DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Hospital Sisters Health System’s CFO exits as it continues to handle ‘cybersecurity incident’

Posted on September 12, 2023 by Dissent

On August 29, DataBreaches reported that Hospital Sisters Health System (HSHS) and Prevea Health appeared to have been the victims of a ransomware attack. As of today, the notice on Prevea Health states, “HSHS and Prevea are experiencing a systemwide outage of clinical and administrative applications.” Prevea continues to describe it as a temporary outage. HSHS’s website is still down, however, and redirects to its Facebook page with a September 8 update:

UPDATE: FRIDAY, SEPTEMBER 8, 2023 AT 3:50 PM:
As we continue to work on restoration of our systems, we are touched by the kindness and understanding patients and the community has shown our colleagues during this outage. We understand it has been a challenge for everyone but we appreciate your patience and care for us as we care for you.
Despite the outage, please know that all HSHS hospitals and emergency departments remain open, and we continue to safely care for all patients.
Clinic phone service at HSHS Medical Group and Prairie Cardiovascular is being restored. You may call your provider’s office directly at this time. Please do not call HSHS hospitals if you are trying to reach a clinic location. You may experience delays as they are currently handling high call volumes.
Our teams continue to work diligently to bring all of our systems back online as quickly and safely as possible, and we are prioritizing patient safety as we make steady progress in our restoration process. We continue to implement alternative processes to ensure that we can continue receiving and treating patients.
Visit hshsupdates.org for updates on our progress and answers.

HSHS still hasn’t forthrightly disclosed whether this was a ransomware incident or not, although it certainly reads like one. No ransomware group has publicly claimed responsibility for the attack at this point.

And to add to the lack of transparency about this incident, HSHS’s CFO has reportedly left in the middle of incident response?  Diana Barr reports:

The chief financial officer of Hospital Sisters Health System (HSHS), which operates several facilities in Metro East, has exited the nonprofit, while it continues to fight a “cybersecurity incident” that began impacting its operations late last month.

Kimberly Hodgkinson, who has served as the senior vice president and chief financial officer of the Springfield, Illinois-based system since July 2022, left her position as of Friday, a spokeswoman confirmed to the Business Journal.

The health system would not say whether she resigned or was fired.

Read more at St. Louis Business Journal.

Category: Commentaries and AnalysesHealth DataMalwareOf NoteU.S.

Post navigation

← MGM Resorts hit in disruptive cyberattack
St. Paul Public Schools notifies families of data breach from February →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Major trial underway for data leak that left 72,000 victims in France
  • Anubis: A Closer Look at an Emerging Ransomware with Built-in Wiper
  • HealthEC Agrees to $5.48 Million Settlement to End Data Breach Lawsuit
  • US offering $10 million for info on Iranian hackers behind IOControl malware
  • Sompo Japan Insurance submits improvement plan after info leakage
  • Moreno Valley, Calif., Schools Report Data Breach
  • The Growing Cyber Risks from AI — and How Organizations Can Fight Back
  • Credit Control Corporation data allegedly from 9.1 million consumers listed for sale on forum
  • Copilot AI Bug Could Leak Sensitive Data via Email Prompts
  • FTC Provides Guidance on Updated Safeguards Rule

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Your household smart products must respect your privacy – including your air fryer
  • Vermont signs Kids Code into law, faces legal challenges
  • Data Categories and Surveillance Pricing: Ferguson’s Nuanced Approach to Privacy Innovation
  • Anne Wojcicki Wins Bidding for 23andMe
  • Would you — or wouldn’t you?
  • New York passes a bill to prevent AI-fueled disasters
  • Synthetic Data and the Illusion of Privacy: Legal Risks of Using De-Identified AI Training Sets

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.