following a cyberattack nearly two weeks ago. Kettering Health continues to provide updates as they recover from a cyberattack that sent all of their systems offline on May 20. Gradually, the healthcare network is relaunching their systems and bringing everything back online. Cyberattack a gut-punch to Kettering Health patients, staff On Monday, Kettering Health shared EPIC Electronic Health Record Systems are back online, which they say marks a major milestone in restoration efforts. The team says they're continuing to work on bringing back in- and out-bound calls to facilities and practices, as well as bring MyChart back online for patients. Last Friday, Kettering Health said patients who had information impacted by the cyberattack will be notified. They suspect the number should be fewer than they are estimating. For more information regarding Kettering Health's response to the cyberattack, click here. Copyright 2025 Nexstar Media, Inc. All rights reserved. This material may not be published, broadcast, rewritten, or redistributed.
