Ascension Michigan has announced that its pharmacies are currently unable to fill prescriptions due to a ransomware attack that has severely impacted its computer networks. This disruption, which has extended into its second week, has forced the health system to adapt by urging patients to seek alternative pharmacies for their medication needs. Ascension’s website now provides state-by-state updates on the status of its services as the organization works to overcome the obstacles created by the cyberattack identified on May 8.
In the update, Ascension advised patients to have their doctors send prescriptions to different pharmacies while they strive to restore their systems. For those who cannot obtain their medications elsewhere and are running low, the health system suggests contacting their local Ascension Rx pharmacy, which may be able to provide a short-term supply based on existing prescription bottles.
Details regarding the exact number of affected pharmacies and the volume of prescriptions impacted were not disclosed. In addition to the pharmacy issues, Ascension Michigan has temporarily postponed diagnostic imaging and testing at some locations to prioritize inpatient and emergency care. Patients affected by these delays will be contacted for rescheduling.
Ambulances are being diverted from certain Ascension hospitals in Michigan for specific cases to ensure effective triage. Despite these challenges, all 15 Michigan hospitals, along with physician offices and other healthcare sites, remain operational. However, patients are warned to expect longer wait times due to the switch to manual documentation processes. To mitigate delays, patients are encouraged to bring notes on their symptoms and a list of current medications.
Ascension has enlisted the help of Mandiant, a cybersecurity consulting firm, to investigate the attack and assess whether any sensitive information was compromised. The health system has pledged to notify and support affected individuals according to regulatory and legal guidelines if any data breaches are discovered.
Ascension operates a vast network of 140 hospitals and 40 senior care facilities across 19 states and the District of Columbia, employing 134,000 people as of May. In Michigan, the health system owns 15 acute-care hospitals. However, it is in the process of divesting eight southeastern Michigan hospitals to Detroit-based Henry Ford Health and selling three mid-Michigan hospitals, a stand-alone emergency center, and a nursing home to Midland-based MyMichigan Health.
This situation highlights the critical need for resilient cybersecurity measures within healthcare systems. The repercussions of the ransomware attack on Ascension Michigan underscore the potential for widespread disruption in patient care and access to essential medical services. The ongoing efforts to restore functionality and safeguard sensitive information are crucial in maintaining trust and ensuring continuity of care for affected patients.
