Cass Regional Medical Center restarts EHR system after ransomware attack

Subrata Thakar | | Health Exec | EMR/EHR

Missouri-based Cass Regional Medical Center brought its electronic health record (EHR) system back online after a July 9 ransomware attack. The IT department engaged in a complete shut down for 10 days until it could confirm the threat had been investigated and systems were improved. 

“After consulting with our EHR vendor, we determined that any immediate threat that may have been present as a result of last week’s attack was mitigated, and that it was in the best interest of our patients to go ahead and bring the system back up,” said CEO Chris Lang in a prepared statement.

Cass and Meditech, the hospital’s EHR vendor, determined the breach was caused by a “brute-force attack” via Remote Desktop Protocol, an IT program that permits remote access to business IT systems for remote work.

“RDP is a widely-used interface that allows remote access to systems for legitimate business purposes,” Lang said. “Unfortunately, the attackers were able to exploit this feature and gain access. We have since modified our systems to eliminate this risk.”

""
Subrata Thakar

As a senior news writer for TriMed, Subrata covers cardiology, clinical innovation and healthcare business. She has a master’s degree in communication management and 12 years of experience in journalism and public relations.

Related Content

Epic sued over alleged 'scheme to destroy' managed care company
Oracle Health denies cloud breached as second attack confirmed
Data breach at Oracle Health leads to extortion of hospitals
Academic health system working on AI dictation feature for Epic
Gottlieb: Let’s not slap the label ‘medical device’ on AI software that only helps clinicians make care decisions
PHOTO GALLERY: The Epic intergalactic headquarters art collection

Around the web

Cardiovascular Business
AMA agrees to help after initial request for an independent cardiovascular board was denied

After their proposal for a new American Board of Cardiovascular Medicine was shot down earlier this year, cardiology groups have asked the AMA for some support. "We feel like it's time for us to blaze our own path," one specialist explained. 

Cardiovascular Business
Eli Lilly to acquire gene-editing specialists focused on CVD for up to $1.3B

The company has agreed to acquire Verve Therapeutics for an upfront payment of approximately $1 billion. The total could increase significantly, however, if certain milestones are met. One of Verve's biggest gene therapies has already received the FDA's fast track designation.

Cardiovascular Business
AMA House of Delegates helps cardiology groups influence healthcare policies

American College of Cardiology Board of Governors Chair David E. Winchester, MD, MS, examines the many benefits of working with the American Medical Association House of Delegates to bring about significant change.