DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Hospital Sisters Health System’s CFO exits as it continues to handle ‘cybersecurity incident’

Posted on September 12, 2023 by Dissent

On August 29, DataBreaches reported that Hospital Sisters Health System (HSHS) and Prevea Health appeared to have been the victims of a ransomware attack. As of today, the notice on Prevea Health states, “HSHS and Prevea are experiencing a systemwide outage of clinical and administrative applications.” Prevea continues to describe it as a temporary outage. HSHS’s website is still down, however, and redirects to its Facebook page with a September 8 update:

UPDATE: FRIDAY, SEPTEMBER 8, 2023 AT 3:50 PM:
As we continue to work on restoration of our systems, we are touched by the kindness and understanding patients and the community has shown our colleagues during this outage. We understand it has been a challenge for everyone but we appreciate your patience and care for us as we care for you.
Despite the outage, please know that all HSHS hospitals and emergency departments remain open, and we continue to safely care for all patients.
Clinic phone service at HSHS Medical Group and Prairie Cardiovascular is being restored. You may call your provider’s office directly at this time. Please do not call HSHS hospitals if you are trying to reach a clinic location. You may experience delays as they are currently handling high call volumes.
Our teams continue to work diligently to bring all of our systems back online as quickly and safely as possible, and we are prioritizing patient safety as we make steady progress in our restoration process. We continue to implement alternative processes to ensure that we can continue receiving and treating patients.
Visit hshsupdates.org for updates on our progress and answers.

HSHS still hasn’t forthrightly disclosed whether this was a ransomware incident or not, although it certainly reads like one. No ransomware group has publicly claimed responsibility for the attack at this point.

And to add to the lack of transparency about this incident, HSHS’s CFO has reportedly left in the middle of incident response?  Diana Barr reports:

The chief financial officer of Hospital Sisters Health System (HSHS), which operates several facilities in Metro East, has exited the nonprofit, while it continues to fight a “cybersecurity incident” that began impacting its operations late last month.

Kimberly Hodgkinson, who has served as the senior vice president and chief financial officer of the Springfield, Illinois-based system since July 2022, left her position as of Friday, a spokeswoman confirmed to the Business Journal.

The health system would not say whether she resigned or was fired.

Read more at St. Louis Business Journal.

Related posts:

  • Developing: Hospital Sisters Health System and Prevea Health hit by cyberattack
Category: Commentaries and AnalysesHealth DataMalwareOf NoteU.S.

Post navigation

← MGM Resorts hit in disruptive cyberattack
St. Paul Public Schools notifies families of data breach from February →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • India’s Max Financial says hacker accessed customer data from its insurance unit
  • Brazil’s central bank service provider hacked, $140M stolen
  • Iranian and Pro-Regime Cyberattacks Against Americans (2011-Present)
  • Nigerian National Pleads Guilty to International Fraud Scheme that Defrauded Elderly U.S. Victims
  • Nova Scotia Power Data Breach Exposed Information of 280,000 Customers
  • No need to hack when it’s leaking: Brandt Kettwick Defense edition
  • SK Telecom to be fined for late data breach report, ordered to waive cancellation fees, criminal investigation into them launched
  • Louis Vuitton Korea suffers cyberattack as customer data leaked
  • Hunters International to provide free decryptors for all victims as they shut down (2)
  • SEC and SolarWinds Seek Settlement in Securities Fraud Case

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • German court awards Facebook user €5,000 for data protection violations
  • Record-Breaking $1.55M CCPA Settlement Against Health Information Website Publisher
  • Ninth Circuit Reviews Website Tracking Class Actions and the Reach of California’s Privacy Law
  • US healthcare offshoring: Navigating patient data privacy laws and regulations
  • Data breach reveals Catwatchful ‘stalkerware’ is spying on thousands of phones
  • Google Trackers: What You Can Actually Escape And What You Can’t
  • Oregon Amends Its Comprehensive Privacy Statute

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.