« Information Technology
  

Wayne Memorial Hospital Falls Victim to Ransomware Attack

The incident was detected in early June.

By HFT Staff


On June 3, 2024, Wayne Memorial Hospital (WMH) detected a ransomware event, whereby an unauthorized third party gained access to WMH’s network, encrypted some of WMH’s data, and left a ransom note on WMH’s network. Upon discovery of this incident, WMH immediately disconnected access to its network and took certain systems offline while it worked to safely and securely restore its network from backups. WMH also engaged legal counsel and cybersecurity professionals to help secure WMH’s network and conduct a forensic investigation. 

WMH’s forensic investigation found evidence that the unauthorized actor had access to a limited number of WMH systems between May 30, 2024, and June 3, 2024. During that time period, the unauthorized actor had access to certain files on WMH’s network and the unauthorized actor claimed to have copied some WMH files as part of its demand for a ransom payment. WMH is conducting a comprehensive review of those files to determine whether those files contained any personal information. If so, WMH will notify any individuals whose personal information may be included in those files in accordance with applicable law. 

WMH’s investigation is ongoing as to whether the unauthorized actor had access to anyone’s personal information. If WMH determines that anyone’s personal information was involved, WMH will mail personalized notification letters to those individuals that disclose the specific categories of information that apply in each individual’s case in accordance with applicable law. 

WMH has not found any evidence that the unauthorized actor has used anyone’s personal information for identity theft or fraud in connection with this incident. Based on the information available to us now, it seems the unauthorized actor’s primary motivation was to extort a ransom payment from WMH. 

Since the discovery of the incident, WMH moved quickly to secure its systems. Specifically, WMH added new intrusion detection and response tools, reset all passwords and made additional enhancements to WMH’s network security. WMH also engaged specialized cybersecurity professionals to conduct a forensic investigation to determine the nature and scope of the Incident. WMH will continue to take steps to mitigate the risk of future harm. 



August 21, 2024


Topic Area: Information Technology , Security

Recent Posts

HHS Proposes Changes to HIPAA Security Rule to Enhance Cybersecurity

The proposed changes would enhance cybersecurity protections for electronic protected health information.

Navigating the Healthcare Real Estate Landscape in 2025

Balancing cost-optimization with the need to expand facilities to meet patient care demands and location of facilities impacting employee sentiment are two key trends.

UI Health Care Acquires 20 Mission Cancer + Blood Clinics in Iowa

Mission’s assets were officially purchased on December 31, 2024.

Dignity Health Lassen Medical Clinics Struck by Data Breach

Some information in the Lassen Clinics' records may have been accessed or acquired by an unauthorized third party.

On-Demand Training to Meet Managers' Evolving Needs

Digital training options offer benefits that include increased flexibility and expanded access to critical information.

 
 


FREE Newsletter Signup Form

News & Updates | Webcast Alerts
Building Technologies | & More!

 
 
 


All fields are required. This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 
 
 
 

Healthcare Facilities Today membership includes free email newsletters from our facility-industry brands.

Facebook   Twitter   LinkedIn   Posts

Copyright © 2023 TradePress. All rights reserved.