The company said the ransomware attack has forced its facilities to revert to using offline processes and documentation methods.
The computer networks of a major hospital chain in the U.S. and Britain have been hit by a massive cyberattack that may be the largest such attack on a medical institution in U.S. history.
According to NBC News, Universal Health Systems, an operator of more than 400 locations, was knocked offline over the weekend due to what the hospital system calls a “security issue.”
The hospital acknowledged the security issue in a statement and said it is working with IT security professionals to restore operations as quickly as possible.
No patient or employee data appears to have been compromised, the healthcare system said.
The company said its facilities reverted to using offline processes and documentation methods. According to NBC News, some of that included filing patient information with pen and paper.
Universal Health Services’ statement didn’t include information about the nature of the attack, but NBC News’ report suggests it was ransomware.
One person familiar with the company’s response efforts who was not authorized to speak to the press said that the attack “looks and smells like ransomware.”
Two Universal Health Services nurses, who requested to not be named because they weren’t authorized by the company to speak with the media, said that the attack began over the weekend and had left medical staff to work with pen and paper.
One of the nurses, who works in a facility in North Dakota, said that computers slowed and then eventually simply would not turn on in the early hours of Sunday morning. “As of this a.m., all the computers are down completely,” the nurse said.
Another registered nurse at a facility in Arizona who worked this weekend said “the computer just started shutting down on its own.”
“Our medication system is all online, so that’s been difficult,” the Arizona nurse said.
According to cybersecurity experts, cyberattacks of all kinds have been increasing for the better part of a year, and hospitals – once nontargets for cybercriminals – are now responding to these attacks.
A patient at a German hospital died earlier this month because the hospital they were brought to was knocked offline due to ransomware. On the way to a hospital 20 miles away, the patient died.
This article originally appeared in CS sister publication MyTechDecision.com. Zachary Comeau is TD’s web editor.