Kettering Health, a major medical network operating dozens of facilities across Ohio, remains in a state of operational crisis two weeks after a devastating ransomware attack triggered a system-wide technology blackout.
Partial Restoration of Critical Systems
In a recent update, the healthcare provider announced the restoration of “core components” within its Epic electronic health record system. This partial recovery has allowed staff to regain access to patient data, facilitate internal care team communication, and resume basic care coordination. Despite this progress, the network is far from full functionality.
The Reality of Paper-Based Care
Patients report significant hurdles, including inaccessible doctors’ offices, delays in prescription refills, and temporary emergency room closures. One patient described the current environment as a return to manual processes: “Everything is being done by hand — pen and paper.”
Community reports on platforms like Reddit highlight the severity of the disruption. Patients have shared concerns regarding life-critical medication refills, with some fearing withdrawal complications. Others noted that local ambulance services are actively avoiding Kettering facilities due to the extreme wait times caused by manual charting and administrative bottlenecks.
Impact on Specialized Medical Procedures
The operational paralysis has forced the cancellation of essential services, including:
Cybersecurity Breach Details
John Weimer, Kettering Health’s senior vice president of emergency operations, confirmed the incident was a ransomware attack but stated the organization has refused to pay the ransom. Upon discovery, the health system initiated a total shutdown of its IT infrastructure to contain the threat.
According to reports from CNN, the attack has been attributed to the hacking group Interlock. While the group claimed to have secured “vital files,” they have not yet publicly taken credit, fueling speculation that ransom negotiations remain active. Kettering Health officials have not disclosed whether patient data was exfiltrated.
A Growing Crisis in Healthcare
This incident follows a troubling trend of cyberattacks targeting the U.S. healthcare sector. In 2024, the industry faced an “annus horribilis” for data breaches, highlighted by the massive Change Healthcare breach—which impacted 190 million people—and the theft of 5.6 million records from Ascension. As these attacks become more frequent, the vulnerability of critical medical infrastructure remains a primary concern for patient safety.