Cass Regional Medical Center restarts EHR system after ransomware attack

Subrata Thakar | | Health Exec | EMR/EHR

Missouri-based Cass Regional Medical Center brought its electronic health record (EHR) system back online after a July 9 ransomware attack. The IT department engaged in a complete shut down for 10 days until it could confirm the threat had been investigated and systems were improved. 

“After consulting with our EHR vendor, we determined that any immediate threat that may have been present as a result of last week’s attack was mitigated, and that it was in the best interest of our patients to go ahead and bring the system back up,” said CEO Chris Lang in a prepared statement.

Cass and Meditech, the hospital’s EHR vendor, determined the breach was caused by a “brute-force attack” via Remote Desktop Protocol, an IT program that permits remote access to business IT systems for remote work.

“RDP is a widely-used interface that allows remote access to systems for legitimate business purposes,” Lang said. “Unfortunately, the attackers were able to exploit this feature and gain access. We have since modified our systems to eliminate this risk.”

""
Subrata Thakar

As a senior news writer for TriMed, Subrata covers cardiology, clinical innovation and healthcare business. She has a master’s degree in communication management and 12 years of experience in journalism and public relations.

Related Content

EHR-driven PCI risk assessments could make a world of difference
Radiologists call on AMA to push for new federal IT interoperability standards
Epic sued over alleged 'scheme to destroy' managed care company
Oracle Health denies cloud breached as second attack confirmed
Data breach at Oracle Health leads to extortion of hospitals
Academic health system working on AI dictation feature for Epic

Around the web

Cardiovascular Business
ASNC lobbies Congress to curb prior authorization, oppose AUC mandates and embrace payment reform

Suman Tandon, MD, an American Society of Nuclear Cardiology board member, explains the group's call on Congress to update a number of healthcare policies. 

Cardiovascular Business
CMS proposal includes cardiologist pay bump—cuts to high-value services still a concern

The 2026 MPFS proposed rule includes higher conversion factors across the board. However, some cardiology groups remain concerned about a series of reimbursement reductions for high-value cardiology services. 

Cardiovascular Business
With MPFS proposal on the way, electrophysiology groups outline their priorities

The Heart Rhythm Society and its new advocacy arm plan on pushing CMS to include certain policy improvements in the 2026 MPFS.