Ardent Health Services [1] [2] [3] [4] [5] [6] [7] [8] [9], the parent company of Hillcrest HealthCare System [5], experienced a severe security incident on November 23, 2023. This incident involved a ransomware attack that targeted their network, resulting in the suspension of user access to their information technology applications. The hospitals are currently assessing their ability to care for critically ill patients in the Emergency Room while working towards restoring their systems [3].


Ardent Health Services [1] [2] [3] [4] [5] [6] [7] [8] [9], which operates 30 hospitals across six US states [3], promptly reported the incident to law enforcement officials and sought assistance from cybersecurity partners to restore their operations. They are currently evaluating the extent of compromised patient data and diligently working to regain access to electronic medical records.

The impact of the incident was felt in hospitals located in East Texas, New Jersey [7], New Mexico [6] [7], and Oklahoma [5] [6] [7]. To ensure patient safety, non-emergent elective procedures were rescheduled and some emergency room patients were redirected to other hospitals [4] [8] [9]. The company faced challenges as they had to rely on paper records, causing a slowdown in processes. Various computerized services [6], including clinical programs and the use of Epic Systems [6], were temporarily shut down. The investigation and restoration efforts are still ongoing [4], and the full impact and duration of the incident are yet to be determined [4].


This incident is part of a larger trend [6], with at least 35 ransomware attacks targeting US healthcare providers this year [6]. Despite these challenges, Ardent Health Services remains committed to delivering safe patient care. They are working tirelessly to restore access to electronic medical records and clinical systems as soon as possible. Updates on the situation can be found on their website.